$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/5NH8dNYtslI3qhxMg3BEmR_Ndac.roa File: 5NH8dNYtslI3qhxMg3BEmR_Ndac.roa (raw, json) Hash identifier: GnvgPfgKU5Tex+1zcy+HiZrb1lu/ZJiSdJG7Vaz7R3I= Subject key identifier: E4:D1:FC:74:D6:2D:B2:52:37:AA:1C:4C:83:70:44:99:1F:CD:75:A7 Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: AC Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/5NH8dNYtslI3qhxMg3BEmR_Ndac.roa Signing time: Tue 31 Mar 2026 07:37:20 +0000 ROA not before: Tue 31 Mar 2026 07:37:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 55900 IP address blocks: 203.23.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Mar 31 07:37:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E4D1FC74D62DB25237AA1C4C837044991FCD75A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9a:fc:c0:93:0b:77:39:f2:ca:e6:21:69:54: c8:77:94:9e:f2:fa:92:d0:23:2c:2d:e9:bc:70:6f: 79:d0:c0:de:ee:aa:14:01:bc:82:54:a8:5b:33:48: a4:72:b1:00:26:17:82:0b:7b:01:4d:18:b4:39:a9: b7:55:dd:47:5c:6d:b7:e4:4a:6e:a0:b8:e0:eb:b8: db:62:e9:11:89:b6:6e:38:34:6d:6b:27:a0:56:e3: 49:c6:fb:16:2f:6f:8d:76:2d:93:1f:02:7f:e5:1f: 2e:15:71:5f:d9:b2:54:25:4e:a1:8a:36:40:ef:03: b2:58:6f:84:e6:ea:83:a3:3c:61:c2:65:1c:1b:cd: 6e:d0:64:0e:28:1b:6b:7b:0b:46:d0:47:48:00:4f: 1a:95:94:78:58:0a:ea:80:05:ce:19:7a:81:55:fd: c5:a6:d7:ce:4e:73:0b:e3:fc:aa:f9:7b:12:ca:24: 3a:b7:5f:9b:80:f8:33:b7:10:03:27:03:c3:4a:8c: 21:bc:2c:62:95:72:ff:a0:27:e9:04:9c:a7:37:98: 81:ec:8b:04:f7:6d:50:43:0b:fd:70:e2:ee:f5:6c: fa:3b:27:5d:f2:f2:c4:9b:19:00:f8:b2:32:4c:28: ae:18:76:da:fd:44:94:da:0a:0a:de:1f:fa:61:d6: fa:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D1:FC:74:D6:2D:B2:52:37:AA:1C:4C:83:70:44:99:1F:CD:75:A7 X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/5NH8dNYtslI3qhxMg3BEmR_Ndac.roa sbgp-ipAddrBlock: critical IPv4: 203.23.200.0/22 Signature Algorithm: sha256WithRSAEncryption e8:c1:4a:5c:5e:1c:fa:4a:bf:9d:a3:5d:5b:e9:a2:e3:9d:1b: 27:92:17:5f:d6:b0:45:c9:05:b3:b3:e8:30:f9:b4:e1:12:ed: 3e:0d:d3:f9:11:3a:28:2f:2f:bb:46:94:80:fb:a7:5d:cd:2b: 09:dd:65:f7:7a:89:b5:dd:49:bf:66:c6:b2:09:3d:ee:cb:34: 29:06:f0:6e:0d:2b:dd:3b:06:bd:75:8c:d3:82:7b:e0:77:1d: e3:fd:9e:36:4f:61:e1:3f:fa:53:2a:c0:87:39:de:4e:68:3b: 0c:91:49:8a:f7:99:ea:6d:4c:6d:d5:20:97:4a:aa:e0:27:3e: 38:f5:32:1a:66:59:e0:37:55:1b:e4:e5:b7:45:2e:51:93:ec: cb:61:73:fb:56:99:c3:54:cd:0d:ad:03:92:5d:85:c8:ee:65: a6:54:c0:d7:5e:49:c7:97:34:e6:6b:29:b5:72:2d:9f:b9:b5: bc:fd:6c:8e:7b:ea:da:08:87:db:e6:86:ad:5b:65:da:6c:ad: fe:e7:e0:50:dd:dd:34:19:e6:a3:13:50:cc:a6:6a:8e:eb:98: eb:9e:3c:e8:29:df:cb:b1:7a:eb:5f:c7:57:08:0b:f0:56:5c: ac:25:ce:62:52:23:12:eb:72:67:b8:7a:b6:9a:cf:0b:d0:3d: ff:8c:bd:33 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUIw RDcyRjlGNDMwQjdENDAwMzM3NUYxMEQ1MDI1QjlFNUMwMDQzNzAeFw0yNjAzMzEw NzM3MjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEU0RDFGQzc0RDYyREIy NTIzN0FBMUM0QzgzNzA0NDk5MUZDRDc1QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvmvzAkwt3OfLK5iFpVMh3lJ7y+pLQIywt6bxwb3nQwN7uqhQB vIJUqFszSKRysQAmF4ILewFNGLQ5qbdV3UdcbbfkSm6guODruNti6RGJtm44NG1r J6BW40nG+xYvb412LZMfAn/lHy4VcV/ZslQlTqGKNkDvA7JYb4Tm6oOjPGHCZRwb zW7QZA4oG2t7C0bQR0gATxqVlHhYCuqABc4ZeoFV/cWm185Ocwvj/Kr5exLKJDq3 X5uA+DO3EAMnA8NKjCG8LGKVcv+gJ+kEnKc3mIHsiwT3bVBDC/1w4u71bPo7J13y 8sSbGQD4sjJMKK4Ydtr9RJTaCgreH/ph1vrfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU5NH8dNYtslI3qhxMg3BEmR/NdacwHwYDVR0jBBgwFoAUWw1y+fQwt9QAM3Xx DVAlueXABDcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzOS9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVlWEFCRGMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVl WEFCRGMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTM5LzVOSDhkTll0c2xJM3FoeE1nM0JFbVJfTmRhYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALLF8gwDQYJKoZIhvcNAQELBQADggEB AOjBSlxeHPpKv52jXVvpouOdGyeSF1/WsEXJBbOz6DD5tOES7T4N0/kROigvL7tG lID7p13NKwndZfd6ibXdSb9mxrIJPe7LNCkG8G4NK907Br11jNOCe+B3HeP9njZP YeE/+lMqwIc53k5oOwyRSYr3meptTG3VIJdKquAnPjj1MhpmWeA3VRvk5bdFLlGT 7Mthc/tWmcNUzQ2tA5JdhcjuZaZUwNdeSceXNOZrKbVyLZ+5tbz9bI576toIh9vm hq1bZdpsrf7n4FDd3TQZ5qMTUMymao7rmOuePOgp38uxeutfx1cIC/BWXKwlzmJS IxLrcme4eraazwvQPf+MvTM= -----END CERTIFICATE-----Generated at Tue Apr 7 21:01:41 2026 by rpki-client