$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/ki0-L6rqO8gg5ji0iJqTb8_et3A.roa File: ki0-L6rqO8gg5ji0iJqTb8_et3A.roa (raw, json) Hash identifier: xfA/EcVWbXa3ODq040j67eEgWpMmqTXP09kT5tP7xWk= Subject key identifier: 92:2D:3E:2F:AA:EA:3B:C8:20:E6:38:B4:88:9A:93:6F:CF:DE:B7:70 Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: A7 Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/ki0-L6rqO8gg5ji0iJqTb8_et3A.roa Signing time: Tue 31 Mar 2026 07:37:18 +0000 ROA not before: Tue 31 Mar 2026 07:37:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 55900 IP address blocks: 180.131.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Mar 31 07:37:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=922D3E2FAAEA3BC820E638B4889A936FCFDEB770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ab:5f:01:63:24:72:e9:cb:22:e1:76:55:b8: 31:98:82:bf:10:7f:d6:d1:2c:e9:6e:69:36:76:93: c4:3f:9a:a7:d9:d9:a2:42:8d:a7:35:d3:eb:00:2b: e7:1b:92:bc:d6:a1:1d:9e:12:ae:5d:b5:9e:ef:dd: 64:41:89:d1:cb:c3:24:c7:bd:16:ad:96:74:6e:96: 62:79:c9:49:0f:cd:b7:f6:cd:3b:ef:da:e5:e6:d6: 97:71:06:6c:20:d3:63:78:a8:9a:f0:d0:64:4d:7b: 8b:63:3e:82:82:c2:cf:02:84:ed:24:c3:a4:36:98: a2:22:44:ce:4a:92:e5:3c:81:37:b0:09:86:cd:66: 83:9c:d9:ef:2c:97:eb:1a:26:e1:de:47:f7:f3:2d: 94:51:c1:90:5d:a1:9a:ba:3b:a2:86:1b:e6:ba:ed: 64:54:98:d4:0a:59:44:76:8b:8f:ad:48:a6:22:4d: 03:53:0a:8d:6f:00:21:df:f6:5d:05:c3:c4:f0:ae: 3d:2f:46:e6:05:fc:04:6b:c0:a8:8f:8e:b1:ac:4a: 91:fa:6a:4a:aa:7e:89:ed:00:2b:cd:d1:60:50:27: 3c:82:3c:90:c5:6e:c9:75:2d:fc:af:e2:99:6e:f7: ae:16:e1:69:ba:72:08:c3:38:da:41:be:88:d6:5b: 84:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2D:3E:2F:AA:EA:3B:C8:20:E6:38:B4:88:9A:93:6F:CF:DE:B7:70 X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/ki0-L6rqO8gg5ji0iJqTb8_et3A.roa sbgp-ipAddrBlock: critical IPv4: 180.131.208.0/20 Signature Algorithm: sha256WithRSAEncryption f4:34:90:dd:79:04:ef:23:50:4a:ca:e3:1e:71:9b:73:b2:89: 4d:99:f8:b8:eb:72:34:21:e5:a6:7f:9c:6b:db:a4:ab:b5:93: 35:99:82:85:4c:68:b4:12:0a:02:ac:49:ba:38:52:8a:3d:26: b8:32:5a:6a:34:71:e1:39:a8:e5:1c:de:3a:19:b1:3d:95:0a: 16:6f:b0:ed:f1:e6:27:93:ae:74:bd:6e:be:40:b2:3d:f4:4c: 7d:59:7d:56:5b:6e:2d:f4:a4:03:1b:6d:9a:26:95:49:da:43: 90:81:f4:03:77:8b:fd:79:28:71:6a:69:12:9d:1c:8a:ed:d8: 7d:f4:26:22:ef:95:9f:dc:1c:99:4b:c7:59:3d:51:73:44:37: 1c:d3:16:e3:25:44:b1:15:22:b8:ca:2a:a4:77:1d:8c:9a:e9: c4:63:ea:ee:6b:f9:c4:1d:59:d7:9a:1d:94:b7:a9:42:ef:5d: f4:6e:0d:f8:6b:07:aa:24:c9:2c:62:8a:b2:9e:ac:f6:9b:67: e8:9f:13:e7:d6:74:21:de:b4:09:c1:e8:82:1f:d5:21:04:fa: a3:70:f4:72:5c:86:d4:a4:48:f5:d0:e5:41:33:43:d8:17:cf: b3:29:9f:32:15:97:3e:ac:ba:fb:14:f8:cb:23:cc:8e:b1:26: 99:f5:01:8d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUIw RDcyRjlGNDMwQjdENDAwMzM3NUYxMEQ1MDI1QjlFNUMwMDQzNzAeFw0yNjAzMzEw NzM3MThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkyMkQzRTJGQUFFQTNC QzgyMEU2MzhCNDg4OUE5MzZGQ0ZERUI3NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDq18BYyRy6csi4XZVuDGYgr8Qf9bRLOluaTZ2k8Q/mqfZ2aJC jac10+sAK+cbkrzWoR2eEq5dtZ7v3WRBidHLwyTHvRatlnRulmJ5yUkPzbf2zTvv 2uXm1pdxBmwg02N4qJrw0GRNe4tjPoKCws8ChO0kw6Q2mKIiRM5KkuU8gTewCYbN ZoOc2e8sl+saJuHeR/fzLZRRwZBdoZq6O6KGG+a67WRUmNQKWUR2i4+tSKYiTQNT Co1vACHf9l0Fw8Twrj0vRuYF/ARrwKiPjrGsSpH6akqqfontACvN0WBQJzyCPJDF bsl1Lfyv4plu964W4Wm6cgjDONpBvojWW4SzAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUki0+L6rqO8gg5ji0iJqTb8/et3AwHwYDVR0jBBgwFoAUWw1y+fQwt9QAM3Xx DVAlueXABDcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzOS9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVlWEFCRGMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVl WEFCRGMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTM5L2tpMC1MNnJxTzhnZzVqaTBpSnFUYjhfZXQzQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0g9AwDQYJKoZIhvcNAQELBQADggEB APQ0kN15BO8jUErK4x5xm3OyiU2Z+LjrcjQh5aZ/nGvbpKu1kzWZgoVMaLQSCgKs Sbo4Uoo9JrgyWmo0ceE5qOUc3joZsT2VChZvsO3x5ieTrnS9br5Asj30TH1ZfVZb bi30pAMbbZomlUnaQ5CB9AN3i/15KHFqaRKdHIrt2H30JiLvlZ/cHJlLx1k9UXNE NxzTFuMlRLEVIrjKKqR3HYya6cRj6u5r+cQdWdeaHZS3qULvXfRuDfhrB6okySxi irKerPabZ+ifE+fWdCHetAnB6IIf1SEE+qNw9HJchtSkSPXQ5UEzQ9gXz7MpnzIV lz6suvsU+MsjzI6xJpn1AY0= -----END CERTIFICATE-----Generated at Tue Apr 7 22:26:32 2026 by rpki-client