$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/Oiy-cL2V_H5Hb3qIjLY_rTi2pi8.roa File: Oiy-cL2V_H5Hb3qIjLY_rTi2pi8.roa (raw, json) Hash identifier: /5rpyS+cu39CHxZX7i4GRjAa8PUkyGri0oDxGGLIm4U= Subject key identifier: 3A:2C:BE:70:BD:95:FC:7E:47:6F:7A:88:8C:B6:3F:AD:38:B6:A6:2F Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Certificate serial: 6D Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/Oiy-cL2V_H5Hb3qIjLY_rTi2pi8.roa Signing time: Tue 31 Mar 2026 08:31:22 +0000 ROA not before: Tue 31 Mar 2026 08:31:22 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9619 IP address blocks: 211.125.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Validity Not Before: Mar 31 08:31:22 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3A2CBE70BD95FC7E476F7A888CB63FAD38B6A62F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5f:1c:88:53:61:d8:17:35:f3:80:93:ab:0d: e3:c0:f5:1d:a3:14:33:15:f5:9c:e0:45:65:83:b5: 9d:9f:36:e9:c7:70:b6:a8:2a:1b:11:61:50:6f:a1: d7:fa:a4:db:89:d4:4a:cc:03:76:1c:9c:38:bd:32: 34:89:69:40:b9:d6:e4:b8:cf:1d:b3:f1:11:2d:da: cf:a8:09:da:42:03:1b:cc:32:99:a0:ec:68:f0:e1: 0d:2a:50:8b:14:56:c6:d9:2a:68:da:b3:52:01:51: 91:b3:7b:bb:da:e4:9a:fe:2c:58:e9:32:27:83:fb: 62:e4:dd:8a:74:21:f9:5b:c1:82:4f:fb:5b:8a:ea: 44:d7:bc:9c:80:25:aa:5e:84:38:3d:ff:b3:55:69: 48:03:5e:a1:39:e6:bd:26:0b:ea:cf:09:ad:dc:04: af:0c:70:a3:1b:95:69:7e:6b:bc:cd:da:10:81:ec: f2:40:8a:d7:d1:3e:a0:2c:11:0d:23:e8:4f:65:cc: 73:08:45:ba:d7:fc:51:48:8a:4c:29:85:fb:ee:ce: 90:58:e0:90:a4:40:8e:aa:22:3b:43:97:0b:bd:f9: 27:6f:4a:c4:55:d0:49:67:b9:8c:93:d7:57:bc:95: a0:a6:73:a5:5f:03:43:5b:ab:0a:b3:81:f8:0d:90: eb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:2C:BE:70:BD:95:FC:7E:47:6F:7A:88:8C:B6:3F:AD:38:B6:A6:2F X509v3 Authority Key Identifier: keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/Oiy-cL2V_H5Hb3qIjLY_rTi2pi8.roa sbgp-ipAddrBlock: critical IPv4: 211.125.128.0/24 Signature Algorithm: sha256WithRSAEncryption 18:55:d4:19:92:86:ab:9b:da:97:3e:27:15:ee:b3:c2:07:e0: 46:57:ce:98:7a:8b:bd:02:bd:fc:ac:7b:20:eb:01:d1:4a:b0: b5:5c:91:35:17:68:0c:67:e1:66:31:9a:c0:85:bf:61:fc:dc: 93:b1:d7:93:a2:ad:14:2c:e0:39:a2:20:95:25:fc:fe:ea:80: 62:68:3a:f1:f8:c3:c2:1c:ca:ca:31:0f:8f:20:c0:ab:8a:d0: 92:ab:e1:32:96:f0:5a:eb:df:20:1d:11:86:b0:ae:f8:69:08: 86:cb:d4:63:69:3b:c9:94:d4:72:5a:2d:ae:51:c5:64:8f:95: 3d:b2:62:85:58:a0:3d:42:b1:d7:97:e2:05:95:00:b3:ae:bf: a3:91:ee:9b:6a:a1:ae:f9:bf:26:e3:62:9b:aa:47:d5:01:0e: 87:c2:83:8b:ed:bf:66:89:de:ab:ae:a1:e4:97:5c:52:54:4b: 3a:14:6a:e4:b9:a3:9e:1e:da:9d:3f:86:05:33:b0:b7:64:f4: 41:ff:25:11:ca:96:f2:6c:0c:77:48:09:9f:6e:e8:c4:33:2d: 9f:8e:de:7f:6d:b5:fb:1d:cd:ae:9a:35:18:32:11:50:23:09: d8:6f:79:a5:5a:a6:93:88:c7:6b:42:ae:9b:00:c1:ce:df:d4: 71:2d:00:ae -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBbTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzMz QUVEQTVCODFBNkIyRjU0RkY3MTQ2NjhGOEQ2M0U4N0I4NUExMB4XDTI2MDMzMTA4 MzEyMloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoM0EyQ0JFNzBCRDk1RkM3 RTQ3NkY3QTg4OENCNjNGQUQzOEI2QTYyRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ1fHIhTYdgXNfOAk6sN48D1HaMUMxX1nOBFZYO1nZ826cdwtqgq GxFhUG+h1/qk24nUSswDdhycOL0yNIlpQLnW5LjPHbPxES3az6gJ2kIDG8wymaDs aPDhDSpQixRWxtkqaNqzUgFRkbN7u9rkmv4sWOkyJ4P7YuTdinQh+VvBgk/7W4rq RNe8nIAlql6EOD3/s1VpSANeoTnmvSYL6s8JrdwErwxwoxuVaX5rvM3aEIHs8kCK 19E+oCwRDSPoT2XMcwhFutf8UUiKTCmF++7OkFjgkKRAjqoiO0OXC735J29KxFXQ SWe5jJPXV7yVoKZzpV8DQ1urCrOB+A2Q61cCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQ6LL5wvZX8fkdveoiMtj+tOLamLzAfBgNVHSMEGDAWgBSzM67aW4GmsvVP9xRm j41j6HuFoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzk1L3N6T3UybHVCcHJMMVRfY1Vaby1OWS1oN2hhRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3N6T3UybHVCcHJMMVRfY1Vaby1OWS1o N2hhRS5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8zOTUvT2l5LWNMMlZfSDVIYjNxSWpMWV9yVGkycGk4LnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANN9gDANBgkqhkiG9w0BAQsFAAOCAQEA GFXUGZKGq5valz4nFe6zwgfgRlfOmHqLvQK9/Kx7IOsB0UqwtVyRNRdoDGfhZjGa wIW/Yfzck7HXk6KtFCzgOaIglSX8/uqAYmg68fjDwhzKyjEPjyDAq4rQkqvhMpbw WuvfIB0RhrCu+GkIhsvUY2k7yZTUclotrlHFZI+VPbJihVigPUKx15fiBZUAs66/ o5Hum2qhrvm/JuNim6pH1QEOh8KDi+2/Zoneq66h5JdcUlRLOhRq5Lmjnh7anT+G BTOwt2T0Qf8lEcqW8mwMd0gJn27oxDMtn47ef221+x3Nrpo1GDIRUCMJ2G95pVqm k4jHa0KumwDBzt/UcS0Arg== -----END CERTIFICATE-----Generated at Wed Apr 8 01:19:12 2026 by rpki-client