$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/ihfnyuiJwWkC97c-5Wt7JUHrN_I.roa File: ihfnyuiJwWkC97c-5Wt7JUHrN_I.roa (raw, json) Hash identifier: 71bOjKeMTEETTI6zCD1gMxULZNL4mX/JD3xIBbK+TOQ= Subject key identifier: 8A:17:E7:CA:E8:89:C1:69:02:F7:B7:3E:E5:6B:7B:25:41:EB:37:F2 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 020D Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/ihfnyuiJwWkC97c-5Wt7JUHrN_I.roa Signing time: Tue 31 Mar 2026 07:35:37 +0000 ROA not before: Tue 31 Mar 2026 07:35:37 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2497 IP address blocks: 121.200.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Mar 31 07:35:37 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8A17E7CAE889C16902F7B73EE56B7B2541EB37F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:62:30:27:dc:3d:5e:dc:9c:96:c3:50:e6: d3:20:92:9b:2e:1a:2e:fa:58:7e:89:00:72:80:2a: 03:07:00:b6:29:d0:b1:c2:d7:70:21:30:69:3f:bb: 12:d1:5b:b1:3a:8d:3e:9f:03:e9:31:0a:61:7f:bd: ea:f3:6c:e6:24:6b:8c:ba:23:97:90:3e:47:8e:75: 15:b2:ce:84:26:31:8e:72:91:15:17:71:29:bb:e3: a6:34:fc:e9:3b:14:a2:65:30:6a:8c:6d:54:04:c9: 82:24:19:c1:55:ed:ea:cb:aa:8c:18:59:ea:94:a0: 41:76:15:33:39:f6:6b:58:51:7a:53:85:88:ad:f3: fb:a0:42:c1:e0:00:d5:7c:5f:59:82:34:a2:0c:28: 38:a0:3d:68:47:d4:92:53:d0:60:10:93:d5:28:5f: 99:97:79:4b:72:1d:8a:9b:b2:00:9c:cd:1c:ea:fb: de:9c:b2:9e:57:b1:32:7c:57:55:d7:68:2c:ba:ad: cb:31:4e:bf:d4:9e:51:bd:dc:dd:9d:c3:bc:09:ca: 68:0f:d1:3b:54:ad:10:4e:92:d7:19:5d:e2:68:06: 42:88:34:1f:51:0d:bd:96:71:97:73:88:45:ed:45: 30:e1:42:4c:fd:c4:4f:44:82:5e:bb:d6:cc:67:bb: 7d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:17:E7:CA:E8:89:C1:69:02:F7:B7:3E:E5:6B:7B:25:41:EB:37:F2 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/ihfnyuiJwWkC97c-5Wt7JUHrN_I.roa sbgp-ipAddrBlock: critical IPv4: 121.200.200.0/21 Signature Algorithm: sha256WithRSAEncryption 12:c4:8b:a4:4d:f8:3b:fe:39:ac:55:d5:0a:ef:39:7c:7e:b0: c8:12:87:0f:2f:c7:3e:5c:98:0c:59:40:ad:bb:48:72:a9:0b: 89:9a:e7:fa:2d:3d:c4:3d:b4:0b:6c:60:00:ce:fc:84:b7:e6: c6:62:5e:27:b0:50:79:36:a7:b2:27:87:82:43:63:5e:e7:eb: 8b:a7:c1:e7:b6:6a:a7:bd:e2:00:77:30:e8:e7:6a:c5:95:b3: cd:90:ec:75:6e:e2:de:38:06:09:a9:c6:29:2e:f6:e7:c1:07: f7:c4:74:88:6a:ed:51:b0:80:6f:55:0f:4f:13:99:87:27:d7: 5d:ba:de:15:0a:7a:db:ae:57:7d:e2:7e:ab:69:95:50:57:82: c0:97:70:d6:cc:d9:ab:c7:17:c5:2a:23:0f:4b:03:01:57:ab: a0:a4:9e:f2:c6:eb:f0:fa:b6:f4:0f:c9:59:12:71:ab:31:7e: 09:af:10:9d:51:5a:77:30:97:82:73:67:77:c8:b0:02:4b:7c: eb:b2:a5:3c:84:71:4b:a2:fc:39:47:e7:55:b5:d8:d7:9c:67: 3e:b7:5e:1b:f2:7e:bb:dc:64:c4:85:e1:51:f6:85:e9:78:a6: b8:a6:ef:e8:cd:cf:77:28:9a:ac:c3:ab:50:ae:ab:a4:00:21: 81:a2:54:90 -----BEGIN CERTIFICATE----- MIIEuTCCA6GgAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNjAzMzEw NzM1MzdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhBMTdFN0NBRTg4OUMx NjkwMkY3QjczRUU1NkI3QjI1NDFFQjM3RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC602IwJ9w9XtyclsNQ5tMgkpsuGi76WH6JAHKAKgMHALYp0LHC 13AhMGk/uxLRW7E6jT6fA+kxCmF/verzbOYka4y6I5eQPkeOdRWyzoQmMY5ykRUX cSm746Y0/Ok7FKJlMGqMbVQEyYIkGcFV7erLqowYWeqUoEF2FTM59mtYUXpThYit 8/ugQsHgANV8X1mCNKIMKDigPWhH1JJT0GAQk9UoX5mXeUtyHYqbsgCczRzq+96c sp5XsTJ8V1XXaCy6rcsxTr/UnlG93N2dw7wJymgP0TtUrRBOktcZXeJoBkKINB9R Db2WcZdziEXtRTDhQkz9xE9Egl671sxnu33JAgMBAAGjggHVMIIB0TAdBgNVHQ4E FgQUihfnyuiJwWkC97c+5Wt7JUHrN/IwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUF BzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvaWhmbnl1aUp3V2tDOTdjLTVXdDdKVUhyTl9JLnJvYTAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEA3nIyDANBgkqhkiG9w0BAQsFAAOCAQEAEsSL pE34O/45rFXVCu85fH6wyBKHDy/HPlyYDFlArbtIcqkLiZrn+i09xD20C2xgAM78 hLfmxmJeJ7BQeTansieHgkNjXufri6fB57Zqp73iAHcw6OdqxZWzzZDsdW7i3jgG CanGKS7258EH98R0iGrtUbCAb1UPTxOZhyfXXbreFQp6265XfeJ+q2mVUFeCwJdw 1szZq8cXxSojD0sDAVeroKSe8sbr8Pq29A/JWRJxqzF+Ca8QnVFadzCXgnNnd8iw Akt867KlPIRxS6L8OUfnVbXY15xnPrdeG/J+u9xkxIXhUfaF6XimuKbv6M3Pdyia rMOrUK6rpAAhgaJUkA== -----END CERTIFICATE-----Generated at Tue Apr 7 13:25:13 2026 by rpki-client