$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/mWMaeLhxM7lRSb8s4_vj_Gm1RWk.roa File: mWMaeLhxM7lRSb8s4_vj_Gm1RWk.roa (raw, json) Hash identifier: iigsAOBt7cEqsj2ZDq8h869OlyCvb0WkIBKPn2tM42U= Subject key identifier: 99:63:1A:78:B8:71:33:B9:51:49:BF:2C:E3:FB:E3:FC:69:B5:45:69 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 95 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/mWMaeLhxM7lRSb8s4_vj_Gm1RWk.roa Signing time: Tue 31 Mar 2026 07:50:42 +0000 ROA not before: Tue 31 Mar 2026 07:50:42 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18144 IP address blocks: 36.53.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Mar 31 07:50:42 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=99631A78B87133B95149BF2CE3FBE3FC69B54569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a7:2c:60:87:0e:0e:60:2a:54:61:45:56:71: 83:2a:24:4a:1d:b8:bc:5a:63:d0:48:5a:6a:c7:89: 4a:00:5c:86:09:83:60:9e:0c:1c:4b:0d:21:39:20: 30:4f:0b:fc:2e:98:86:59:71:a7:7b:40:9b:40:4b: b8:1f:22:b4:ab:b0:69:99:81:1d:69:8f:c8:a1:0c: c7:71:a7:9f:72:56:b9:77:a8:26:6a:e8:18:52:73: 53:c3:58:14:2c:7c:66:56:84:ec:c5:35:66:f7:e7: b5:c6:0a:90:7d:5d:8b:9f:99:f2:6b:24:32:db:14: 2d:66:cb:dd:2c:86:c5:92:61:c2:15:7a:b6:ef:f5: 69:e0:dd:91:35:d9:bf:f1:8e:3d:78:2a:ec:b4:fe: 3a:60:44:e7:64:84:5d:f7:c5:d4:d9:be:85:86:cd: 03:7d:18:a8:ad:22:23:ba:45:17:9b:57:b7:bf:c8: 66:48:7a:a4:57:a9:c7:49:dc:12:7b:bd:9d:9d:1a: 8e:71:4d:8d:70:80:73:f0:cc:e6:f2:30:f7:ce:f0: 63:00:9c:3f:3f:9c:2f:66:d7:7c:eb:bc:09:bf:b4: e2:f6:81:8a:33:1b:3a:1f:76:52:d7:1d:8d:19:b7: c3:f9:d2:35:c6:6a:df:45:21:2f:09:3d:0b:9e:e6: f8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:63:1A:78:B8:71:33:B9:51:49:BF:2C:E3:FB:E3:FC:69:B5:45:69 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/mWMaeLhxM7lRSb8s4_vj_Gm1RWk.roa sbgp-ipAddrBlock: critical IPv4: 36.53.232.0/21 Signature Algorithm: sha256WithRSAEncryption 60:3e:68:78:4f:a5:2e:51:1e:d8:35:63:ff:0d:69:a0:06:02: 5e:5c:f4:03:f2:34:71:a4:8b:31:c3:5e:3b:fa:0d:d3:c0:73: fa:ef:b3:a9:52:ce:2a:50:a2:0e:75:d2:06:71:fe:06:de:ce: 23:55:78:ef:74:11:b5:83:ab:f4:f5:db:1c:da:ca:6b:3c:f1: 69:17:23:a5:75:eb:3f:14:bf:55:13:ed:57:46:e9:a8:1e:85: 1f:2e:ca:91:d5:79:9f:c0:b0:6d:69:57:6a:f5:98:b2:a5:fd: dd:7c:35:89:af:3b:aa:b6:5b:20:76:62:1c:39:61:aa:46:18: a4:44:53:1d:64:67:db:e5:eb:78:49:1d:c6:58:b8:04:af:aa: ca:4f:bc:cf:ef:76:e3:00:b9:ad:28:63:05:50:e2:87:77:0a: 77:2f:32:2a:36:91:6a:b7:15:91:1f:6c:a7:c1:3f:a7:08:84: a4:0b:c9:d2:87:03:a7:22:99:86:73:61:65:ae:d2:0c:5f:67: 16:ab:6e:64:f6:00:7a:f9:a9:42:a0:5a:16:74:64:6a:e8:5c: 72:a9:fc:6e:2b:37:e2:95:04:45:dd:a5:84:1f:91:1c:5d:2b: 55:29:b0:38:5a:e7:4a:61:6a:8f:93:e6:d6:58:60:3e:e3:42: 41:75:6e:20 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0I4 MzAwQjIwNjU5QkI5NTEwNjBGNjBCMUY0QkM2MDkxQUYyNzYzOTAeFw0yNjAzMzEw NzUwNDJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk5NjMxQTc4Qjg3MTMz Qjk1MTQ5QkYyQ0UzRkJFM0ZDNjlCNTQ1NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPpyxghw4OYCpUYUVWcYMqJEoduLxaY9BIWmrHiUoAXIYJg2Ce DBxLDSE5IDBPC/wumIZZcad7QJtAS7gfIrSrsGmZgR1pj8ihDMdxp59yVrl3qCZq 6BhSc1PDWBQsfGZWhOzFNWb357XGCpB9XYufmfJrJDLbFC1my90shsWSYcIVerbv 9Wng3ZE12b/xjj14Kuy0/jpgROdkhF33xdTZvoWGzQN9GKitIiO6RRebV7e/yGZI eqRXqcdJ3BJ7vZ2dGo5xTY1wgHPwzObyMPfO8GMAnD8/nC9m13zrvAm/tOL2gYoz GzofdlLXHY0Zt8P50jXGat9FIS8JPQue5vg3AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUmWMaeLhxM7lRSb8s4/vj/Gm1RWkwHwYDVR0jBBgwFoAUy4MAsgZZu5UQYPYL H0vGCRrydjkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzc4My95NE1Bc2daWnU1VVFZUFlMSDB2R0NScnlkamsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC95NE1Bc2daWnU1VVFZUFlMSDB2R0NS cnlkamsuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNzgzL21XTWFlTGh4TTdsUlNiOHM0X3ZqX0dtMVJXay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMkNegwDQYJKoZIhvcNAQELBQADggEB AGA+aHhPpS5RHtg1Y/8NaaAGAl5c9APyNHGkizHDXjv6DdPAc/rvs6lSzipQog51 0gZx/gbeziNVeO90EbWDq/T12xzayms88WkXI6V16z8Uv1UT7VdG6agehR8uypHV eZ/AsG1pV2r1mLKl/d18NYmvO6q2WyB2Yhw5YapGGKREUx1kZ9vl63hJHcZYuASv qspPvM/vduMAua0oYwVQ4od3CncvMio2kWq3FZEfbKfBP6cIhKQLydKHA6cimYZz YWWu0gxfZxarbmT2AHr5qUKgWhZ0ZGroXHKp/G4rN+KVBEXdpYQfkRxdK1UpsDha 50phao+T5tZYYD7jQkF1biA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:50 2026 by rpki-client