$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/gYAeXv8MLGzmxpSdkdsLEIMkHOY.roa File: gYAeXv8MLGzmxpSdkdsLEIMkHOY.roa (raw, json) Hash identifier: bcuk5IfgFChcD2dIH4yo6RET5yfCrHQA3Q1VkCleTzg= Subject key identifier: 81:80:1E:5E:FF:0C:2C:6C:E6:C6:94:9D:91:DB:0B:10:83:24:1C:E6 Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 2D Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/gYAeXv8MLGzmxpSdkdsLEIMkHOY.roa Signing time: Tue 31 Mar 2026 08:49:17 +0000 ROA not before: Tue 31 Mar 2026 08:49:17 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 60.57.0.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 31 08:49:17 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=81801E5EFF0C2C6CE6C6949D91DB0B1083241CE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d6:2a:ea:d8:75:6b:0b:b4:7d:ab:93:0d:f5: 4a:f4:6f:1c:ec:89:aa:3f:54:8e:ec:b2:44:b2:5e: 5f:c4:c1:e7:e2:04:53:e5:89:83:c3:f8:62:83:3c: f2:e9:03:e4:29:c3:85:25:0d:0d:01:94:60:6c:11: e5:27:d1:c2:4c:89:48:9d:a3:8e:71:d8:37:44:22: 8c:8c:e3:1e:98:95:d0:18:0a:31:ad:be:34:3d:ab: c0:67:1a:05:41:da:bf:a4:8a:75:c7:e3:17:fb:af: 28:1e:cb:b3:22:d0:0a:29:1c:43:ac:11:06:e7:58: cf:b4:cd:bb:6e:4e:7a:a4:9c:b7:0b:42:ec:7a:37: 6c:2f:39:d2:97:39:08:82:75:10:80:d0:7d:80:e2: 6a:81:a3:a1:b8:f5:69:6d:22:07:3c:db:40:bb:c6: 62:d4:3c:62:01:d5:ed:e3:88:a1:f2:26:fa:14:ef: eb:04:78:55:e6:6d:7e:cb:f9:20:3b:eb:59:d6:bb: 24:27:4a:8f:40:81:aa:a3:6b:7c:be:32:06:e7:60: 3a:b1:0f:4b:29:d3:9a:1e:30:03:ee:7b:1c:71:ec: c0:fb:36:e4:09:47:14:89:53:e5:71:91:c9:b7:5a: 6e:57:e1:c4:19:ce:49:e8:23:d7:bd:21:ed:dd:07: eb:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:80:1E:5E:FF:0C:2C:6C:E6:C6:94:9D:91:DB:0B:10:83:24:1C:E6 X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/gYAeXv8MLGzmxpSdkdsLEIMkHOY.roa sbgp-ipAddrBlock: critical IPv4: 60.57.0.0/17 Signature Algorithm: sha256WithRSAEncryption 04:21:fa:a3:5c:51:4d:61:41:64:d9:09:13:b2:c9:ce:92:2e: 7d:a0:0e:2d:b7:f3:0c:14:99:ef:e5:db:d9:92:50:9f:35:11: 66:91:d1:4b:ec:d5:4a:4a:18:76:c7:bd:6b:8d:e9:13:10:a3: 4b:d5:c1:f1:36:a6:41:1e:fd:39:9b:40:d4:83:74:dc:2c:b8: ef:d9:63:36:89:2a:04:fb:53:bf:12:c9:4b:c9:85:b6:c2:91: 36:cf:75:2a:17:dc:d5:4d:7d:2d:3e:7d:fb:9d:fb:65:e1:2c: 53:95:f4:f1:8e:69:98:e1:b1:a4:65:74:c8:2a:97:09:d7:f5: 18:7e:cb:bc:f5:62:6a:85:07:c6:f4:6e:ce:24:95:80:07:b9: 8c:86:a3:06:2d:9a:17:b1:5a:dd:ae:a0:fb:ad:01:3c:23:dc: d2:86:b7:45:77:15:bf:a3:cb:41:2f:77:6b:14:fc:eb:0e:7c: f5:14:ac:66:dd:ca:37:6f:c1:e8:c6:05:7f:34:0f:8e:f1:4a: 4f:cf:dd:ca:53:8b:bc:fd:fd:f1:44:bf:66:03:c9:0c:98:8e: 1d:d3:9f:31:9b:97:0c:09:0b:1f:22:b0:c8:26:1f:ab:fe:10: 31:71:60:50:80:16:35:3c:f7:ed:5f:ee:43:af:39:32:b4:d9: 3d:a3:69:c3 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMzMTA4 NDkxN1oXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoODE4MDFFNUVGRjBDMkM2 Q0U2QzY5NDlEOTFEQjBCMTA4MzI0MUNFNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKLWKurYdWsLtH2rkw31SvRvHOyJqj9UjuyyRLJeX8TB5+IEU+WJ g8P4YoM88ukD5CnDhSUNDQGUYGwR5SfRwkyJSJ2jjnHYN0QijIzjHpiV0BgKMa2+ ND2rwGcaBUHav6SKdcfjF/uvKB7LsyLQCikcQ6wRBudYz7TNu25OeqSctwtC7Ho3 bC850pc5CIJ1EIDQfYDiaoGjobj1aW0iBzzbQLvGYtQ8YgHV7eOIofIm+hTv6wR4 VeZtfsv5IDvrWda7JCdKj0CBqqNrfL4yBudgOrEPSynTmh4wA+57HHHswPs25AlH FIlT5XGRybdablfhxBnOSegj170h7d0H6zMCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSBgB5e/wwsbObGlJ2R2wsQgyQc5jAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80OTMvZ1lBZVh2OE1MR3pteHBTZGtkc0xFSU1rSE9ZLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzw5ADANBgkqhkiG9w0BAQsFAAOCAQEA BCH6o1xRTWFBZNkJE7LJzpIufaAOLbfzDBSZ7+Xb2ZJQnzURZpHRS+zVSkoYdse9 a43pExCjS9XB8TamQR79OZtA1IN03Cy479ljNokqBPtTvxLJS8mFtsKRNs91Khfc 1U19LT59+537ZeEsU5X08Y5pmOGxpGV0yCqXCdf1GH7LvPViaoUHxvRuziSVgAe5 jIajBi2aF7Fa3a6g+60BPCPc0oa3RXcVv6PLQS93axT86w589RSsZt3KN2/B6MYF fzQPjvFKT8/dylOLvP398US/ZgPJDJiOHdOfMZuXDAkLHyKwyCYfq/4QMXFgUIAW NTz37V/uQ685MrTZPaNpww== -----END CERTIFICATE-----Generated at Tue Apr 7 19:33:51 2026 by rpki-client