$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/653/0VhkI34YlUF5wpc2o8RUySANotk.roa File: 0VhkI34YlUF5wpc2o8RUySANotk.roa (raw, json) Hash identifier: FkNRvofJXXXIBgleZOQhbIRjhi+HH2o9mfStgzEQKS8= Subject key identifier: D1:58:64:23:7E:18:95:41:79:C2:97:36:A3:C4:54:C9:20:0D:A2:D9 Certificate issuer: /CN=EE5C4F77377D7F5075C64BA4B57998BC79326C5E Certificate serial: 38 Authority key identifier: EE:5C:4F:77:37:7D:7F:50:75:C6:4B:A4:B5:79:98:BC:79:32:6C:5E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7lxPdzd9f1B1xkuktXmYvHkybF4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/0VhkI34YlUF5wpc2o8RUySANotk.roa Signing time: Tue 31 Mar 2026 08:39:47 +0000 ROA not before: Tue 31 Mar 2026 08:39:47 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17931 IP address blocks: 203.153.64.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/7lxPdzd9f1B1xkuktXmYvHkybF4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/7lxPdzd9f1B1xkuktXmYvHkybF4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7lxPdzd9f1B1xkuktXmYvHkybF4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE5C4F77377D7F5075C64BA4B57998BC79326C5E Validity Not Before: Mar 31 08:39:47 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D15864237E18954179C29736A3C454C9200DA2D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f6:d8:c9:fd:01:a0:ca:f5:a7:3a:95:40:33: e1:91:3b:d7:89:56:b9:a4:67:cf:6c:47:9b:81:35: 53:bb:fd:ed:e2:70:f4:73:7e:c6:a3:c7:27:05:38: 5e:8c:eb:4f:38:c3:c5:fe:f6:b8:9e:7b:a4:00:78: 24:30:32:30:f6:64:29:10:71:b6:d1:f5:57:f6:34: aa:38:04:23:b9:04:5e:38:e5:09:50:b2:73:73:29: 68:e6:41:29:4a:4a:d9:ae:95:6b:a4:da:b0:f7:0b: 4b:48:e8:2c:73:5b:87:95:b1:0e:ad:20:be:fc:be: 4d:37:bd:64:98:73:fb:17:dc:6d:3b:47:e0:90:86: 0f:6c:77:e8:0c:ef:00:eb:1e:9f:95:39:37:ae:09: a8:7d:76:a0:88:50:ed:9d:a6:da:17:d5:fd:a9:9b: 66:53:26:74:da:c1:f1:5b:d0:5a:d2:a4:87:0e:4b: bb:14:db:8e:29:ba:51:5d:8a:3e:4a:b4:e9:e0:79: f9:84:cb:26:17:47:96:16:19:41:a8:4e:b9:2c:c2: 1e:95:ea:d6:3a:a4:af:7b:4a:2c:11:28:88:09:3d: 06:65:23:26:f3:6a:bc:76:23:c4:d5:85:91:28:ae: 50:81:cd:64:1f:4c:22:53:23:75:a3:ea:5f:08:04: 39:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:58:64:23:7E:18:95:41:79:C2:97:36:A3:C4:54:C9:20:0D:A2:D9 X509v3 Authority Key Identifier: keyid:EE:5C:4F:77:37:7D:7F:50:75:C6:4B:A4:B5:79:98:BC:79:32:6C:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/7lxPdzd9f1B1xkuktXmYvHkybF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7lxPdzd9f1B1xkuktXmYvHkybF4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/0VhkI34YlUF5wpc2o8RUySANotk.roa sbgp-ipAddrBlock: critical IPv4: 203.153.64.0/20 Signature Algorithm: sha256WithRSAEncryption 5a:27:62:44:5c:11:92:83:d9:a7:f7:e7:0a:da:b1:64:8f:dd: f6:c4:f5:e2:eb:43:a4:52:82:36:52:1f:cb:2b:14:5c:3b:6e: e1:93:d6:a1:e2:1e:9d:84:cf:ca:4b:40:34:83:e8:8e:a3:46: 53:84:75:09:33:84:83:ae:ad:77:21:38:99:5d:36:61:64:79: 2a:51:01:38:fe:c9:1a:c7:29:2b:6a:f2:7f:d1:22:e0:88:5d: 4d:16:0b:14:34:91:d9:dc:48:e8:64:d0:e6:a1:26:55:1b:26: 57:f8:4e:4c:a0:00:0b:19:8b:45:fa:e5:d3:44:86:fb:7e:64: 3f:41:8f:ba:15:2a:23:92:3b:7a:bc:11:51:c7:02:25:73:d1: 5e:7e:78:e4:46:04:0e:89:26:3a:2d:de:99:d5:b3:fd:d1:c5: 62:0a:be:94:e0:1f:cb:e0:11:b8:91:9e:42:7d:e8:f1:dc:5a: 97:ef:e1:80:91:a4:2e:f8:0a:a0:84:29:7e:1b:af:ab:d5:ed: da:d4:07:aa:79:93:c6:c5:5b:f2:da:d6:0f:d4:9d:8a:c0:c6: 5a:c8:9b:83:1a:a7:73:ad:ca:8a:34:bb:b1:72:84:a1:f4:46: 33:84:6f:06:b5:1d:39:ab:b0:42:84:0f:f1:1a:b2:fc:ce:2f: 05:60:f1:48 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTVD NEY3NzM3N0Q3RjUwNzVDNjRCQTRCNTc5OThCQzc5MzI2QzVFMB4XDTI2MDMzMTA4 Mzk0N1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRDE1ODY0MjM3RTE4OTU0 MTc5QzI5NzM2QTNDNDU0QzkyMDBEQTJEOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN/22Mn9AaDK9ac6lUAz4ZE714lWuaRnz2xHm4E1U7v97eJw9HN+ xqPHJwU4XozrTzjDxf72uJ57pAB4JDAyMPZkKRBxttH1V/Y0qjgEI7kEXjjlCVCy c3MpaOZBKUpK2a6Va6TasPcLS0joLHNbh5WxDq0gvvy+TTe9ZJhz+xfcbTtH4JCG D2x36AzvAOsen5U5N64JqH12oIhQ7Z2m2hfV/ambZlMmdNrB8VvQWtKkhw5LuxTb jim6UV2KPkq06eB5+YTLJhdHlhYZQahOuSzCHpXq1jqkr3tKLBEoiAk9BmUjJvNq vHYjxNWFkSiuUIHNZB9MIlMjdaPqXwgEOfECAwEAAaOCAdkwggHVMB0GA1UdDgQW BBTRWGQjfhiVQXnClzajxFTJIA2i2TAfBgNVHSMEGDAWgBTuXE93N31/UHXGS6S1 eZi8eTJsXjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjUzLzdseFBkemQ5ZjFCMXhrdWt0WG1ZdkhreWJGNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzdseFBkemQ5ZjFCMXhrdWt0WG1Zdkhr eWJGNC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82NTMvMFZoa0kzNFlsVUY1d3BjMm84UlV5U0FOb3RrLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMuZQDANBgkqhkiG9w0BAQsFAAOCAQEA WidiRFwRkoPZp/fnCtqxZI/d9sT14utDpFKCNlIfyysUXDtu4ZPWoeIenYTPyktA NIPojqNGU4R1CTOEg66tdyE4mV02YWR5KlEBOP7JGscpK2ryf9Ei4IhdTRYLFDSR 2dxI6GTQ5qEmVRsmV/hOTKAACxmLRfrl00SG+35kP0GPuhUqI5I7erwRUccCJXPR Xn545EYEDokmOi3emdWz/dHFYgq+lOAfy+ARuJGeQn3o8dxal+/hgJGkLvgKoIQp fhuvq9Xt2tQHqnmTxsVb8trWD9SdisDGWsibgxqnc63KijS7sXKEofRGM4RvBrUd OauwQoQP8Rqy/M4vBWDxSA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:41:54 2026 by rpki-client