$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/lZNqDQ9O6HktCLBK1oorEvEHgIc.roa File: lZNqDQ9O6HktCLBK1oorEvEHgIc.roa (raw, json) Hash identifier: /04rI4wNF0OIg1HZfHRukN/BrAwGW3cdf6+cQn4IHOs= Subject key identifier: 95:93:6A:0D:0F:4E:E8:79:2D:08:B0:4A:D6:8A:2B:12:F1:07:80:87 Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 99 Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/lZNqDQ9O6HktCLBK1oorEvEHgIc.roa Signing time: Tue 31 Mar 2026 08:25:03 +0000 ROA not before: Tue 31 Mar 2026 08:25:03 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9374 IP address blocks: 202.222.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Mar 31 08:25:03 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=95936A0D0F4EE8792D08B04AD68A2B12F1078087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ca:29:9e:e5:90:78:f5:bb:9e:cf:22:8a:00: 47:02:8f:10:ba:44:b5:80:d1:23:1f:fc:b1:7f:e3: c0:41:95:7a:c0:d6:cf:41:01:f8:e2:30:78:f9:23: 22:df:9b:4f:f6:95:8e:77:7e:48:68:18:7d:1e:fc: e7:2f:6b:2d:8e:1e:85:ad:0b:93:68:55:0e:f2:2b: d1:27:d9:69:dd:fa:07:46:48:8d:93:17:85:5c:66: 0c:7d:0f:96:17:6b:2c:88:f8:4b:83:d9:f0:a9:52: 78:c8:ca:ff:94:28:0a:95:fd:f2:d5:f4:0d:30:91: 35:c0:8f:21:a8:80:c6:ef:dd:63:85:98:07:1b:b7: 75:6a:34:e9:b4:de:24:45:4c:8d:c2:bc:73:6b:60: 32:b5:d9:bf:78:2e:3c:1f:5e:e7:4b:c9:88:01:80: 5c:8f:28:06:1e:aa:23:97:e8:d3:1b:80:60:a2:84: 31:c5:0f:0e:b7:76:a9:6b:ce:93:ce:6d:a4:6c:ae: 0f:8e:d3:bc:a2:39:f3:fa:d5:32:05:12:0c:5c:93: 1d:21:fe:33:75:7c:ba:81:86:9d:bf:d9:01:0f:c6: 3b:29:be:a5:3d:4f:1b:52:e7:ab:74:fa:b6:78:6d: 34:93:ed:a2:a9:3e:f7:21:46:3d:68:b1:5f:be:a4: bd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:93:6A:0D:0F:4E:E8:79:2D:08:B0:4A:D6:8A:2B:12:F1:07:80:87 X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/lZNqDQ9O6HktCLBK1oorEvEHgIc.roa sbgp-ipAddrBlock: critical IPv4: 202.222.112.0/20 Signature Algorithm: sha256WithRSAEncryption 82:2e:38:2f:6c:5e:f5:e1:67:8e:b6:d5:50:b2:c8:99:4d:e4: 40:70:bc:ba:cc:4e:30:ec:c7:69:43:36:fb:75:60:18:63:e2: ab:1b:3f:75:75:93:30:4f:14:6b:3a:25:14:f7:1b:bf:e3:fd: d2:79:e7:b4:36:39:a8:20:bc:19:e4:1e:2a:6f:ec:0b:53:d3: b0:47:02:84:02:7b:9d:eb:53:31:cf:91:71:dc:69:5a:be:ac: 1b:2e:b9:ca:18:93:ff:e2:da:4c:cb:b1:01:fc:cc:20:27:e2: 0b:a7:5d:0e:f0:1c:09:91:d4:8c:db:81:5b:12:21:9e:8d:2a: 99:7c:78:aa:9c:4d:eb:8d:69:45:57:90:f5:2e:70:3e:df:fb: 04:54:42:55:bd:8e:7c:13:85:1b:cf:fc:64:93:a8:f7:07:71: 8a:b1:1c:74:6b:f3:fe:26:fe:0f:51:5c:c3:60:24:69:e5:c4: df:fd:98:4c:1c:0a:54:f7:7f:66:0e:59:39:67:9f:2f:bc:a8: 8f:29:c8:fc:43:f2:8c:fb:74:01:f8:b2:22:68:9c:3c:cb:ef: c6:e8:62:1d:47:3c:14:36:81:d1:0b:04:06:cf:d1:ba:5b:73: 52:e8:7d:5b:32:22:f6:6a:fe:76:bf:ce:a2:20:76:a2:13:64: 37:5a:34:d7 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjVE RTUyRTY0QkU0M0UzMjhBQTY5RjNBQjJEMzQ3Rjg4MzNFQzYzNzAeFw0yNjAzMzEw ODI1MDNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk1OTM2QTBEMEY0RUU4 NzkyRDA4QjA0QUQ2OEEyQjEyRjEwNzgwODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChyime5ZB49buezyKKAEcCjxC6RLWA0SMf/LF/48BBlXrA1s9B AfjiMHj5IyLfm0/2lY53fkhoGH0e/Ocvay2OHoWtC5NoVQ7yK9En2Wnd+gdGSI2T F4VcZgx9D5YXayyI+EuD2fCpUnjIyv+UKAqV/fLV9A0wkTXAjyGogMbv3WOFmAcb t3VqNOm03iRFTI3CvHNrYDK12b94LjwfXudLyYgBgFyPKAYeqiOX6NMbgGCihDHF Dw63dqlrzpPObaRsrg+O07yiOfP61TIFEgxckx0h/jN1fLqBhp2/2QEPxjspvqU9 TxtS56t0+rZ4bTST7aKpPvchRj1osV++pL1LAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUlZNqDQ9O6HktCLBK1oorEvEHgIcwHwYDVR0jBBgwFoAUZd5S5kvkPjKKpp86 stNH+IM+xjcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY4L1pkNVM1a3ZrUGpLS3BwODZzdE5ILUlNLXhqYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1pkNVM1a3ZrUGpLS3BwODZzdE5ILUlN LXhqYy5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82OC9sWk5xRFE5TzZIa3RDTEJLMW9vckV2RUhnSWMucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyt5wMA0GCSqGSIb3DQEBCwUAA4IBAQCC LjgvbF714WeOttVQssiZTeRAcLy6zE4w7MdpQzb7dWAYY+KrGz91dZMwTxRrOiUU 9xu/4/3Seee0NjmoILwZ5B4qb+wLU9OwRwKEAnud61Mxz5Fx3GlavqwbLrnKGJP/ 4tpMy7EB/MwgJ+ILp10O8BwJkdSM24FbEiGejSqZfHiqnE3rjWlFV5D1LnA+3/sE VEJVvY58E4Ubz/xkk6j3B3GKsRx0a/P+Jv4PUVzDYCRp5cTf/ZhMHApU939mDlk5 Z58vvKiPKcj8Q/KM+3QB+LIiaJw8y+/G6GIdRzwUNoHRCwQGz9G6W3NS6H1bMiL2 av52v86iIHaiE2Q3WjTX -----END CERTIFICATE-----Generated at Tue Apr 7 21:03:25 2026 by rpki-client