$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/lXtanghytYiUwcM9K22KG5SKvNM.roa File: lXtanghytYiUwcM9K22KG5SKvNM.roa (raw, json) Hash identifier: IMg8o3aagpNjjNWqcm2/1aftdsY8+jV4QKciIxhinuU= Subject key identifier: 95:7B:5A:9E:08:72:B5:88:94:C1:C3:3D:2B:6D:8A:1B:94:8A:BC:D3 Certificate issuer: /CN=296966DD720C30575F62D8FD4149458A90AACAA4 Certificate serial: 92 Authority key identifier: 29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/lXtanghytYiUwcM9K22KG5SKvNM.roa Signing time: Tue 31 Mar 2026 07:35:30 +0000 ROA not before: Tue 31 Mar 2026 07:35:30 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2497 IP address blocks: 157.65.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 03:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=296966DD720C30575F62D8FD4149458A90AACAA4 Validity Not Before: Mar 31 07:35:30 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=957B5A9E0872B58894C1C33D2B6D8A1B948ABCD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:86:d2:18:c8:74:53:61:4a:9f:9f:dd:a7:df: 82:ef:02:bd:fd:63:c3:c3:3a:55:ec:12:4b:6a:a1: 04:56:8c:33:17:a5:85:3c:9c:cb:f0:c9:60:b0:71: 03:d3:fa:6b:c2:bb:c1:6a:ed:40:5b:6f:54:22:0b: 87:37:72:79:05:47:f2:0e:36:fb:4a:a8:32:34:4c: cf:27:b5:b0:88:af:9a:9a:75:f4:b3:41:de:56:d1: 2c:4f:a4:ce:29:20:18:b0:1b:b7:91:12:ae:62:2b: 3e:3e:4e:63:05:0e:be:0a:27:13:5d:5f:27:31:3d: 5e:b1:8b:fc:1d:77:df:f1:ca:45:d9:bc:2b:bd:f5: ed:fc:25:09:c8:37:98:c5:5b:12:52:a6:91:11:b0: fe:6d:cb:ef:49:f2:91:ce:0b:d5:95:f6:82:81:b3: 04:da:b7:4d:51:5e:bf:1b:20:7b:89:7a:49:d2:cd: 42:04:8d:a5:e2:7e:48:dc:29:93:1e:a7:ca:92:3a: bb:dd:6f:18:0a:0e:db:98:12:59:31:e6:86:43:8f: e0:12:cd:94:85:16:4c:f1:af:72:28:06:e6:ba:b5: 9c:13:9f:40:6d:e4:f6:72:c4:21:01:82:ab:8a:a2: 5a:8c:5e:06:4c:ab:af:47:0f:c6:8d:59:08:cc:fd: a3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7B:5A:9E:08:72:B5:88:94:C1:C3:3D:2B:6D:8A:1B:94:8A:BC:D3 X509v3 Authority Key Identifier: keyid:29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/lXtanghytYiUwcM9K22KG5SKvNM.roa sbgp-ipAddrBlock: critical IPv4: 157.65.192.0/21 Signature Algorithm: sha256WithRSAEncryption c2:6d:35:3e:bb:bd:f6:3c:62:6e:07:24:28:c3:95:27:9e:4b: b7:38:cc:0b:cd:65:6c:e4:e9:12:10:3a:4b:d2:ea:6a:f2:62: 7a:65:55:90:dd:03:af:e1:e9:f9:9f:e8:75:3f:74:a3:8e:52: 99:d6:8c:4c:36:2f:ae:e1:2d:eb:5a:d1:c4:7f:92:79:92:c8: a3:2e:73:2a:e9:a6:a0:78:41:67:3b:25:1c:c9:b0:4e:29:21: fd:18:ff:e9:11:25:1d:33:da:4b:0f:0d:a4:96:de:be:5f:c4: 88:a1:d9:51:ae:27:71:d8:0a:db:e9:ac:b4:53:34:06:4d:84: 76:5d:00:72:cf:7e:bd:b3:c9:6a:f0:48:f4:88:46:72:2b:4e: 91:47:fa:94:13:15:0b:81:e3:d1:32:a6:1d:8a:47:f8:56:50: e9:35:41:ca:de:7d:d0:8d:a7:60:79:e4:a6:d9:fa:83:0e:68: c1:9d:ac:fa:87:4a:35:66:85:8e:6a:03:7a:64:7e:c3:6d:4a: 0c:16:0f:c1:2d:0a:b9:71:ab:90:0a:f3:ca:c6:71:c4:e7:f4: 32:a9:43:8b:af:c6:2d:f0:89:d6:98:75:1e:4d:fa:4d:16:d3: d3:12:46:17:3c:dc:7e:be:0d:5d:e6:58:99:52:72:38:16:98: d5:e3:ca:83 -----BEGIN CERTIFICATE----- MIIEuTCCA6GgAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk2 OTY2REQ3MjBDMzA1NzVGNjJEOEZENDE0OTQ1OEE5MEFBQ0FBNDAeFw0yNjAzMzEw NzM1MzBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk1N0I1QTlFMDg3MkI1 ODg5NEMxQzMzRDJCNkQ4QTFCOTQ4QUJDRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYhtIYyHRTYUqfn92n34LvAr39Y8PDOlXsEktqoQRWjDMXpYU8 nMvwyWCwcQPT+mvCu8Fq7UBbb1QiC4c3cnkFR/IONvtKqDI0TM8ntbCIr5qadfSz Qd5W0SxPpM4pIBiwG7eREq5iKz4+TmMFDr4KJxNdXycxPV6xi/wdd9/xykXZvCu9 9e38JQnIN5jFWxJSppERsP5ty+9J8pHOC9WV9oKBswTat01RXr8bIHuJeknSzUIE jaXifkjcKZMep8qSOrvdbxgKDtuYElkx5oZDj+ASzZSFFkzxr3IoBua6tZwTn0Bt 5PZyxCEBgquKolqMXgZMq69HD8aNWQjM/aNLAgMBAAGjggHVMIIB0TAdBgNVHQ4E FgQUlXtanghytYiUwcM9K22KG5SKvNMwHwYDVR0jBBgwFoAUKWlm3XIMMFdfYtj9 QUlFipCqyqQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1dsbTNYSU1NRmRmWXRqOVFVbEZpcENxeXFRLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1dsbTNYSU1NRmRmWXRqOVFVbEZpcENx eXFRLmNlcjAOBgNVHQ8BAf8EBAMCB4AwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUF BzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvbFh0YW5naHl0WWlVd2NNOUsyMktHNVNLdk5NLnJvYTAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEA51BwDANBgkqhkiG9w0BAQsFAAOCAQEAwm01 Pru99jxibgckKMOVJ55LtzjMC81lbOTpEhA6S9LqavJiemVVkN0Dr+Hp+Z/odT90 o45SmdaMTDYvruEt61rRxH+SeZLIoy5zKummoHhBZzslHMmwTikh/Rj/6RElHTPa Sw8NpJbevl/EiKHZUa4ncdgK2+mstFM0Bk2Edl0Acs9+vbPJavBI9IhGcitOkUf6 lBMVC4Hj0TKmHYpH+FZQ6TVByt590I2nYHnkptn6gw5owZ2s+odKNWaFjmoDemR+ w21KDBYPwS0KuXGrkArzysZxxOf0MqlDi6/GLfCJ1ph1Hk36TRbT0xJGFzzcfr4N XeZYmVJyOBaY1ePKgw== -----END CERTIFICATE-----Generated at Tue Apr 7 16:28:45 2026 by rpki-client