$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/xNTGInAkiiSfnvqjQgTtpQLyxKk.roa File: xNTGInAkiiSfnvqjQgTtpQLyxKk.roa (raw, json) Hash identifier: x2aNECwOdTELKACFfi3M20yS9RvBjehS90Lk/RJRjcA= Subject key identifier: C4:D4:C6:22:70:24:8A:24:9F:9E:FA:A3:42:04:ED:A5:02:F2:C4:A9 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 80 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/xNTGInAkiiSfnvqjQgTtpQLyxKk.roa Signing time: Tue 31 Mar 2026 08:24:30 +0000 ROA not before: Tue 31 Mar 2026 08:24:30 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10000 IP address blocks: 61.114.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 13:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Mar 31 08:24:30 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C4D4C62270248A249F9EFAA34204EDA502F2C4A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d7:09:dc:19:ae:b3:a6:92:0f:66:d7:2c:09: e6:9f:0c:ea:bf:78:96:93:c1:40:33:dd:08:94:b7: 97:04:64:f5:da:27:e4:fc:4c:0b:f3:2b:80:14:68: d5:a4:9a:ca:62:d7:9a:47:ec:db:d3:9f:da:ad:48: dc:f4:a4:37:7a:79:43:03:98:04:a2:b3:06:29:50: 5c:7b:d1:30:93:57:28:1f:84:4b:2e:d8:6d:2c:15: c2:98:f0:63:c9:74:1e:f4:72:27:63:b6:d2:43:0e: b5:d5:d1:12:80:12:71:d0:37:8e:54:5f:83:79:6d: bf:5f:5f:a3:0a:a5:6e:04:32:63:fd:8f:83:7d:57: 05:19:8f:37:73:97:81:42:3e:34:ad:8d:7e:58:8c: 9d:c1:9e:53:76:f3:e5:a9:76:72:2f:4b:97:3b:73: ed:15:bb:f2:ad:c5:2c:90:d3:0b:ac:15:66:51:9b: 53:6d:7a:d5:41:1a:6e:d4:dc:27:a2:29:82:39:07: 00:dc:08:3b:cc:35:67:cf:fc:e1:7e:2c:79:67:78: c1:71:dd:df:66:7b:73:c6:63:80:4d:37:eb:9f:10: bc:68:12:8d:03:69:48:92:2a:c6:1a:7a:aa:1d:61: 13:a0:e7:30:db:be:87:bb:85:c2:c9:89:9a:71:06: c3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D4:C6:22:70:24:8A:24:9F:9E:FA:A3:42:04:ED:A5:02:F2:C4:A9 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/xNTGInAkiiSfnvqjQgTtpQLyxKk.roa sbgp-ipAddrBlock: critical IPv4: 61.114.96.0/20 Signature Algorithm: sha256WithRSAEncryption cb:e6:99:f6:0b:f7:77:3f:34:75:51:65:a9:4d:cf:49:f6:bf: d7:50:2a:b1:14:1c:73:64:25:a1:a7:65:4e:65:a4:59:95:07: 05:64:1b:e2:be:1b:7b:5c:99:e7:34:97:66:b8:f8:ba:6f:a6: b2:66:39:61:93:34:1f:67:f1:a0:e2:08:a5:e5:9d:42:d7:9e: 37:aa:4a:91:b5:a6:64:c2:08:b9:2f:a2:b9:13:a7:e5:b7:9d: c1:bf:7f:e6:a2:55:1a:eb:52:ba:e7:be:28:22:d7:b1:68:5f: 27:1d:cb:70:c1:4b:48:55:58:23:95:0f:39:3b:db:c5:5d:70: ae:9d:81:31:e2:4e:c4:55:9b:b1:25:58:d9:d2:14:7f:06:7d: 33:84:04:15:59:d6:9c:cb:61:f3:88:7e:07:85:27:40:83:c1: bb:e8:0b:ba:0b:74:5f:12:2e:4f:5e:93:58:eb:e0:bb:45:7d: 44:79:2b:6a:26:55:60:20:f3:d1:43:aa:59:a2:39:b0:4c:95: 47:fd:f0:3b:d1:5c:29:9a:02:6c:bc:4f:97:ff:0c:56:2b:33: fc:00:f4:09:1b:8c:30:66:13:cc:a9:82:4b:7b:47:ef:45:77: a0:c7:89:c4:ed:1a:99:f3:99:ad:a4:67:b3:64:c4:2f:9a:d6: d1:73:9c:79 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUQ0 NzQxRjAzNDlGQkMxNUE3MDhFMjhBMkNFMzA3OTA2Q0FDNURFMDAeFw0yNjAzMzEw ODI0MzBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM0RDRDNjIyNzAyNDhB MjQ5RjlFRkFBMzQyMDRFREE1MDJGMkM0QTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCW1wncGa6zppIPZtcsCeafDOq/eJaTwUAz3QiUt5cEZPXaJ+T8 TAvzK4AUaNWkmspi15pH7NvTn9qtSNz0pDd6eUMDmASiswYpUFx70TCTVygfhEsu 2G0sFcKY8GPJdB70cidjttJDDrXV0RKAEnHQN45UX4N5bb9fX6MKpW4EMmP9j4N9 VwUZjzdzl4FCPjStjX5YjJ3BnlN28+WpdnIvS5c7c+0Vu/KtxSyQ0wusFWZRm1Nt etVBGm7U3CeiKYI5BwDcCDvMNWfP/OF+LHlneMFx3d9me3PGY4BNN+ufELxoEo0D aUiSKsYaeqodYROg5zDbvoe7hcLJiZpxBsMbAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUxNTGInAkiiSfnvqjQgTtpQLyxKkwHwYDVR0jBBgwFoAUrUdB8DSfvBWnCOKK LOMHkGysXeAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ1NC9yVWRCOERTZnZCV25DT0tLTE9NSGtHeXNYZUEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9yVWRCOERTZnZCV25DT0tLTE9NSGtH eXNYZUEuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNDU0L3hOVEdJbkFraWlTZm52cWpRZ1R0cFFMeXhLay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9cmAwDQYJKoZIhvcNAQELBQADggEB AMvmmfYL93c/NHVRZalNz0n2v9dQKrEUHHNkJaGnZU5lpFmVBwVkG+K+G3tcmec0 l2a4+LpvprJmOWGTNB9n8aDiCKXlnULXnjeqSpG1pmTCCLkvorkTp+W3ncG/f+ai VRrrUrrnvigi17FoXycdy3DBS0hVWCOVDzk728VdcK6dgTHiTsRVm7ElWNnSFH8G fTOEBBVZ1pzLYfOIfgeFJ0CDwbvoC7oLdF8SLk9ek1jr4LtFfUR5K2omVWAg89FD qlmiObBMlUf98DvRXCmaAmy8T5f/DFYrM/wA9AkbjDBmE8ypgkt7R+9Fd6DHicTt Gpnzma2kZ7NkxC+a1tFznHk= -----END CERTIFICATE-----Generated at Tue Apr 7 16:28:54 2026 by rpki-client