$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/iYZRLog2wbflMfAKnQYI4WoFKU0.roa File: iYZRLog2wbflMfAKnQYI4WoFKU0.roa (raw, json) Hash identifier: i0+lgY69b7APjTALfUwiCToR0WQCLG7pbD77dMNXrCs= Subject key identifier: 89:86:51:2E:88:36:C1:B7:E5:31:F0:0A:9D:06:08:E1:6A:05:29:4D Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Certificate serial: 72 Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/iYZRLog2wbflMfAKnQYI4WoFKU0.roa Signing time: Tue 31 Mar 2026 08:31:24 +0000 ROA not before: Tue 31 Mar 2026 08:31:24 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9619 IP address blocks: 211.125.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Validity Not Before: Mar 31 08:31:24 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8986512E8836C1B7E531F00A9D0608E16A05294D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c4:20:d8:7a:8b:91:5e:44:49:3b:74:7d:d7: d1:69:05:db:08:d0:a7:8a:5c:50:1c:db:a5:95:99: e8:19:2d:13:22:74:f9:f1:19:47:9c:d4:5e:83:dd: d1:e5:6d:4a:45:ca:41:aa:09:8b:92:b3:83:b9:23: f3:1c:61:26:ec:4c:bb:0d:b5:11:9b:33:22:f8:c4: 07:ca:5d:b0:6a:1f:91:78:e4:cb:05:cd:df:9e:c6: 48:0a:0c:f6:7b:42:2d:3e:2f:98:af:5b:3f:7d:3a: 65:56:d2:65:df:f9:59:f4:38:06:fc:52:21:4d:92: b8:7d:cf:51:74:f1:4c:ac:57:d8:fb:99:89:f2:93: 2c:6d:36:43:33:88:13:9e:5d:07:56:00:27:14:4b: 91:06:34:bf:76:20:aa:e2:22:d5:97:22:8d:a1:e9: 42:fc:d7:f4:60:6f:21:bd:15:ef:17:b1:52:48:fa: 81:78:0c:eb:b1:f3:49:d4:45:ad:f6:1f:f5:75:f2: 5c:4c:fa:e7:84:9f:9a:07:81:19:d2:f5:7a:34:52: 40:f1:7a:4c:66:d4:ce:af:73:f0:35:e4:6c:39:f6: e9:0c:51:09:c5:73:10:81:98:a7:ba:2e:db:a8:a2: c3:81:7f:cb:14:e5:1a:ed:61:16:5c:3f:32:af:1e: 85:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:86:51:2E:88:36:C1:B7:E5:31:F0:0A:9D:06:08:E1:6A:05:29:4D X509v3 Authority Key Identifier: keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/iYZRLog2wbflMfAKnQYI4WoFKU0.roa sbgp-ipAddrBlock: critical IPv4: 211.125.133.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:4c:ea:c9:1b:af:58:41:cf:8d:c3:1a:38:65:e6:d0:e9:d5: 6d:cf:0c:2b:6b:9a:26:88:f3:ca:2c:be:1b:66:f3:4e:7b:df: 4c:a6:b5:b2:10:0e:2a:3f:b8:26:52:f9:aa:60:5b:2f:bf:72: 2d:bc:52:09:90:db:67:fd:17:8a:60:b6:2d:b1:d5:04:a2:eb: 72:70:5c:a5:45:63:f3:f2:36:ab:89:90:53:62:f9:85:81:a1: a9:1b:1a:86:2f:d6:55:65:99:4f:88:55:6a:de:3d:6e:a7:de: 8a:c0:3b:39:3c:50:9f:8d:b0:d8:ab:2e:12:67:6d:92:62:30: 17:65:12:45:dd:da:ea:34:00:42:bf:62:bd:00:51:2d:fe:73: 1d:c8:7b:b1:35:95:aa:9e:97:d1:74:17:6b:0a:09:8b:de:80: e9:3a:12:cf:9d:96:54:ab:84:f6:82:23:4a:f6:27:c2:5d:2d: 43:72:dd:ae:69:a0:a8:38:46:38:98:23:32:b7:44:35:06:4e: 2f:83:16:f4:62:82:78:ab:1b:e2:1a:b3:84:77:ad:40:80:cf: 55:79:92:f1:fe:46:6c:5b:9d:88:01:6e:ed:21:fb:96:b8:28: e7:fd:12:6d:ce:b3:80:93:84:88:8d:86:b3:fc:80:29:3f:12: 02:c4:b5:75 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzMz QUVEQTVCODFBNkIyRjU0RkY3MTQ2NjhGOEQ2M0U4N0I4NUExMB4XDTI2MDMzMTA4 MzEyNFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODk4NjUxMkU4ODM2QzFC N0U1MzFGMDBBOUQwNjA4RTE2QTA1Mjk0RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJjEINh6i5FeREk7dH3X0WkF2wjQp4pcUBzbpZWZ6BktEyJ0+fEZ R5zUXoPd0eVtSkXKQaoJi5Kzg7kj8xxhJuxMuw21EZszIvjEB8pdsGofkXjkywXN 357GSAoM9ntCLT4vmK9bP306ZVbSZd/5WfQ4BvxSIU2SuH3PUXTxTKxX2PuZifKT LG02QzOIE55dB1YAJxRLkQY0v3YgquIi1ZcijaHpQvzX9GBvIb0V7xexUkj6gXgM 67HzSdRFrfYf9XXyXEz654SfmgeBGdL1ejRSQPF6TGbUzq9z8DXkbDn26QxRCcVz EIGYp7ou26iiw4F/yxTlGu1hFlw/Mq8ehc0CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSJhlEuiDbBt+Ux8AqdBgjhagUpTTAfBgNVHSMEGDAWgBSzM67aW4GmsvVP9xRm j41j6HuFoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzk1L3N6T3UybHVCcHJMMVRfY1Vaby1OWS1oN2hhRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3N6T3UybHVCcHJMMVRfY1Vaby1OWS1o N2hhRS5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8zOTUvaVlaUkxvZzJ3YmZsTWZBS25RWUk0V29GS1UwLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANN9hTANBgkqhkiG9w0BAQsFAAOCAQEA PEzqyRuvWEHPjcMaOGXm0OnVbc8MK2uaJojzyiy+G2bzTnvfTKa1shAOKj+4JlL5 qmBbL79yLbxSCZDbZ/0XimC2LbHVBKLrcnBcpUVj8/I2q4mQU2L5hYGhqRsahi/W VWWZT4hVat49bqfeisA7OTxQn42w2KsuEmdtkmIwF2USRd3a6jQAQr9ivQBRLf5z Hch7sTWVqp6X0XQXawoJi96A6ToSz52WVKuE9oIjSvYnwl0tQ3LdrmmgqDhGOJgj MrdENQZOL4MW9GKCeKsb4hqzhHetQIDPVXmS8f5GbFudiAFu7SH7lrgo5/0Sbc6z gJOEiI2Gs/yAKT8SAsS1dQ== -----END CERTIFICATE-----Generated at Wed Apr 8 01:18:32 2026 by rpki-client