$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/677/lROsTyhMHA1AViTf1XxmhwBHbQQ.roa File: lROsTyhMHA1AViTf1XxmhwBHbQQ.roa (raw, json) Hash identifier: jWUbBNslbEZtVQutwm81It7CO81eXTTADhDJSTeUiyU= Subject key identifier: 95:13:AC:4F:28:4C:1C:0D:40:56:24:DF:D5:7C:66:87:00:47:6D:04 Certificate issuer: /CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Certificate serial: 18 Authority key identifier: 85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/lROsTyhMHA1AViTf1XxmhwBHbQQ.roa Signing time: Tue 31 Mar 2026 08:45:53 +0000 ROA not before: Tue 31 Mar 2026 08:45:53 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18070 IP address blocks: 210.158.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Validity Not Before: Mar 31 08:45:53 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9513AC4F284C1C0D405624DFD57C668700476D04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d3:e3:2e:e6:fe:54:59:80:bc:14:2d:8b:74: 65:7d:2b:4d:5c:b0:32:e6:e0:2e:61:eb:c7:30:51: e1:98:5b:e1:75:0f:58:b0:00:73:a9:b7:a8:45:b1: bd:fb:43:85:cb:63:58:46:43:8a:36:db:04:a1:7e: d2:51:bb:da:1c:dd:f2:d7:67:22:7d:94:e2:82:cc: be:ab:2d:25:c2:45:8c:46:d6:6b:7c:d8:77:79:4b: 41:2c:4c:ec:4f:83:11:38:00:93:b2:5d:e2:38:e4: f2:1a:b1:1b:af:cb:93:16:6e:7c:cb:05:f4:8f:4b: a8:7a:6b:75:dd:6d:72:c6:16:eb:f0:70:31:b6:e7: b3:16:9e:ad:74:66:43:2e:94:97:02:ef:d3:c6:50: 11:f8:0b:a4:fd:33:da:a0:f4:ab:9e:7e:22:02:88: 7c:b5:5d:28:5a:10:15:13:19:f0:e9:c8:55:fe:25: 04:67:95:e5:92:13:13:c2:b0:d4:b0:c0:fb:0a:1c: cd:b8:6e:30:d2:c2:24:18:69:13:8b:7d:07:ba:08: dc:93:f9:cd:37:c6:3d:3e:f2:fc:5f:64:63:f9:b3: 48:23:8e:fc:16:6b:79:c8:1c:ab:ea:37:a7:38:df: 5a:64:73:7b:e5:70:16:9a:26:e2:1d:ee:e5:b2:0f: a7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:13:AC:4F:28:4C:1C:0D:40:56:24:DF:D5:7C:66:87:00:47:6D:04 X509v3 Authority Key Identifier: keyid:85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/lROsTyhMHA1AViTf1XxmhwBHbQQ.roa sbgp-ipAddrBlock: critical IPv4: 210.158.160.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:31:b2:5a:cd:62:76:ed:20:21:66:95:b9:c2:2b:4b:e0:d1: 9d:b1:87:09:89:5b:ec:4a:b6:2a:e1:e5:5d:98:a4:3c:6f:ce: 11:3c:e7:8b:24:5f:ff:fd:80:9e:e1:c6:36:47:b4:58:e6:f3: f9:4c:f7:f4:bb:f2:47:c3:82:3f:58:b1:fc:98:e9:c3:e8:d7: 96:3e:11:36:59:91:8f:81:0d:7c:ea:0a:92:f1:79:65:0b:34: 00:06:6a:43:47:fd:8e:b9:67:1a:f4:60:b3:28:46:37:76:43: 85:05:db:a0:97:b2:2e:c5:12:a5:97:29:6e:25:9f:bd:4a:db: b4:8f:74:f4:55:7f:c6:83:84:3f:01:36:e7:b0:72:aa:9f:47: 17:ef:82:2d:7f:b7:f3:3a:54:14:7a:32:73:ae:02:14:4f:ee: 78:49:7f:08:48:83:ee:28:ea:17:3e:51:d3:a9:fe:84:68:35: cc:11:08:e2:c1:a4:37:4d:a6:24:09:dd:e4:0d:c8:73:f4:52: 0c:68:dc:23:6b:d4:b0:82:c9:62:2e:31:af:17:22:be:83:d6: 73:5a:05:1d:50:6f:8d:4f:0d:d1:90:f2:ac:2d:c2:55:e8:45: aa:a1:5a:96:71:15:9d:d8:c8:d0:46:fa:3c:f5:ac:ba:98:d9: 06:43:4b:30 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUU1 RjE4RDk2MzFDMjU4N0IwOTRFNzhDREQ0RTFCODY1MEY0Q0I5MB4XDTI2MDMzMTA4 NDU1M1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOTUxM0FDNEYyODRDMUMw RDQwNTYyNERGRDU3QzY2ODcwMDQ3NkQwNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANrT4y7m/lRZgLwULYt0ZX0rTVywMubgLmHrxzBR4Zhb4XUPWLAA c6m3qEWxvftDhctjWEZDijbbBKF+0lG72hzd8tdnIn2U4oLMvqstJcJFjEbWa3zY d3lLQSxM7E+DETgAk7Jd4jjk8hqxG6/LkxZufMsF9I9LqHprdd1tcsYW6/BwMbbn sxaerXRmQy6UlwLv08ZQEfgLpP0z2qD0q55+IgKIfLVdKFoQFRMZ8OnIVf4lBGeV 5ZITE8Kw1LDA+woczbhuMNLCJBhpE4t9B7oI3JP5zTfGPT7y/F9kY/mzSCOO/BZr ecgcq+o3pzjfWmRze+VwFpom4h3u5bIPp4ECAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSVE6xPKEwcDUBWJN/VfGaHAEdtBDAfBgNVHSMEGDAWgBSF5fGNljHCWHsJTnjN 1OG4ZQ9MuTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc3L2hlWHhqWll4d2xoN0NVNTR6ZFRodUdVUFRMay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hlWHhqWll4d2xoN0NVNTR6ZFRodUdV UFRMay5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82NzcvbFJPc1R5aE1IQTFBVmlUZjFYeG1od0JIYlFRLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNKeoDANBgkqhkiG9w0BAQsFAAOCAQEA GjGyWs1idu0gIWaVucIrS+DRnbGHCYlb7Eq2KuHlXZikPG/OETzniyRf//2AnuHG Nke0WObz+Uz39LvyR8OCP1ix/Jjpw+jXlj4RNlmRj4ENfOoKkvF5ZQs0AAZqQ0f9 jrlnGvRgsyhGN3ZDhQXboJeyLsUSpZcpbiWfvUrbtI909FV/xoOEPwE257Byqp9H F++CLX+38zpUFHoyc64CFE/ueEl/CEiD7ijqFz5R06n+hGg1zBEI4sGkN02mJAnd 5A3Ic/RSDGjcI2vUsILJYi4xrxcivoPWc1oFHVBvjU8N0ZDyrC3CVehFqqFalnEV ndjI0Eb6PPWsupjZBkNLMA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:39:20 2026 by rpki-client