$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/VgzY5woCUiIVW-4wGMzYcZpqEls.roa File: VgzY5woCUiIVW-4wGMzYcZpqEls.roa (raw, json) Hash identifier: zQw79yJgUHKNp3kYrTJtEfzsdl317uWd2fqgc5XX/Nk= Subject key identifier: 56:0C:D8:E7:0A:02:52:22:15:5B:EE:30:18:CC:D8:71:9A:6A:12:5B Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0624 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VgzY5woCUiIVW-4wGMzYcZpqEls.roa Signing time: Tue 31 Mar 2026 08:21:33 +0000 ROA not before: Tue 31 Mar 2026 08:21:33 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 0 IP address blocks: 183.181.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1572 (0x624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:21:33 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=560CD8E70A025222155BEE3018CCD8719A6A125B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c7:12:c6:50:86:f7:ff:3c:7b:fa:47:d1:da: b7:1a:28:a7:fb:66:0f:8d:7b:42:1f:3a:c1:75:5a: 6f:32:03:b7:cf:d6:25:ae:34:f1:da:6e:89:68:45: e1:7f:ac:05:c6:0d:8c:7f:5a:71:70:28:7c:f6:52: 59:fc:f2:a4:ed:ed:14:79:54:6b:e5:7e:0f:0e:79: d1:77:16:2a:c9:1b:af:44:3c:6e:2d:2e:8c:98:cb: 26:e5:3e:61:bb:b8:a3:c1:0d:43:96:04:b3:2d:73: df:e1:7a:60:ff:06:68:2d:8d:85:af:5a:e3:5f:24: 44:3d:b0:1b:d9:fb:15:5b:e7:30:22:5b:6d:13:51: f0:b4:30:8a:ef:73:97:36:dd:b6:51:8b:9d:5f:9a: f8:51:75:50:c9:7d:1d:88:f5:34:f6:25:40:f3:1a: be:8f:c0:87:4d:48:92:5f:7e:49:8f:7a:65:49:18: f9:4d:45:4e:f5:57:a6:ba:56:de:5e:f6:7c:8a:0d: 12:0d:19:50:68:df:71:b7:17:4d:4c:4e:48:ad:e5: f4:7f:8d:f8:b5:45:be:cd:51:c2:c6:d8:e4:2d:10: c2:58:09:04:84:fb:2c:bf:ed:26:0c:c1:e8:d5:44: 3e:1f:4f:8e:13:4b:84:35:83:4a:5c:10:0e:e7:36: d5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:0C:D8:E7:0A:02:52:22:15:5B:EE:30:18:CC:D8:71:9A:6A:12:5B X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VgzY5woCUiIVW-4wGMzYcZpqEls.roa sbgp-ipAddrBlock: critical IPv4: 183.181.176.0/20 Signature Algorithm: sha256WithRSAEncryption 35:9c:da:bd:5b:b5:89:a7:76:67:46:5f:52:9f:f5:1b:35:49: f7:8e:bd:ab:f2:52:e1:07:74:91:84:15:34:a9:1b:00:3f:a1: 30:d8:ff:db:11:1b:76:1e:6f:24:f4:d1:e5:8a:c8:06:65:a1: a0:72:e6:de:68:85:b0:84:c7:5d:03:1e:5c:3e:ab:9a:1b:e4: 40:db:78:8b:ef:3d:e8:1a:a8:02:24:df:7e:12:c8:24:a3:4f: fb:3a:8d:2b:04:e0:15:f0:0f:76:19:ca:02:40:c8:60:d1:e9: 9b:b1:d4:ac:d5:76:42:a7:0d:87:95:65:fa:e6:7a:bc:4f:90: 29:aa:62:66:69:21:df:7a:d3:af:e6:84:37:99:e7:1c:82:a1: 08:5a:c8:01:d8:76:fb:2d:01:f3:91:6c:fe:88:52:68:a6:3e: 10:2d:33:58:64:73:ac:99:a8:3f:bc:dd:89:2d:29:7b:11:57: ab:5f:3f:33:49:f3:62:dd:ce:87:96:c7:44:ec:18:23:fd:9b: 27:ea:58:b3:9a:de:80:a1:f9:c6:ee:26:a0:08:d8:e2:6e:59: b7:48:2a:76:0b:63:0e:b8:75:bd:80:ca:cc:43:b6:2c:70:d4: 56:46:21:9f:bf:ac:76:ea:5c:dc:7c:fc:51:3d:c2:6c:0e:be: ab:a2:03:61 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODIxMzNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDU2MENEOEU3MEEwMjUy MjIxNTVCRUUzMDE4Q0NEODcxOUE2QTEyNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJxxLGUIb3/zx7+kfR2rcaKKf7Zg+Ne0IfOsF1Wm8yA7fP1iWu NPHaboloReF/rAXGDYx/WnFwKHz2Uln88qTt7RR5VGvlfg8OedF3FirJG69EPG4t LoyYyyblPmG7uKPBDUOWBLMtc9/hemD/BmgtjYWvWuNfJEQ9sBvZ+xVb5zAiW20T UfC0MIrvc5c23bZRi51fmvhRdVDJfR2I9TT2JUDzGr6PwIdNSJJffkmPemVJGPlN RU71V6a6Vt5e9nyKDRINGVBo33G3F01MTkit5fR/jfi1Rb7NUcLG2OQtEMJYCQSE +yy/7SYMwejVRD4fT44TS4Q1g0pcEA7nNtWPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUVgzY5woCUiIVW+4wGMzYcZpqElswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L1Znelk1d29DVWlJVlctNHdHTXpZY1pwcUVscy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS3tbAwDQYJKoZIhvcNAQELBQADggEB ADWc2r1btYmndmdGX1Kf9Rs1SfeOvavyUuEHdJGEFTSpGwA/oTDY/9sRG3YebyT0 0eWKyAZloaBy5t5ohbCEx10DHlw+q5ob5EDbeIvvPegaqAIk334SyCSjT/s6jSsE 4BXwD3YZygJAyGDR6Zux1KzVdkKnDYeVZfrmerxPkCmqYmZpId9606/mhDeZ5xyC oQhayAHYdvstAfORbP6IUmimPhAtM1hkc6yZqD+83YktKXsRV6tfPzNJ82LdzoeW x0TsGCP9myfqWLOa3oCh+cbuJqAI2OJuWbdIKnYLYw64db2AysxDtixw1FZGIZ+/ rHbqXNx8/FE9wmwOvquiA2E= -----END CERTIFICATE-----Generated at Tue Apr 7 19:41:53 2026 by rpki-client