$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/696/VzwUOjh699RPbkYP3rOBTOPN1FA.roa File: VzwUOjh699RPbkYP3rOBTOPN1FA.roa (raw, json) Hash identifier: LHT2gXM8A0RLBC6IyRllrFwvzUJitibPzGgQ2W12B/8= Subject key identifier: 57:3C:14:3A:38:7A:F7:D4:4F:6E:46:0F:DE:B3:81:4C:E3:CD:D4:50 Certificate issuer: /CN=32DB70FFB8A72289F56450768644658C54AA64E9 Certificate serial: 53 Authority key identifier: 32:DB:70:FF:B8:A7:22:89:F5:64:50:76:86:44:65:8C:54:AA:64:E9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Mttw_7inIon1ZFB2hkRljFSqZOk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/696/VzwUOjh699RPbkYP3rOBTOPN1FA.roa Signing time: Tue 31 Mar 2026 07:51:08 +0000 ROA not before: Tue 31 Mar 2026 07:51:08 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18135 IP address blocks: 153.124.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/696/Mttw_7inIon1ZFB2hkRljFSqZOk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/696/Mttw_7inIon1ZFB2hkRljFSqZOk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Mttw_7inIon1ZFB2hkRljFSqZOk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32DB70FFB8A72289F56450768644658C54AA64E9 Validity Not Before: Mar 31 07:51:08 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=573C143A387AF7D44F6E460FDEB3814CE3CDD450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bc:49:ab:72:fe:54:9e:e6:d4:a9:33:fb:ed: 77:8d:94:b5:f0:be:ed:53:8c:87:75:6e:99:ac:64: 48:c6:8f:67:80:29:7e:85:dc:1e:2a:ea:a5:69:b1: b5:d7:38:d4:8d:80:80:32:5b:fe:59:3c:8f:ea:58: 77:87:29:4e:cd:56:ed:9c:4b:7b:a1:a2:74:30:8e: 2e:a9:a6:18:cf:a1:64:12:04:c9:42:3c:c2:14:57: 5f:e6:63:6c:bc:bb:f1:ce:fa:52:25:7b:05:8f:df: f5:a4:cf:06:38:f5:b1:2f:b4:9f:db:16:60:bd:ad: 79:50:6f:05:7a:02:e7:d1:52:21:d7:4c:24:00:aa: 40:99:ef:3c:9e:b7:31:0c:38:86:28:98:a1:14:7e: e1:73:8f:5c:42:6b:0f:57:1f:5b:02:3b:34:81:d1: 00:00:23:4a:b0:5f:22:bd:53:6d:4c:2e:a1:66:b9: 5a:50:23:c9:be:9a:57:d9:cf:02:b1:2b:8e:ae:94: 4d:6a:f3:0e:a9:d1:ed:dc:00:2d:35:7e:bd:5a:32: 0a:06:d2:b8:8e:27:d6:9b:0e:11:46:79:ec:e4:0e: f4:57:9b:c9:7d:c9:19:7c:91:e5:97:a6:60:94:bd: 1d:3e:0e:2e:66:c4:25:18:d6:d9:c5:29:a5:0c:9c: cb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3C:14:3A:38:7A:F7:D4:4F:6E:46:0F:DE:B3:81:4C:E3:CD:D4:50 X509v3 Authority Key Identifier: keyid:32:DB:70:FF:B8:A7:22:89:F5:64:50:76:86:44:65:8C:54:AA:64:E9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/696/Mttw_7inIon1ZFB2hkRljFSqZOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Mttw_7inIon1ZFB2hkRljFSqZOk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/696/VzwUOjh699RPbkYP3rOBTOPN1FA.roa sbgp-ipAddrBlock: critical IPv4: 153.124.224.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:d4:f0:05:7b:2c:c9:a5:ae:61:b1:92:cf:ef:44:bb:92:0d: 14:45:af:1f:f3:9a:cc:5e:85:12:03:4d:62:d5:77:98:f8:08: c4:c1:3e:85:32:58:1b:61:89:34:f8:51:31:76:7a:35:89:a3: 80:ff:b0:2d:aa:30:db:27:b7:b7:d0:22:a1:76:e8:6e:3c:b8: 24:b0:23:47:a2:76:fe:3c:e6:f5:25:2a:b5:37:c7:01:b0:3e: 83:fe:d5:f3:94:8e:17:b9:a7:23:eb:78:0f:39:d0:af:db:3a: 7e:09:76:c1:ce:60:b3:99:f8:82:dd:44:a6:83:bd:a6:9f:76: 1f:54:e3:76:c8:10:14:69:8f:85:d0:dd:87:20:d3:5b:b4:24: 5f:29:3c:46:35:d9:c7:1b:46:0f:99:d8:0f:e4:73:0a:20:be: 13:6b:33:e4:aa:61:00:a3:a2:68:89:15:06:d5:86:a0:b4:d1: 7c:b0:71:b2:bb:c6:5b:78:c3:64:57:92:b1:59:60:94:4b:8e: 94:af:fd:81:9e:b1:e6:1d:c1:7b:10:a8:18:f9:cd:ce:8e:f3: f0:4d:52:9c:70:72:50:00:b2:4c:79:3f:41:44:cb:0e:6d:8e: 7e:38:6c:36:1d:2c:83:8a:bc:c7:09:1c:95:df:34:7d:75:b0: 07:b0:58:a8 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzMkRC NzBGRkI4QTcyMjg5RjU2NDUwNzY4NjQ0NjU4QzU0QUE2NEU5MB4XDTI2MDMzMTA3 NTEwOFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNTczQzE0M0EzODdBRjdE NDRGNkU0NjBGREVCMzgxNENFM0NERDQ1MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOG8Saty/lSe5tSpM/vtd42UtfC+7VOMh3VumaxkSMaPZ4ApfoXc HirqpWmxtdc41I2AgDJb/lk8j+pYd4cpTs1W7ZxLe6GidDCOLqmmGM+hZBIEyUI8 whRXX+ZjbLy78c76UiV7BY/f9aTPBjj1sS+0n9sWYL2teVBvBXoC59FSIddMJACq QJnvPJ63MQw4hiiYoRR+4XOPXEJrD1cfWwI7NIHRAAAjSrBfIr1TbUwuoWa5WlAj yb6aV9nPArErjq6UTWrzDqnR7dwALTV+vVoyCgbSuI4n1psOEUZ57OQO9FebyX3J GXyR5ZemYJS9HT4OLmbEJRjW2cUppQycy9MCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBRXPBQ6OHr31E9uRg/es4FM483UUDAfBgNVHSMEGDAWgBQy23D/uKciifVkUHaG RGWMVKpk6TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjk2L010dHdfN2luSW9uMVpGQjJoa1JsakZTcVpPay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL010dHdfN2luSW9uMVpGQjJoa1JsakZT cVpPay5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82OTYvVnp3VU9qaDY5OVJQYmtZUDNyT0JUT1BOMUZBLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA5l84DANBgkqhkiG9w0BAQsFAAOCAQEA S9TwBXssyaWuYbGSz+9Eu5INFEWvH/OazF6FEgNNYtV3mPgIxME+hTJYG2GJNPhR MXZ6NYmjgP+wLaow2ye3t9AioXbobjy4JLAjR6J2/jzm9SUqtTfHAbA+g/7V85SO F7mnI+t4DznQr9s6fgl2wc5gs5n4gt1EpoO9pp92H1TjdsgQFGmPhdDdhyDTW7Qk Xyk8RjXZxxtGD5nYD+RzCiC+E2sz5KphAKOiaIkVBtWGoLTRfLBxsrvGW3jDZFeS sVlglEuOlK/9gZ6x5h3BexCoGPnNzo7z8E1SnHByUACyTHk/QUTLDm2OfjhsNh0s g4q8xwkcld80fXWwB7BYqA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:39:46 2026 by rpki-client