$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/5GgkfvRTzr1_B36z8EWEAUermGI.roa File: 5GgkfvRTzr1_B36z8EWEAUermGI.roa (raw, json) Hash identifier: ZIZYkIrh+9ApvD6Zyz6R4S/KbZCrKpH672bbX4Fu+L0= Subject key identifier: E4:68:24:7E:F4:53:CE:BD:7F:07:7E:B3:F0:45:84:01:47:AB:98:62 Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 82 Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/5GgkfvRTzr1_B36z8EWEAUermGI.roa Signing time: Tue 31 Mar 2026 07:32:06 +0000 ROA not before: Tue 31 Mar 2026 07:32:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 59125 IP address blocks: 1.21.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 14:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Mar 31 07:32:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E468247EF453CEBD7F077EB3F045840147AB9862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f2:a2:ce:be:8d:31:a2:ea:7c:50:1f:66:f5: c5:7c:a3:32:c2:64:de:8a:31:87:cd:0e:f7:40:84: ca:92:4b:ef:2f:fa:cd:0f:4a:14:6e:1c:e2:3c:21: 67:30:c8:04:5c:ab:fb:8c:11:0a:5a:da:68:24:4b: d8:0e:ed:b8:d8:c7:be:22:cd:56:d7:fe:86:08:a1: 51:31:16:55:17:34:1f:64:fa:7f:4c:72:0f:6c:4d: 94:6e:76:2c:f9:c0:2c:8b:88:db:2f:07:09:2c:02: a3:87:18:cb:a1:4a:05:bd:35:ed:e2:7c:60:90:72: 30:96:6b:f5:3e:5f:82:f9:8f:ca:48:1d:32:4a:a9: c5:d1:9d:c0:77:05:08:7a:bc:da:c2:72:60:57:de: 0e:ff:77:dd:43:62:98:c5:72:01:7b:e5:2a:c0:ab: 29:e1:94:79:ae:29:8e:eb:5a:1e:a9:dd:2c:a8:31: aa:c3:aa:5b:48:65:5b:bc:9e:01:3e:27:fa:1e:60: 42:c1:5c:4e:8b:69:c6:c8:ba:a1:64:16:69:91:49: 0f:40:b1:ed:af:91:49:da:e8:36:d7:0b:ad:52:5e: f3:1f:35:f4:bb:25:68:bc:ba:bc:46:da:96:3b:62: ae:f7:87:8b:cb:8a:24:59:a8:81:08:c6:62:c0:53: 21:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:68:24:7E:F4:53:CE:BD:7F:07:7E:B3:F0:45:84:01:47:AB:98:62 X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/5GgkfvRTzr1_B36z8EWEAUermGI.roa sbgp-ipAddrBlock: critical IPv4: 1.21.128.0/20 Signature Algorithm: sha256WithRSAEncryption 46:48:31:11:d9:76:9d:86:1e:c3:5b:41:b9:82:63:23:38:a4: bc:75:d4:91:d5:61:71:26:7f:70:f8:7c:71:e2:26:f9:9f:25: af:be:a5:fb:91:aa:de:d3:57:5f:bd:ad:8a:87:51:bc:64:e9: 11:f2:72:75:1e:0f:93:a8:78:37:69:2e:4a:66:50:a1:ce:74: a1:bd:b4:68:24:51:73:bb:fa:62:d4:79:92:50:ba:6a:6a:8b: ad:b9:d9:d7:ec:e5:31:b2:8c:a5:cb:bd:d9:f3:fb:96:96:da: 78:6f:18:8f:92:40:b5:43:15:94:74:0e:f3:a4:3d:3b:fb:3b: 02:26:cb:96:03:37:1f:e2:83:24:10:2c:fe:52:2c:db:8b:56: e0:8b:5a:65:50:34:c1:14:b5:e1:c1:eb:09:bc:2b:8a:2d:64: 9c:7a:29:7f:8b:2c:e3:fd:76:73:7a:c7:74:50:b7:e4:e3:25: 8a:0c:67:0e:2b:4f:46:a7:67:7b:d8:a6:5d:78:60:1a:8a:17: 04:6d:13:b0:de:df:97:b5:84:7a:34:39:15:3b:50:70:69:c3: 11:b9:9a:56:09:c0:2e:ed:a0:42:6d:81:1d:00:fc:e5:ce:e5: c4:56:ea:8d:a5:f2:10:ec:ed:b9:34:3b:cb:fa:d8:a1:ea:c2: 50:9d:77:8a -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUIy MEEwNkEyMTIwNTgyMEIyOEZEMDZDRTBBODRGMDNGQ0RBRUJDNTAeFw0yNjAzMzEw NzMyMDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEU0NjgyNDdFRjQ1M0NF QkQ3RjA3N0VCM0YwNDU4NDAxNDdBQjk4NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY8qLOvo0xoup8UB9m9cV8ozLCZN6KMYfNDvdAhMqSS+8v+s0P ShRuHOI8IWcwyARcq/uMEQpa2mgkS9gO7bjYx74izVbX/oYIoVExFlUXNB9k+n9M cg9sTZRudiz5wCyLiNsvBwksAqOHGMuhSgW9Ne3ifGCQcjCWa/U+X4L5j8pIHTJK qcXRncB3BQh6vNrCcmBX3g7/d91DYpjFcgF75SrAqynhlHmuKY7rWh6p3SyoMarD qltIZVu8ngE+J/oeYELBXE6LacbIuqFkFmmRSQ9Ase2vkUna6DbXC61SXvMfNfS7 JWi8urxG2pY7Yq73h4vLiiRZqIEIxmLAUyHZAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU5GgkfvRTzr1/B36z8EWEAUermGIwHwYDVR0jBBgwFoAUGyCgaiEgWCCyj9Bs 4KhPA/za68UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzMC9HeUNnYWlFZ1dDQ3lqOUJzNEtoUEFfemE2OFUuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9HeUNnYWlFZ1dDQ3lqOUJzNEtoUEFf emE2OFUuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTMwLzVHZ2tmdlJUenIxX0IzNno4RVdFQVVlcm1HSS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQBFYAwDQYJKoZIhvcNAQELBQADggEB AEZIMRHZdp2GHsNbQbmCYyM4pLx11JHVYXEmf3D4fHHiJvmfJa++pfuRqt7TV1+9 rYqHUbxk6RHycnUeD5OoeDdpLkpmUKHOdKG9tGgkUXO7+mLUeZJQumpqi6252dfs 5TGyjKXLvdnz+5aW2nhvGI+SQLVDFZR0DvOkPTv7OwImy5YDNx/igyQQLP5SLNuL VuCLWmVQNMEUteHB6wm8K4otZJx6KX+LLOP9dnN6x3RQt+TjJYoMZw4rT0anZ3vY pl14YBqKFwRtE7De35e1hHo0ORU7UHBpwxG5mlYJwC7toEJtgR0A/OXO5cRW6o2l 8hDs7bk0O8v62KHqwlCdd4o= -----END CERTIFICATE-----Generated at Tue Apr 7 16:28:54 2026 by rpki-client