$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/ESHxoHTHlvjoMmXWCvwMyJ1XFVY.roa File: ESHxoHTHlvjoMmXWCvwMyJ1XFVY.roa (raw, json) Hash identifier: w0UaAse6jWB2CVgr3+pOdZE1PPobNh1XE4bzCftM3p4= Subject key identifier: 11:21:F1:A0:74:C7:96:F8:E8:32:65:D6:0A:FC:0C:C8:9D:57:15:56 Certificate issuer: /CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Certificate serial: 96 Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/ESHxoHTHlvjoMmXWCvwMyJ1XFVY.roa Signing time: Tue 31 Mar 2026 07:47:26 +0000 ROA not before: Tue 31 Mar 2026 07:47:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10019 IP address blocks: 202.91.144.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Validity Not Before: Mar 31 07:47:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1121F1A074C796F8E83265D60AFC0CC89D571556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:08:28:b4:65:58:eb:b1:97:1e:5e:33:ea:38: 16:f9:4b:6a:d2:90:5f:a0:bf:b9:26:03:91:cf:6c: 2e:91:93:82:d3:d4:62:26:8c:a1:4e:74:1b:b9:a0: 73:fa:1d:5f:e7:30:77:4d:5d:e7:5b:c0:bc:bf:1d: 53:9c:17:d4:15:65:45:57:05:cc:18:e8:ff:c3:09: 67:d1:5f:63:bf:a8:56:c6:88:b7:40:b8:a3:9f:6f: 57:48:6e:87:6a:72:91:66:ec:f0:ee:ea:61:c2:3e: 37:0d:86:88:f7:77:3a:91:d0:50:e4:0c:c9:c4:b3: d4:8c:e5:dc:61:da:44:12:06:78:62:2a:cd:22:50: ca:c4:0e:c0:79:0f:cd:2b:f0:6b:ea:dc:ba:f8:27: 7a:9d:42:db:b7:b4:b5:e8:e1:94:a2:e3:0c:82:c0: d6:a9:86:2b:8b:ea:1d:ce:00:51:0f:c1:a1:aa:c5: af:a2:9c:0b:4c:d7:d7:b9:0f:ce:78:36:29:50:e9: 98:33:99:e4:53:17:d8:20:2e:83:8f:2e:a2:78:92: 67:39:21:53:13:77:54:4a:87:e5:d9:ab:59:63:d2: 71:85:dc:23:b5:be:a0:95:4c:98:50:87:53:54:7e: e7:58:b2:b8:27:cf:07:37:bd:83:21:aa:0c:83:85: 8f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:21:F1:A0:74:C7:96:F8:E8:32:65:D6:0A:FC:0C:C8:9D:57:15:56 X509v3 Authority Key Identifier: keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/ESHxoHTHlvjoMmXWCvwMyJ1XFVY.roa sbgp-ipAddrBlock: critical IPv4: 202.91.144.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:b7:47:f1:03:57:9f:8b:21:30:57:d5:d0:13:29:21:6b:a7: 90:59:bb:2d:fa:2f:d1:e0:25:45:83:51:ac:d3:49:0e:46:f0: fc:0e:30:cc:e9:0f:4b:10:f2:9d:45:a8:e9:2b:6f:00:70:cd: 51:17:f6:0e:a8:1f:16:88:6f:16:18:10:f3:b4:b2:60:0c:a9: 08:29:78:08:9d:da:db:a5:4a:b6:03:4b:c2:77:9b:cf:6e:d6: 64:c7:61:a5:ec:1b:21:3f:45:78:f3:ca:cd:39:41:47:26:bd: 8a:31:9a:26:3f:37:9d:39:4a:82:6d:45:97:bd:e1:b4:9a:e1: f8:a2:13:da:fa:28:93:5f:ce:95:34:e4:ff:92:99:b3:5b:ee: 67:ac:75:78:96:21:04:e1:28:b7:3f:54:19:28:81:9a:2a:23: 54:8a:c7:62:e5:a0:10:9a:ae:2e:84:53:23:1b:f9:6f:c8:99: dd:1c:6f:b4:67:11:11:b6:52:99:93:e2:43:4c:02:28:2e:20: 53:d8:7f:8c:7c:46:e8:fc:26:db:a4:48:af:f7:4f:25:6a:64: 3d:b0:85:9e:34:8c:6d:f5:b1:14:53:c6:2f:ee:b5:64:6a:71: 90:2f:d3:57:d9:c8:4a:5d:82:f6:7f:78:68:d2:aa:94:11:11: c1:f3:d3:d4 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDM5 MTdCMjMwNzQ1MjRFOUU2RUE4RTQwRkE0QTA2NzJDOTYyMDMxODAeFw0yNjAzMzEw NzQ3MjZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDExMjFGMUEwNzRDNzk2 RjhFODMyNjVENjBBRkMwQ0M4OUQ1NzE1NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeCCi0ZVjrsZceXjPqOBb5S2rSkF+gv7kmA5HPbC6Rk4LT1GIm jKFOdBu5oHP6HV/nMHdNXedbwLy/HVOcF9QVZUVXBcwY6P/DCWfRX2O/qFbGiLdA uKOfb1dIbodqcpFm7PDu6mHCPjcNhoj3dzqR0FDkDMnEs9SM5dxh2kQSBnhiKs0i UMrEDsB5D80r8Gvq3Lr4J3qdQtu3tLXo4ZSi4wyCwNaphiuL6h3OAFEPwaGqxa+i nAtM19e5D854NilQ6ZgzmeRTF9ggLoOPLqJ4kmc5IVMTd1RKh+XZq1lj0nGF3CO1 vqCVTJhQh1NUfudYsrgnzwc3vYMhqgyDhY9zAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUESHxoHTHlvjoMmXWCvwMyJ1XFVYwHwYDVR0jBBgwFoAUQ5F7IwdFJOnm6o5A +koGcsliAxgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2Mi9RNUY3SXdkRkpPbm02bzVBLWtvR2NzbGlBeGcuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RNUY3SXdkRkpPbm02bzVBLWtvR2Nz bGlBeGcuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNDYyL0VTSHhvSFRIbHZqb01tWFdDdndNeUoxWEZWWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKW5AwDQYJKoZIhvcNAQELBQADggEB AF63R/EDV5+LITBX1dATKSFrp5BZuy36L9HgJUWDUazTSQ5G8PwOMMzpD0sQ8p1F qOkrbwBwzVEX9g6oHxaIbxYYEPO0smAMqQgpeAid2tulSrYDS8J3m89u1mTHYaXs GyE/RXjzys05QUcmvYoxmiY/N505SoJtRZe94bSa4fiiE9r6KJNfzpU05P+SmbNb 7mesdXiWIQThKLc/VBkogZoqI1SKx2LloBCari6EUyMb+W/Imd0cb7RnERG2UpmT 4kNMAiguIFPYf4x8Ruj8JtukSK/3TyVqZD2whZ40jG31sRRTxi/utWRqcZAv01fZ yEpdgvZ/eGjSqpQREcHz09Q= -----END CERTIFICATE-----Generated at Tue Apr 7 19:33:55 2026 by rpki-client