$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/Mrh-JN5YBcfkmk4PS1wtqoLnOrE.roa File: Mrh-JN5YBcfkmk4PS1wtqoLnOrE.roa (raw, json) Hash identifier: pc6wyrQwwJrEcJaHnddsePaN9PNoWUXPhj+H7mySgLc= Subject key identifier: 32:B8:7E:24:DE:58:05:C7:E4:9A:4E:0F:4B:5C:2D:AA:82:E7:3A:B1 Certificate issuer: /CN=296966DD720C30575F62D8FD4149458A90AACAA4 Certificate serial: 96 Authority key identifier: 29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Mrh-JN5YBcfkmk4PS1wtqoLnOrE.roa Signing time: Tue 31 Mar 2026 07:35:34 +0000 ROA not before: Tue 31 Mar 2026 07:35:34 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2497 IP address blocks: 157.67.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 03:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=296966DD720C30575F62D8FD4149458A90AACAA4 Validity Not Before: Mar 31 07:35:34 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=32B87E24DE5805C7E49A4E0F4B5C2DAA82E73AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:31:e9:de:ce:7b:10:02:00:ae:28:b9:47: 94:3a:a1:91:e3:c5:ce:aa:0f:e3:7e:9e:76:1a:f8: ab:bd:b2:a8:5c:d7:49:60:48:eb:6e:76:a7:01:b4: d8:54:9a:6e:c5:f3:0c:0c:91:d8:ff:ef:f1:34:3c: 67:ba:4a:29:05:d8:83:86:28:ab:6a:c0:8d:2f:35: 4a:73:f1:89:00:27:3a:69:31:4e:c9:ec:d1:ca:0a: ee:cc:eb:3b:03:b4:dc:20:4a:d3:e2:33:1c:81:88: 1c:5b:e1:4c:1f:38:8b:2c:93:b7:54:7b:af:26:4e: 25:5c:ca:4e:a0:43:13:d0:ea:54:ac:35:ba:8b:ba: 69:14:8a:89:5f:f4:07:02:c2:33:35:da:52:07:65: 0f:77:44:7a:4f:db:ab:3b:76:75:fa:d3:2c:76:32: 77:6b:5e:3e:ac:0e:3d:b8:89:03:19:15:85:65:b7: e0:67:0a:d9:05:33:7f:68:7c:3c:eb:e6:90:aa:0c: 9e:45:3e:99:47:96:1d:8e:a6:68:ba:46:59:cd:03: 4a:1d:37:f0:ea:fd:e2:a3:1d:64:d6:47:01:eb:32: df:70:e3:38:e3:1b:60:2f:e0:0d:75:11:9f:87:37: 97:7a:cf:72:13:1d:a5:2c:20:f2:fc:cb:df:b6:13: e9:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B8:7E:24:DE:58:05:C7:E4:9A:4E:0F:4B:5C:2D:AA:82:E7:3A:B1 X509v3 Authority Key Identifier: keyid:29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Mrh-JN5YBcfkmk4PS1wtqoLnOrE.roa sbgp-ipAddrBlock: critical IPv4: 157.67.0.0/16 Signature Algorithm: sha256WithRSAEncryption c8:a5:2a:aa:98:cc:33:5d:e1:dc:87:31:ae:e2:28:13:fe:58: 65:a2:ba:67:a8:43:5c:66:39:30:54:7a:c5:05:b6:3f:1e:d7: 6c:d5:bd:6e:a4:91:7d:39:7a:af:d4:14:25:6c:b1:df:a0:c9: a6:a5:ab:f7:5c:0e:c5:03:9c:9a:49:ab:45:20:ec:fe:d8:ab: d8:aa:bb:0b:fe:cb:4d:d2:0b:40:28:bc:a4:89:e6:02:90:98: 3c:c0:91:0f:eb:10:c2:fd:7c:03:fa:03:7c:6c:07:53:3c:a1: 55:76:7d:d0:3e:59:d6:a1:fd:cb:6a:e2:f6:bf:b6:99:32:39: db:92:47:fc:a3:7a:39:e3:d0:e3:6e:63:6e:c8:70:c4:61:1b: 3e:3c:b2:fe:39:f0:2b:6e:5d:08:50:6e:14:df:6c:4e:0f:a1: ed:f4:d6:22:7d:04:95:d0:d1:c8:73:76:4b:27:77:b6:fa:13: ae:76:e2:7e:38:50:51:15:df:6c:d0:e9:04:b7:59:e2:cb:48: f1:8e:1f:af:ac:ec:68:d6:c3:cd:77:6f:1e:44:c2:e5:cd:8e: da:5d:23:05:6c:3a:91:22:67:20:8a:7c:87:9a:4e:bb:6a:ca: b5:7c:f5:60:c5:14:4d:21:65:b6:ba:bd:b7:d6:4b:8c:8d:0c: be:97:82:3e -----BEGIN CERTIFICATE----- MIIEuDCCA6CgAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk2 OTY2REQ3MjBDMzA1NzVGNjJEOEZENDE0OTQ1OEE5MEFBQ0FBNDAeFw0yNjAzMzEw NzM1MzRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMyQjg3RTI0REU1ODA1 QzdFNDlBNEUwRjRCNUMyREFBODJFNzNBQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaZDHp3s57EAIArii5R5Q6oZHjxc6qD+N+nnYa+Ku9sqhc10lg SOtudqcBtNhUmm7F8wwMkdj/7/E0PGe6SikF2IOGKKtqwI0vNUpz8YkAJzppMU7J 7NHKCu7M6zsDtNwgStPiMxyBiBxb4UwfOIssk7dUe68mTiVcyk6gQxPQ6lSsNbqL umkUiolf9AcCwjM12lIHZQ93RHpP26s7dnX60yx2MndrXj6sDj24iQMZFYVlt+Bn CtkFM39ofDzr5pCqDJ5FPplHlh2Opmi6RlnNA0odN/Dq/eKjHWTWRwHrMt9w4zjj G2Av4A11EZ+HN5d6z3ITHaUsIPL8y9+2E+lzAgMBAAGjggHUMIIB0DAdBgNVHQ4E FgQUMrh+JN5YBcfkmk4PS1wtqoLnOrEwHwYDVR0jBBgwFoAUKWlm3XIMMFdfYtj9 QUlFipCqyqQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1dsbTNYSU1NRmRmWXRqOVFVbEZpcENxeXFRLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1dsbTNYSU1NRmRmWXRqOVFVbEZpcENx eXFRLmNlcjAOBgNVHQ8BAf8EBAMCB4AwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUF BzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvTXJoLUpONVlCY2ZrbWs0UFMxd3Rxb0xuT3JFLnJvYTAeBggrBgEF BQcBBwEB/wQPMA0wCwQCAAEwBQMDAJ1DMA0GCSqGSIb3DQEBCwUAA4IBAQDIpSqq mMwzXeHchzGu4igT/lhlorpnqENcZjkwVHrFBbY/Htds1b1upJF9OXqv1BQlbLHf oMmmpav3XA7FA5yaSatFIOz+2KvYqrsL/stN0gtAKLykieYCkJg8wJEP6xDC/XwD +gN8bAdTPKFVdn3QPlnWof3LauL2v7aZMjnbkkf8o3o549DjbmNuyHDEYRs+PLL+ OfArbl0IUG4U32xOD6Ht9NYifQSV0NHIc3ZLJ3e2+hOuduJ+OFBRFd9s0OkEt1ni y0jxjh+vrOxo1sPNd28eRMLlzY7aXSMFbDqRImcginyHmk67asq1fPVgxRRNIWW2 ur231kuMjQy+l4I+ -----END CERTIFICATE-----Generated at Tue Apr 7 16:35:04 2026 by rpki-client