$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/idZCAh1fArW7WrtI5c_gBa77dmg.roa File: idZCAh1fArW7WrtI5c_gBa77dmg.roa (raw, json) Hash identifier: K4e08mbkLCifaXs+TtyTRhvJI7sPg2MTJ7b/2XS5YcE= Subject key identifier: 89:D6:42:02:1D:5F:02:B5:BB:5A:BB:48:E5:CF:E0:05:AE:FB:76:68 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: A1 Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/idZCAh1fArW7WrtI5c_gBa77dmg.roa Signing time: Tue 31 Mar 2026 07:55:14 +0000 ROA not before: Tue 31 Mar 2026 07:55:14 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 158.199.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Mar 31 07:55:14 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=89D642021D5F02B5BB5ABB48E5CFE005AEFB7668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:78:f0:e7:4d:b1:52:f7:28:53:67:77:75:63: 60:4c:5c:7d:5e:9c:08:07:c6:c5:ee:14:02:0d:b0: e3:c1:7f:fd:57:61:00:fe:73:68:c1:45:d3:74:54: 8e:b2:0e:f9:eb:cb:69:87:5b:65:32:64:47:2a:b8: 19:7c:17:21:c4:58:3c:42:a1:18:bc:0c:d7:19:a7: ca:2e:c5:dd:27:31:1c:c6:be:5a:b9:62:64:73:34: ef:9f:3d:a1:05:08:ef:09:66:e2:99:a9:16:6e:8a: b1:43:56:45:3e:a9:f5:ba:d9:81:f0:cd:8a:11:5c: 55:3d:63:f3:42:e8:05:91:cb:d4:b5:78:72:c8:34: 5f:15:b0:c5:7c:5a:c5:d2:9e:b6:84:4f:06:36:a9: 4f:e8:35:ff:81:43:58:39:b4:19:e0:28:73:ea:48: ab:01:94:62:c9:31:21:c5:97:66:04:74:e1:16:08: 0d:f2:99:43:44:0f:50:1b:68:d5:89:0f:0e:ab:d1: 5a:54:b9:97:77:c9:84:41:4e:07:64:dd:d1:1b:3d: 81:f1:36:3d:d0:23:c8:8b:e3:83:c4:fa:e1:4b:9d: 2f:23:2d:45:c3:c5:b6:28:63:9e:42:46:07:42:52: d2:1a:a5:3a:b1:4c:16:69:a3:f9:d0:6a:4d:97:ce: de:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D6:42:02:1D:5F:02:B5:BB:5A:BB:48:E5:CF:E0:05:AE:FB:76:68 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/idZCAh1fArW7WrtI5c_gBa77dmg.roa sbgp-ipAddrBlock: critical IPv4: 158.199.32.0/20 Signature Algorithm: sha256WithRSAEncryption 11:61:11:30:d7:8d:13:aa:3c:74:85:76:7b:53:6c:6f:8e:44: 0d:94:4e:a3:df:f9:6d:7e:d5:9e:83:c1:f9:1d:dd:08:7d:17: f8:4d:55:c1:c5:0b:f7:34:be:13:75:4e:b0:62:32:e6:b3:79: 7a:be:30:1b:9a:7a:b8:e0:09:9d:e9:e9:22:31:a9:8f:78:ab: bf:8b:a3:ef:95:10:29:9c:c0:7c:5f:a1:7c:07:ad:5c:b0:bb: 90:45:d4:bb:01:3b:56:79:64:75:76:a5:0d:7a:c9:fa:0a:e9: ce:c4:70:05:10:28:07:9a:e3:97:88:26:8a:8f:bf:ab:e7:71: c5:05:ac:ca:a8:a4:e6:89:04:0e:d7:88:bd:b1:ee:4c:51:58: 14:0a:2d:72:63:8d:05:1b:c5:94:48:93:3b:3a:84:88:3d:41: 33:a3:02:29:99:0f:0a:e2:cb:ac:97:1e:f8:98:5b:50:de:84: 24:21:aa:36:bc:5f:d5:9e:24:d8:50:61:d1:57:19:08:8c:93: 9d:a2:34:76:84:80:42:94:bc:74:8d:83:59:3e:72:b2:af:2a: c1:28:54:e5:8e:6b:d8:32:32:2e:54:ab:c0:16:e0:77:f1:94: d0:0f:ca:0d:e0:51:fe:f9:60:e3:9e:c7:09:cb:8d:8f:92:9c: 52:f1:80:e0 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg5 RTBGMTVDMUUyMEUxOTFBQUYxNzI4OEY2RTMwRkYwMTg2OUE2RTAeFw0yNjAzMzEw NzU1MTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg5RDY0MjAyMUQ1RjAy QjVCQjVBQkI0OEU1Q0ZFMDA1QUVGQjc2NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpePDnTbFS9yhTZ3d1Y2BMXH1enAgHxsXuFAINsOPBf/1XYQD+ c2jBRdN0VI6yDvnry2mHW2UyZEcquBl8FyHEWDxCoRi8DNcZp8ouxd0nMRzGvlq5 YmRzNO+fPaEFCO8JZuKZqRZuirFDVkU+qfW62YHwzYoRXFU9Y/NC6AWRy9S1eHLI NF8VsMV8WsXSnraETwY2qU/oNf+BQ1g5tBngKHPqSKsBlGLJMSHFl2YEdOEWCA3y mUNED1AbaNWJDw6r0VpUuZd3yYRBTgdk3dEbPYHxNj3QI8iL44PE+uFLnS8jLUXD xbYoY55CRgdCUtIapTqxTBZpo/nQak2Xzt5xAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUidZCAh1fArW7WrtI5c/gBa77dmgwHwYDVR0jBBgwFoAU+J4PFcHiDhkarxco j24w/wGGmm4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS8tSjRQRmNIaURoa2FyeGNvajI0d193R0dtbTQuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8tSjRQRmNIaURoa2FyeGNvajI0d193 R0dtbTQuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2lkWkNBaDFmQXJXN1dydEk1Y19nQmE3N2RtZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBASexyAwDQYJKoZIhvcNAQELBQADggEB ABFhETDXjROqPHSFdntTbG+ORA2UTqPf+W1+1Z6Dwfkd3Qh9F/hNVcHFC/c0vhN1 TrBiMuazeXq+MBuaerjgCZ3p6SIxqY94q7+Lo++VECmcwHxfoXwHrVywu5BF1LsB O1Z5ZHV2pQ16yfoK6c7EcAUQKAea45eIJoqPv6vnccUFrMqopOaJBA7XiL2x7kxR WBQKLXJjjQUbxZRIkzs6hIg9QTOjAimZDwriy6yXHviYW1DehCQhqja8X9WeJNhQ YdFXGQiMk52iNHaEgEKUvHSNg1k+crKvKsEoVOWOa9gyMi5Uq8AW4HfxlNAPyg3g Uf75YOOexwnLjY+SnFLxgOA= -----END CERTIFICATE-----Generated at Tue Apr 7 22:23:35 2026 by rpki-client