$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/AeyxuFqsTXj19kmdmnuOFNzrito.roa File: AeyxuFqsTXj19kmdmnuOFNzrito.roa (raw, json) Hash identifier: lIbTcYAPcYf6TBcRUGG37oG4oWP5IyoVrNP/RFllWYo= Subject key identifier: 01:EC:B1:B8:5A:AC:4D:78:F5:F6:49:9D:9A:7B:8E:14:DC:EB:8A:DA Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 36 Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/AeyxuFqsTXj19kmdmnuOFNzrito.roa Signing time: Tue 31 Mar 2026 08:49:22 +0000 ROA not before: Tue 31 Mar 2026 08:49:22 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 101.140.0.0/14 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 31 08:49:22 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=01ECB1B85AAC4D78F5F6499D9A7B8E14DCEB8ADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f2:ae:ab:b6:97:cf:f4:12:cf:c3:a0:2e:54: 45:21:57:bd:09:82:77:14:aa:34:12:57:78:be:80: 21:f0:42:38:fa:be:14:15:3a:1e:67:47:29:42:01: 9b:f6:07:42:7e:4c:bb:aa:f5:32:ba:5b:f5:5d:37: 82:65:ed:fe:64:74:27:cd:d3:51:c6:6f:ec:ac:45: 91:b1:4a:f4:54:43:96:60:09:6a:f4:a0:29:03:fa: 19:41:f1:c1:e1:cb:14:1a:e2:8d:33:ce:bb:5c:a0: be:c5:8a:eb:a1:87:5f:70:2e:ba:e5:42:11:1d:22: 0a:c5:71:1b:02:85:3d:97:fa:8f:8b:41:ef:81:25: ed:09:ee:e3:7c:12:7a:32:b1:87:6f:49:6e:6f:1d: e5:12:4a:df:3d:10:4e:b0:b0:f5:4c:45:c3:a7:1f: ad:c7:6b:7d:eb:a1:db:b4:7f:f7:6c:dd:66:cc:be: bc:f6:68:a2:20:26:a2:6c:bb:bf:4b:2c:99:82:e3: 0d:47:9f:a8:88:c5:53:89:2f:68:13:0c:ad:fa:fc: aa:45:6a:ab:0d:05:2c:a8:0c:19:7c:7c:23:cd:af: 39:9e:3e:c8:f2:b1:a7:69:62:2b:8c:35:24:50:71: 2e:b4:96:aa:4b:4d:be:93:32:68:b4:94:39:77:ca: 55:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:EC:B1:B8:5A:AC:4D:78:F5:F6:49:9D:9A:7B:8E:14:DC:EB:8A:DA X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/AeyxuFqsTXj19kmdmnuOFNzrito.roa sbgp-ipAddrBlock: critical IPv4: 101.140.0.0/14 Signature Algorithm: sha256WithRSAEncryption 58:d0:8d:e0:06:89:1a:a2:95:19:b1:e3:ae:7a:85:68:df:7a: ec:4c:93:af:84:2e:a0:56:17:99:bd:a4:9d:6d:ce:b5:d3:0c: c3:80:1f:a2:4f:ea:18:d2:9e:4d:f4:a2:22:e8:e0:07:2f:86: fa:68:a2:b7:ef:94:82:68:5c:3d:09:40:26:e2:8c:d6:db:47: a9:d4:f0:55:1f:05:be:17:5d:fb:02:5d:d7:83:8c:b7:0a:35: 63:6c:b2:23:82:98:5d:d1:e9:f0:c7:5b:ed:8d:55:37:57:37: fa:6d:78:cb:ed:12:8b:09:37:d6:c4:42:c1:c0:99:46:02:fa: c3:40:c4:b9:b8:e6:24:03:64:ce:57:3c:04:7e:9c:f9:e8:40: e6:46:c1:87:09:ab:31:78:34:3c:29:ea:b0:65:bd:9e:74:bf: ea:1c:66:63:ed:b3:9a:58:96:13:4e:98:81:f8:ba:02:7a:d5: 18:7e:80:1e:f7:c7:1d:fe:42:a7:68:73:64:28:1b:80:22:53: 1e:b7:08:7c:04:a0:c7:5e:26:d7:a7:b1:7d:f2:e2:99:7a:58: df:77:6d:f0:a0:75:82:75:7a:6b:10:5f:f2:7a:63:5f:e9:25: d7:c8:92:1d:7a:c8:58:12:02:6e:40:e2:a1:2e:b1:f3:82:0a: be:d0:7d:9c -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgIBNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMzMTA4 NDkyMloXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoMDFFQ0IxQjg1QUFDNEQ3 OEY1RjY0OTlEOUE3QjhFMTREQ0VCOEFEQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJPyrqu2l8/0Es/DoC5URSFXvQmCdxSqNBJXeL6AIfBCOPq+FBU6 HmdHKUIBm/YHQn5Mu6r1Mrpb9V03gmXt/mR0J83TUcZv7KxFkbFK9FRDlmAJavSg KQP6GUHxweHLFBrijTPOu1ygvsWK66GHX3AuuuVCER0iCsVxGwKFPZf6j4tB74El 7Qnu43wSejKxh29Jbm8d5RJK3z0QTrCw9UxFw6cfrcdrfeuh27R/92zdZsy+vPZo oiAmomy7v0ssmYLjDUefqIjFU4kvaBMMrfr8qkVqqw0FLKgMGXx8I82vOZ4+yPKx p2liK4w1JFBxLrSWqktNvpMyaLSUOXfKVQ8CAwEAAaOCAdgwggHUMB0GA1UdDgQW BBQB7LG4WqxNePX2SZ2ae44U3OuK2jAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80OTMvQWV5eHVGcXNUWGoxOWttZG1udU9GTnpyaXRvLnJvYTAeBggr BgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmWMMA0GCSqGSIb3DQEBCwUAA4IBAQBY 0I3gBokaopUZseOueoVo33rsTJOvhC6gVheZvaSdbc610wzDgB+iT+oY0p5N9KIi 6OAHL4b6aKK375SCaFw9CUAm4ozW20ep1PBVHwW+F137Al3Xg4y3CjVjbLIjgphd 0enwx1vtjVU3Vzf6bXjL7RKLCTfWxELBwJlGAvrDQMS5uOYkA2TOVzwEfpz56EDm RsGHCasxeDQ8KeqwZb2edL/qHGZj7bOaWJYTTpiB+LoCetUYfoAe98cd/kKnaHNk KBuAIlMetwh8BKDHXibXp7F98uKZeljfd23woHWCdXprEF/yemNf6SXXyJIdeshY EgJuQOKhLrHzggq+0H2c -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:08 2026 by rpki-client