$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/Cgh4zRHUsyzN2AC55TfPNd3ZfPM.roa File: Cgh4zRHUsyzN2AC55TfPNd3ZfPM.roa (raw, json) Hash identifier: ag5RyAoshyuVpKgJUsSVyPTRlcOLtJv+llqaxLiMXJA= Subject key identifier: 0A:08:78:CD:11:D4:B3:2C:CD:D8:00:B9:E5:37:CF:35:DD:D9:7C:F3 Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: A9 Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Cgh4zRHUsyzN2AC55TfPNd3ZfPM.roa Signing time: Tue 31 Mar 2026 07:37:19 +0000 ROA not before: Tue 31 Mar 2026 07:37:19 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 55900 IP address blocks: 202.171.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Mar 31 07:37:19 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0A0878CD11D4B32CCDD800B9E537CF35DDD97CF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c7:8a:0e:e8:ec:8d:4a:86:d4:15:5c:c4:aa: ca:71:d2:8b:07:12:9b:2e:c5:25:a8:24:c8:71:05: dd:74:d5:cd:ed:32:64:39:c5:ed:fa:f4:87:7f:f2: f8:5a:1b:1f:74:4d:de:17:1a:89:26:25:3d:48:d8: 34:12:13:51:43:fa:50:f7:b8:b4:2c:52:0f:04:25: b3:c1:f8:27:53:a6:62:73:7e:4c:6b:87:13:28:e9: 30:7c:a6:fe:b5:f3:8d:13:ca:a3:02:7a:8b:7b:9c: 7f:5e:b8:7d:b8:dc:73:c0:70:27:9a:05:f1:4f:b4: 2b:5a:0d:b1:81:09:9c:10:d5:be:a3:b5:78:4b:53: 7d:f0:56:5f:fd:17:4b:da:b8:9f:02:7a:08:40:c2: 2a:49:2e:07:b9:cb:af:e2:87:8a:d1:56:b6:87:cc: 71:4a:5a:87:82:bc:c7:3d:75:47:a7:e7:00:d3:da: b8:79:d4:3b:7c:cf:d9:76:1b:55:04:4f:2a:44:f8: b8:72:b0:04:bb:8a:f9:4d:00:8d:d1:74:e5:b2:40: ea:cc:bc:94:ba:35:09:3c:ed:fa:19:49:c2:aa:30: f6:be:1a:19:49:c4:50:db:7b:0e:eb:b4:4e:74:ae: a9:75:3a:e2:69:0f:fb:4c:d0:1b:17:ea:d4:4c:55: 30:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:08:78:CD:11:D4:B3:2C:CD:D8:00:B9:E5:37:CF:35:DD:D9:7C:F3 X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Cgh4zRHUsyzN2AC55TfPNd3ZfPM.roa sbgp-ipAddrBlock: critical IPv4: 202.171.224.0/21 Signature Algorithm: sha256WithRSAEncryption 89:4e:36:64:ab:5d:46:81:93:de:23:79:38:3e:d0:24:fe:1f: 4c:f2:d8:50:15:2b:6a:4d:f9:28:46:64:8c:94:51:4b:f6:0e: 48:cd:2a:8b:23:d1:70:34:1a:5b:50:c1:ff:79:d4:0d:0b:e8: cb:0d:7d:d3:9a:93:ee:96:a0:2c:cd:cb:7a:de:bc:1e:85:4d: 06:11:58:93:7c:b4:c8:31:4a:90:5b:c8:eb:12:d2:b2:f7:be: 9b:a5:de:f3:05:ad:60:41:13:52:8e:2e:3a:1f:a1:1b:3c:3b: 4f:96:aa:e6:40:90:38:55:13:69:25:a9:03:89:51:25:ba:c8: 2f:17:86:ce:ca:ae:58:be:6c:77:3c:db:4f:a5:4c:d4:40:da: 5d:aa:d5:4a:c2:57:c7:b0:50:87:53:71:65:5a:7b:6d:70:eb: 16:cc:dc:10:3a:92:6b:13:c2:a5:a6:1e:e2:75:92:96:4c:ec: 17:bb:bf:cb:27:cb:24:5d:12:77:2f:54:26:38:91:91:28:14: c8:20:84:40:ef:a1:a7:bb:de:11:15:7e:82:7e:e5:aa:6d:ec: a5:3d:32:4f:86:3e:3a:9b:95:5c:c1:87:77:e0:d0:22:74:0f: 6c:b7:67:38:35:ba:87:21:a2:31:3f:b4:cc:30:a9:cc:91:c2: 06:25:6a:c1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUIw RDcyRjlGNDMwQjdENDAwMzM3NUYxMEQ1MDI1QjlFNUMwMDQzNzAeFw0yNjAzMzEw NzM3MTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBMDg3OENEMTFENEIz MkNDREQ4MDBCOUU1MzdDRjM1REREOTdDRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGx4oO6OyNSobUFVzEqspx0osHEpsuxSWoJMhxBd101c3tMmQ5 xe369Id/8vhaGx90Td4XGokmJT1I2DQSE1FD+lD3uLQsUg8EJbPB+CdTpmJzfkxr hxMo6TB8pv61840TyqMCeot7nH9euH243HPAcCeaBfFPtCtaDbGBCZwQ1b6jtXhL U33wVl/9F0vauJ8CeghAwipJLge5y6/ih4rRVraHzHFKWoeCvMc9dUen5wDT2rh5 1Dt8z9l2G1UETypE+LhysAS7ivlNAI3RdOWyQOrMvJS6NQk87foZScKqMPa+GhlJ xFDbew7rtE50rql1OuJpD/tM0BsX6tRMVTCjAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUCgh4zRHUsyzN2AC55TfPNd3ZfPMwHwYDVR0jBBgwFoAUWw1y+fQwt9QAM3Xx DVAlueXABDcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzOS9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVlWEFCRGMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVl WEFCRGMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTM5L0NnaDR6UkhVc3l6TjJBQzU1VGZQTmQzWmZQTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKq+AwDQYJKoZIhvcNAQELBQADggEB AIlONmSrXUaBk94jeTg+0CT+H0zy2FAVK2pN+ShGZIyUUUv2DkjNKosj0XA0GltQ wf951A0L6MsNfdOak+6WoCzNy3revB6FTQYRWJN8tMgxSpBbyOsS0rL3vpul3vMF rWBBE1KOLjofoRs8O0+WquZAkDhVE2klqQOJUSW6yC8Xhs7Krli+bHc820+lTNRA 2l2q1UrCV8ewUIdTcWVae21w6xbM3BA6kmsTwqWmHuJ1kpZM7Be7v8snyyRdEncv VCY4kZEoFMgghEDvoae73hEVfoJ+5apt7KU9Mk+GPjqblVzBh3fg0CJ0D2y3Zzg1 uochojE/tMwwqcyRwgYlasE= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:59 2026 by rpki-client