$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/K8lMeUQax1ixECNCxLSd5VYsfqs.roa File: K8lMeUQax1ixECNCxLSd5VYsfqs.roa (raw, json) Hash identifier: vpHYzk6JmHdv6znqBdDOwdzYitTUr4CoKL9DDT6nZ5k= Subject key identifier: 2B:C9:4C:79:44:1A:C7:58:B1:10:23:42:C4:B4:9D:E5:56:2C:7E:AB Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 0215 Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/K8lMeUQax1ixECNCxLSd5VYsfqs.roa Signing time: Tue 31 Mar 2026 07:35:41 +0000 ROA not before: Tue 31 Mar 2026 07:35:41 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2497 IP address blocks: 101.128.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 11:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Mar 31 07:35:41 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2BC94C79441AC758B1102342C4B49DE5562C7EAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:65:25:c2:3b:0a:c9:15:c2:1c:26:52:90:57: e5:cd:52:6c:8d:82:1f:ac:d8:2c:80:1c:e7:3e:fb: 7b:a2:07:73:18:6e:0d:53:3d:71:53:14:ba:9d:c4: 86:53:2b:53:e6:89:0b:51:e0:68:b3:4c:25:6b:8a: 0e:a4:5a:ae:d5:6f:a4:94:0c:e3:04:31:f1:ab:75: ab:77:e9:10:1a:53:58:a6:55:ec:5d:e2:d3:63:da: 30:f9:e0:12:ad:52:e7:d6:b1:99:ef:81:58:b0:31: 6e:9e:8b:26:81:bb:dd:9f:0f:58:7a:71:e9:1b:07: 47:2a:0a:40:70:3e:45:ea:a2:e8:63:5d:51:4d:0f: 05:cd:3f:a3:d5:8f:d4:ee:d1:d5:47:3e:ba:ea:de: ac:64:db:e8:8b:bc:c3:27:89:fb:67:e0:0b:84:60: d1:34:ef:c0:3c:8f:65:eb:1d:d3:22:9f:c2:15:7f: 21:bd:02:e4:28:31:c9:24:39:69:f9:0e:f8:9e:a2: 61:4f:89:36:3a:13:c7:06:5a:73:f7:e3:a3:bc:1c: 8a:f4:33:8a:39:43:86:1c:9e:e9:7a:40:bf:24:42: 49:da:96:1d:12:3e:be:30:1f:f3:c1:29:1c:d0:1b: cf:34:67:99:b6:f5:a7:0d:7d:25:90:1a:37:69:ec: 4d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C9:4C:79:44:1A:C7:58:B1:10:23:42:C4:B4:9D:E5:56:2C:7E:AB X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/K8lMeUQax1ixECNCxLSd5VYsfqs.roa sbgp-ipAddrBlock: critical IPv4: 101.128.128.0/17 Signature Algorithm: sha256WithRSAEncryption 54:de:86:60:88:4b:52:29:49:93:d2:b4:c0:b5:ac:5a:89:26: 21:bf:20:85:5f:8f:9a:94:4a:fc:b7:e0:89:16:c2:31:f4:8e: af:2b:59:ff:5c:a0:18:97:9f:44:bd:78:4f:86:d5:3e:bf:c6: 49:fe:18:e6:be:5e:33:da:99:5d:18:2f:fc:d4:93:32:ab:5b: 04:ad:a2:79:21:9b:a1:90:c7:d6:40:96:ff:87:39:94:9d:2c: 1b:dd:cf:0a:87:b4:46:46:c2:16:bb:3d:67:10:6c:e8:e1:66: c6:45:a6:7d:aa:c5:81:92:5b:92:e5:20:d9:ce:a1:b2:7b:04: ab:f6:5e:38:80:54:e9:47:14:6b:15:d8:a3:bc:59:b6:bf:2a: 99:04:e3:79:5c:aa:59:c9:a3:4b:e2:83:8f:5f:08:6d:6f:bc: e2:28:f3:9d:c7:fd:4c:31:12:d4:51:2b:74:ee:90:e0:01:5e: 17:20:5c:1b:77:1b:67:a7:a4:6b:db:90:f1:40:e6:f8:17:df: d3:ab:6f:08:49:58:50:30:ac:c8:4b:18:88:ec:63:9d:e2:1b: f9:a5:ca:6e:7d:cb:c0:ba:68:9b:a3:1c:8f:7b:c7:5d:8a:e1: 0b:85:f9:32:a3:8b:6e:c3:65:b6:51:cf:bc:a5:1a:5e:0c:1e: f4:d5:1b:93 -----BEGIN CERTIFICATE----- MIIEuTCCA6GgAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNjAzMzEw NzM1NDFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJCQzk0Qzc5NDQxQUM3 NThCMTEwMjM0MkM0QjQ5REU1NTYyQzdFQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2ZSXCOwrJFcIcJlKQV+XNUmyNgh+s2CyAHOc++3uiB3MYbg1T PXFTFLqdxIZTK1PmiQtR4GizTCVrig6kWq7Vb6SUDOMEMfGrdat36RAaU1imVexd 4tNj2jD54BKtUufWsZnvgViwMW6eiyaBu92fD1h6cekbB0cqCkBwPkXqouhjXVFN DwXNP6PVj9Tu0dVHPrrq3qxk2+iLvMMniftn4AuEYNE078A8j2XrHdMin8IVfyG9 AuQoMckkOWn5DvieomFPiTY6E8cGWnP346O8HIr0M4o5Q4Ycnul6QL8kQknalh0S Pr4wH/PBKRzQG880Z5m29acNfSWQGjdp7E2ZAgMBAAGjggHVMIIB0TAdBgNVHQ4E FgQUK8lMeUQax1ixECNCxLSd5VYsfqswHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUF BzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvSzhsTWVVUWF4MWl4RUNOQ3hMU2Q1VllzZnFzLnJvYTAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEB2WAgDANBgkqhkiG9w0BAQsFAAOCAQEAVN6G YIhLUilJk9K0wLWsWokmIb8ghV+PmpRK/LfgiRbCMfSOrytZ/1ygGJefRL14T4bV Pr/GSf4Y5r5eM9qZXRgv/NSTMqtbBK2ieSGboZDH1kCW/4c5lJ0sG93PCoe0RkbC Frs9ZxBs6OFmxkWmfarFgZJbkuUg2c6hsnsEq/ZeOIBU6UcUaxXYo7xZtr8qmQTj eVyqWcmjS+KDj18IbW+84ijzncf9TDES1FErdO6Q4AFeFyBcG3cbZ6eka9uQ8UDm +Bff06tvCElYUDCsyEsYiOxjneIb+aXKbn3LwLpom6Mcj3vHXYrhC4X5MqOLbsNl tlHPvKUaXgwe9NUbkw== -----END CERTIFICATE-----Generated at Tue Apr 7 13:24:55 2026 by rpki-client