$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/tADPQYmOc2OsGhRZN43akGOdtCc.roa File: tADPQYmOc2OsGhRZN43akGOdtCc.roa (raw, json) Hash identifier: hiyCp2zlvT0of8xK4vvjWpCVHCUQKaUNywJcCbkPiys= Subject key identifier: B4:00:CF:41:89:8E:73:63:AC:1A:14:59:37:8D:DA:90:63:9D:B4:27 Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 4D Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/tADPQYmOc2OsGhRZN43akGOdtCc.roa Signing time: Tue 31 Mar 2026 08:49:32 +0000 ROA not before: Tue 31 Mar 2026 08:49:32 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 219.122.128.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 31 08:49:32 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=B400CF41898E7363AC1A1459378DDA90639DB427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:58:4e:68:06:6a:d7:15:45:5e:ff:f8:04: f5:16:06:98:73:79:1f:24:8d:b0:9a:f6:04:77:88: 2a:e1:31:8c:d3:a1:f5:d9:23:f0:65:44:44:ff:60: f4:8a:61:d4:74:fb:7d:25:fd:14:d7:f2:06:84:e9: e1:dd:9e:da:19:69:16:74:cc:25:52:06:b0:1a:9e: a6:5f:34:58:a1:d4:c7:be:c3:84:4b:dd:64:2b:05: e3:77:37:bc:00:11:3b:30:e4:d0:2d:27:72:4a:fc: ea:ef:f2:14:62:9d:1f:8d:c6:8c:65:a6:40:13:b3: d4:3c:66:ca:5b:2a:e3:8e:09:68:e6:1c:4f:95:78: 0b:42:0e:94:e8:7e:18:5a:e8:60:b6:6c:f8:c3:7d: d8:c7:9f:e4:f0:7d:9b:a2:43:f0:c3:aa:37:62:dd: 93:46:1e:90:c9:e9:64:68:13:64:5c:d2:2c:29:7c: 7a:c1:04:10:39:96:75:3a:8f:8f:60:cc:47:c7:37: ee:ed:39:8c:9a:e2:19:77:57:21:f2:c1:f4:dc:96: 0c:6d:c1:48:27:a7:00:1c:cd:4c:36:c3:02:d3:cd: b6:ee:88:a0:2a:61:d2:9e:d9:26:a6:8b:be:6b:a7: 44:cf:08:f8:7e:e5:66:45:38:42:f4:21:59:99:0e: d9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:00:CF:41:89:8E:73:63:AC:1A:14:59:37:8D:DA:90:63:9D:B4:27 X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/tADPQYmOc2OsGhRZN43akGOdtCc.roa sbgp-ipAddrBlock: critical IPv4: 219.122.128.0/17 Signature Algorithm: sha256WithRSAEncryption 59:36:43:6f:e4:d0:16:3a:d9:fb:23:92:7d:d3:79:bb:df:2c: 6b:ec:3d:4f:c9:91:39:59:d4:89:c9:60:35:75:44:07:00:81: d2:ca:d5:97:29:01:e4:96:0c:77:4d:fd:6d:16:70:1f:3c:ed: 75:05:21:29:2c:14:64:9d:c6:cc:83:8d:a0:71:8c:3a:9e:87: 43:be:b0:73:33:c8:c8:90:6c:81:67:70:94:37:2a:d9:88:3f: 63:56:11:f4:1d:6f:e4:e3:f3:3a:ab:94:f7:72:89:1d:13:46: 69:f6:18:ca:54:28:59:db:9f:51:f3:62:32:88:1f:d6:c5:78: 14:62:c7:2c:d8:cb:69:be:9c:20:da:6e:b0:43:92:ea:2c:88: 20:dd:c7:3a:df:ce:39:b3:a9:40:47:c6:10:3a:ef:0d:df:ee: db:e9:fc:23:5b:d6:78:e7:f6:65:0e:0b:17:5c:0f:89:76:26: f1:98:1d:72:a6:bd:88:f7:bd:71:57:81:27:ea:05:5b:f2:c2: 5e:27:11:b2:51:84:ad:22:89:7a:68:db:a6:1b:0c:92:29:8f: 8f:9e:12:9b:21:ea:a2:83:99:a0:91:05:e9:90:b9:ea:9b:62: d0:a9:ea:ac:e2:a2:58:7f:d6:89:d3:48:d4:52:67:da:d0:ff: 5b:0d:c8:cf -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMzMTA4 NDkzMloXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoQjQwMENGNDE4OThFNzM2 M0FDMUExNDU5Mzc4RERBOTA2MzlEQjQyNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALrZWE5oBmrXFUVe//gE9RYGmHN5HySNsJr2BHeIKuExjNOh9dkj 8GVERP9g9Iph1HT7fSX9FNfyBoTp4d2e2hlpFnTMJVIGsBqepl80WKHUx77DhEvd ZCsF43c3vAAROzDk0C0nckr86u/yFGKdH43GjGWmQBOz1Dxmylsq444JaOYcT5V4 C0IOlOh+GFroYLZs+MN92Mef5PB9m6JD8MOqN2Ldk0YekMnpZGgTZFzSLCl8esEE EDmWdTqPj2DMR8c37u05jJriGXdXIfLB9NyWDG3BSCenABzNTDbDAtPNtu6IoCph 0p7ZJqaLvmunRM8I+H7lZkU4QvQhWZkO2dkCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBS0AM9BiY5zY6waFFk3jdqQY520JzAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80OTMvdEFEUFFZbU9jMk9zR2hSWk40M2FrR09kdENjLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9t6gDANBgkqhkiG9w0BAQsFAAOCAQEA WTZDb+TQFjrZ+yOSfdN5u98sa+w9T8mROVnUiclgNXVEBwCB0srVlykB5JYMd039 bRZwHzztdQUhKSwUZJ3GzIONoHGMOp6HQ76wczPIyJBsgWdwlDcq2Yg/Y1YR9B1v 5OPzOquU93KJHRNGafYYylQoWdufUfNiMogf1sV4FGLHLNjLab6cINpusEOS6iyI IN3HOt/OObOpQEfGEDrvDd/u2+n8I1vWeOf2ZQ4LF1wPiXYm8Zgdcqa9iPe9cVeB J+oFW/LCXicRslGErSKJemjbphsMkimPj54SmyHqooOZoJEF6ZC56pti0KnqrOKi WH/WidNI1FJn2tD/Ww3Izw== -----END CERTIFICATE-----Generated at Tue Apr 7 20:44:40 2026 by rpki-client