$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/OdOq4kIPRMJ4ACfDmV70TSGK5Ms.roa File: OdOq4kIPRMJ4ACfDmV70TSGK5Ms.roa (raw, json) Hash identifier: fyMefdSWRLYodnSWoO7FoShirjCTWNBNy+W/gWZQW+4= Subject key identifier: 39:D3:AA:E2:42:0F:44:C2:78:00:27:C3:99:5E:F4:4D:21:8A:E4:CB Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 90 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/OdOq4kIPRMJ4ACfDmV70TSGK5Ms.roa Signing time: Tue 31 Mar 2026 07:50:39 +0000 ROA not before: Tue 31 Mar 2026 07:50:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18144 IP address blocks: 1.0.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Mar 31 07:50:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=39D3AAE2420F44C2780027C3995EF44D218AE4CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c3:79:5b:f7:ee:6d:8a:b5:1d:c9:91:98:e1: fc:9a:80:da:2a:d5:e0:77:ba:52:a7:9f:bf:57:ab: e3:00:e2:25:13:2e:d7:a1:75:d5:1b:41:b7:b4:75: 14:29:27:ed:51:fd:9c:57:b4:80:8e:59:54:db:f1: 2b:62:d5:82:cd:3a:bb:0c:12:2d:d4:d0:09:7f:e6: e6:fb:d3:06:08:6e:d5:3c:e3:e8:6a:1b:7d:50:ef: d6:36:85:38:f3:57:ec:fb:ab:09:d4:87:d1:8c:bb: 9a:8f:8a:53:55:5f:68:b7:21:c1:db:1e:d8:c4:94: 35:b3:0b:66:a3:a5:48:e6:9d:3a:b6:3d:a1:6f:df: af:cc:e5:80:fd:58:11:4c:1c:8c:b9:d6:f4:bf:c2: fd:83:d7:9a:97:ba:1f:fd:d7:84:0f:93:b5:c5:e3: 86:b8:c9:6c:e9:1b:20:e0:b1:e8:35:50:73:93:49: aa:88:17:ed:7c:ba:05:6c:9d:4b:a5:a4:a5:1d:41: c1:b7:b7:e2:2c:b1:8f:e8:03:d8:43:cb:b5:e1:dc: 7f:80:49:93:f7:c1:67:3a:a1:74:67:2f:e6:cb:bf: 8d:e7:27:00:9e:fd:a8:b7:e1:12:05:b1:eb:82:6d: 22:a2:bb:5a:7c:86:75:7e:4d:0b:4b:46:96:1d:23: a9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:D3:AA:E2:42:0F:44:C2:78:00:27:C3:99:5E:F4:4D:21:8A:E4:CB X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/OdOq4kIPRMJ4ACfDmV70TSGK5Ms.roa sbgp-ipAddrBlock: critical IPv4: 1.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 55:41:00:ed:63:b5:73:08:8e:8b:bd:1a:19:21:8e:d7:3f:07: 74:1f:fd:46:61:dd:b6:ba:3a:7f:38:2e:b3:db:8f:84:01:e2: 67:fc:76:58:66:be:ca:3c:84:91:52:4e:0c:03:db:f1:55:3f: 32:05:2b:0b:d4:82:8d:57:c8:68:fb:32:13:c9:72:24:e1:83: 4f:fe:15:f1:1e:c2:82:76:22:18:5f:9d:09:b8:a9:36:7d:d5: f9:77:9e:b3:4d:a6:1f:5a:be:c1:61:ed:4d:e6:3e:f4:a0:98: 2f:9d:b5:31:c6:aa:1d:0c:bb:da:6f:42:7c:f9:27:6a:45:9b: 54:81:89:cd:67:08:c9:b6:93:aa:a9:80:e7:3b:e3:e4:47:93: 78:d8:4a:87:05:72:43:78:a4:78:2f:ef:17:1d:9f:24:f9:f8: ad:87:1c:4c:3c:d5:42:fc:ee:0b:40:42:ba:16:40:5d:03:02: 27:82:5f:81:89:19:d0:49:d3:d0:3f:f0:56:57:c7:a1:55:83: f5:21:8f:d3:2c:fa:96:50:a3:18:89:9d:00:22:71:0c:56:b1: 01:af:ea:b2:3c:72:77:e6:8d:5a:94:d7:3c:da:a9:ec:81:15: 89:14:e0:1b:d1:3d:29:29:7e:63:04:2a:8e:e1:2f:94:c4:65: cc:02:c3:78 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0I4 MzAwQjIwNjU5QkI5NTEwNjBGNjBCMUY0QkM2MDkxQUYyNzYzOTAeFw0yNjAzMzEw NzUwMzlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM5RDNBQUUyNDIwRjQ0 QzI3ODAwMjdDMzk5NUVGNDREMjE4QUU0Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPw3lb9+5tirUdyZGY4fyagNoq1eB3ulKnn79Xq+MA4iUTLteh ddUbQbe0dRQpJ+1R/ZxXtICOWVTb8Sti1YLNOrsMEi3U0Al/5ub70wYIbtU84+hq G31Q79Y2hTjzV+z7qwnUh9GMu5qPilNVX2i3IcHbHtjElDWzC2ajpUjmnTq2PaFv 36/M5YD9WBFMHIy51vS/wv2D15qXuh/914QPk7XF44a4yWzpGyDgseg1UHOTSaqI F+18ugVsnUulpKUdQcG3t+IssY/oA9hDy7Xh3H+ASZP3wWc6oXRnL+bLv43nJwCe /ai34RIFseuCbSKiu1p8hnV+TQtLRpYdI6kdAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUOdOq4kIPRMJ4ACfDmV70TSGK5MswHwYDVR0jBBgwFoAUy4MAsgZZu5UQYPYL H0vGCRrydjkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzc4My95NE1Bc2daWnU1VVFZUFlMSDB2R0NScnlkamsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC95NE1Bc2daWnU1VVFZUFlMSDB2R0NS cnlkamsuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNzgzL09kT3E0a0lQUk1KNEFDZkRtVjcwVFNHSzVNcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYBAEAwDQYJKoZIhvcNAQELBQADggEB AFVBAO1jtXMIjou9Ghkhjtc/B3Qf/UZh3ba6On84LrPbj4QB4mf8dlhmvso8hJFS TgwD2/FVPzIFKwvUgo1XyGj7MhPJciThg0/+FfEewoJ2IhhfnQm4qTZ91fl3nrNN ph9avsFh7U3mPvSgmC+dtTHGqh0Mu9pvQnz5J2pFm1SBic1nCMm2k6qpgOc74+RH k3jYSocFckN4pHgv7xcdnyT5+K2HHEw81UL87gtAQroWQF0DAieCX4GJGdBJ09A/ 8FZXx6FVg/Uhj9Ms+pZQoxiJnQAicQxWsQGv6rI8cnfmjVqU1zzaqeyBFYkU4BvR PSkpfmMEKo7hL5TEZcwCw3g= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:37 2026 by rpki-client