$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/425/XsMV7-j1E683zj_jztcLC_2XqQY.roa File: XsMV7-j1E683zj_jztcLC_2XqQY.roa (raw, json) Hash identifier: ZXz9kZjqkRc5rcnjIkiTNjngzbYNUciUWwbbEfn0y7s= Subject key identifier: 5E:C3:15:EF:E8:F5:13:AF:37:CE:3F:E3:CE:D7:0B:0B:FD:97:A9:06 Certificate issuer: /CN=B990BFD63F8675B7B44563623E42F729256CA1E8 Certificate serial: 0E Authority key identifier: B9:90:BF:D6:3F:86:75:B7:B4:45:63:62:3E:42:F7:29:25:6C:A1:E8 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/XsMV7-j1E683zj_jztcLC_2XqQY.roa Signing time: Tue 31 Mar 2026 08:49:04 +0000 ROA not before: Tue 31 Mar 2026 08:49:04 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10001 IP address blocks: 175.41.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B990BFD63F8675B7B44563623E42F729256CA1E8 Validity Not Before: Mar 31 08:49:04 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5EC315EFE8F513AF37CE3FE3CED70B0BFD97A906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a8:c6:ec:51:49:36:df:65:74:b5:69:ef:bb: 41:4e:3f:9b:8d:d0:5c:f2:3e:4b:bc:96:48:1f:f6: 07:35:21:37:3e:b3:c5:c1:6f:94:90:14:e8:69:a4: d2:3b:7e:d8:3c:ab:44:56:5a:4f:81:d9:2b:f7:1f: 99:87:93:9e:02:79:73:b9:25:ef:aa:9a:cc:e9:53: e4:a2:93:0b:3b:42:6e:f1:52:b3:14:77:0f:1e:35: 0a:fd:81:cd:be:08:7e:5b:7e:0d:c0:d5:ba:b2:08: f3:d2:5c:3d:d2:6d:cb:c1:0d:0d:45:34:0a:b1:3e: 8d:8a:07:b5:8a:64:a0:83:2c:d3:e4:61:ee:b4:01: bf:69:7d:ed:57:95:32:03:d0:e9:8b:84:d6:8b:f4: 10:11:59:66:30:de:b9:db:e2:dc:35:fe:7b:fb:02: e4:d4:cd:be:ab:49:7d:0d:44:7e:26:1b:4d:a2:5c: 5a:a4:1b:d3:8f:c3:7d:37:b8:16:4b:1a:24:d2:d7: 65:46:c7:12:39:96:f0:d3:73:22:83:b0:81:6d:5e: df:66:72:56:88:c7:14:9e:1e:10:a4:01:ce:e8:62: ca:fa:68:0d:97:1b:9b:3a:15:a0:19:5e:31:e8:1c: db:9a:d9:b9:34:27:7c:e4:71:79:91:81:d6:9f:1c: 87:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C3:15:EF:E8:F5:13:AF:37:CE:3F:E3:CE:D7:0B:0B:FD:97:A9:06 X509v3 Authority Key Identifier: keyid:B9:90:BF:D6:3F:86:75:B7:B4:45:63:62:3E:42:F7:29:25:6C:A1:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/XsMV7-j1E683zj_jztcLC_2XqQY.roa sbgp-ipAddrBlock: critical IPv4: 175.41.32.0/21 Signature Algorithm: sha256WithRSAEncryption 28:fc:b2:a9:c8:36:17:85:40:78:9e:5e:7a:0b:30:a5:18:7c: 81:55:8a:ed:b6:a7:4c:e1:df:e2:07:0b:87:09:67:42:d8:ef: 3e:94:b2:e9:42:5d:ce:2c:60:56:fe:9c:08:df:34:d3:fa:73: fc:a8:ad:52:46:60:89:53:d7:a3:cb:9b:66:7b:fe:48:b4:43: 3d:05:fe:e0:76:d7:b4:6f:b1:6d:aa:8c:30:4a:86:a0:b9:d3: 53:af:6e:9b:ff:99:b8:66:a5:a2:8e:ab:01:64:5c:a6:e4:de: 00:73:49:f8:13:67:2c:41:d9:bd:ed:10:e8:c0:7f:40:14:91: fa:85:0e:6a:b9:40:d5:12:a3:c0:fa:81:56:6b:9a:f0:f0:a4: e7:4a:2c:5b:d7:7c:6f:67:e2:19:5c:4b:6e:52:b1:15:a0:a3: d6:49:83:a2:10:22:8c:23:b1:af:9e:46:6f:9c:14:6d:74:19: 66:34:f0:91:53:eb:18:fa:e3:5f:3b:f1:5b:c2:67:6d:b4:f1: 2f:b2:38:9c:b6:38:a7:7f:d4:fc:e7:2a:42:37:6b:fb:bc:70: 7e:d6:1a:b5:b8:cd:be:b9:e7:c8:77:cf:b5:8b:7d:c2:c6:0a: ad:71:41:c1:98:38:08:22:6e:e6:68:c0:69:3c:ee:df:7d:25: 64:6d:ea:a7 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTkw QkZENjNGODY3NUI3QjQ0NTYzNjIzRTQyRjcyOTI1NkNBMUU4MB4XDTI2MDMzMTA4 NDkwNFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNUVDMzE1RUZFOEY1MTNB RjM3Q0UzRkUzQ0VENzBCMEJGRDk3QTkwNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ+oxuxRSTbfZXS1ae+7QU4/m43QXPI+S7yWSB/2BzUhNz6zxcFv lJAU6Gmk0jt+2DyrRFZaT4HZK/cfmYeTngJ5c7kl76qazOlT5KKTCztCbvFSsxR3 Dx41Cv2Bzb4Iflt+DcDVurII89JcPdJty8ENDUU0CrE+jYoHtYpkoIMs0+Rh7rQB v2l97VeVMgPQ6YuE1ov0EBFZZjDeudvi3DX+e/sC5NTNvqtJfQ1EfiYbTaJcWqQb 04/DfTe4FksaJNLXZUbHEjmW8NNzIoOwgW1e32ZyVojHFJ4eEKQBzuhiyvpoDZcb mzoVoBleMegc25rZuTQnfORxeZGB1p8ch5MCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBRewxXv6PUTrzfOP+PO1wsL/ZepBjAfBgNVHSMEGDAWgBS5kL/WP4Z1t7RFY2I+ QvcpJWyh6DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDI1L3VaQ18xai1HZGJlMFJXTmlQa0wzS1NWc29lZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VaQ18xai1HZGJlMFJXTmlQa0wzS1NW c29lZy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80MjUvWHNNVjctajFFNjgzempfanp0Y0xDXzJYcVFZLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA68pIDANBgkqhkiG9w0BAQsFAAOCAQEA KPyyqcg2F4VAeJ5eegswpRh8gVWK7banTOHf4gcLhwlnQtjvPpSy6UJdzixgVv6c CN800/pz/KitUkZgiVPXo8ubZnv+SLRDPQX+4HbXtG+xbaqMMEqGoLnTU69um/+Z uGaloo6rAWRcpuTeAHNJ+BNnLEHZve0Q6MB/QBSR+oUOarlA1RKjwPqBVmua8PCk 50osW9d8b2fiGVxLblKxFaCj1kmDohAijCOxr55Gb5wUbXQZZjTwkVPrGPrjXzvx W8JnbbTxL7I4nLY4p3/U/OcqQjdr+7xwftYatbjNvrnnyHfPtYt9wsYKrXFBwZg4 CCJu5mjAaTzu330lZG3qpw== -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:28 2026 by rpki-client