$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/w_rMnJK1B8A325D149dfIViOzT0.roa File: w_rMnJK1B8A325D149dfIViOzT0.roa (raw, json) Hash identifier: P7BFE8uaF1woZxCEtXwxGZ5oHgSzEuLbJNMjWOl15BM= Subject key identifier: C3:FA:CC:9C:92:B5:07:C0:37:DB:90:F5:E3:D7:5F:21:58:8E:CD:3D Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 94 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/w_rMnJK1B8A325D149dfIViOzT0.roa Signing time: Tue 31 Mar 2026 07:50:42 +0000 ROA not before: Tue 31 Mar 2026 07:50:42 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18144 IP address blocks: 36.52.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Mar 31 07:50:42 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C3FACC9C92B507C037DB90F5E3D75F21588ECD3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ea:c8:02:60:6f:74:3d:a9:06:63:2d:8b:74: 6f:d9:57:87:20:49:15:d1:bf:31:3e:84:1a:df:d5: ad:bb:34:00:04:5d:73:79:0a:d3:2e:2e:3c:71:6f: a3:0a:c2:78:5d:2b:c8:fb:a6:e0:ad:66:eb:c8:c1: d7:6e:a8:6c:29:94:e1:02:73:e9:85:a0:22:89:ac: 54:97:d2:b4:ef:fe:96:5c:3f:6b:88:53:32:e1:79: b0:1d:2f:4d:7d:25:ba:a7:9a:89:fa:94:91:1f:73: 0b:ca:b8:08:5e:9f:ef:64:09:2d:c1:88:9d:11:04: 74:75:b1:7b:12:df:da:75:bc:06:e9:80:d6:46:0e: 7d:70:6b:f0:e9:be:6c:7f:78:f6:c8:b8:11:38:1d: 66:07:76:2d:3f:9f:2f:e7:d2:d4:40:80:1f:e4:61: 30:db:43:6d:45:c7:91:76:e7:1c:9c:41:c5:9d:80: ca:15:69:13:5f:57:de:b5:7f:2a:f6:16:ce:42:14: 7b:fb:80:f9:c5:0e:e0:3f:eb:cc:c5:ec:b0:ea:9c: e8:0b:78:8e:ed:24:3d:30:b7:36:53:e0:1f:e0:42: fe:2b:65:95:a0:0a:11:44:4e:d6:de:7e:04:8a:ec: 3e:df:d0:23:34:95:18:4d:88:38:3d:a3:71:f3:c6: 79:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:FA:CC:9C:92:B5:07:C0:37:DB:90:F5:E3:D7:5F:21:58:8E:CD:3D X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/w_rMnJK1B8A325D149dfIViOzT0.roa sbgp-ipAddrBlock: critical IPv4: 36.52.160.0/21 Signature Algorithm: sha256WithRSAEncryption 85:ea:26:82:8b:9b:32:c2:ce:56:60:c3:18:3c:b1:0c:6c:fa: 18:77:0d:6e:a5:bb:ad:4c:9c:95:cc:f0:6e:c0:25:e6:64:c0: 9c:54:6d:36:be:ec:50:6b:21:66:b3:4f:e1:3c:1a:82:26:de: e8:47:76:f7:b2:0a:c9:fc:06:5d:b2:6c:02:bb:09:3a:3f:ac: 7e:14:43:b8:8f:50:44:6c:67:91:47:4c:81:ca:72:ad:25:74: c1:52:25:b6:a2:32:5f:36:00:b2:d5:d5:8e:66:51:df:fe:04: e3:bf:98:81:81:bd:d6:c4:58:c4:a0:62:da:95:d0:e8:5e:f5: 70:f9:aa:22:fc:91:bc:04:5e:39:59:15:37:c3:ff:15:6c:45: aa:ef:de:7e:fd:87:62:23:5e:47:49:c0:5b:ad:d6:9e:ca:3c: 15:7c:01:30:2c:a4:33:dc:65:75:23:62:c4:76:00:16:27:48: 33:a8:2a:94:14:5f:8c:fe:3e:a5:cc:15:59:33:36:82:22:fc: d5:c9:5a:da:1c:e4:27:8d:55:5d:e6:94:84:80:94:35:30:0c: 2d:ac:d8:e5:5c:1d:71:39:b4:f4:ab:2a:c4:03:b9:59:d7:75: d0:e8:6d:c2:4c:6a:37:0b:02:20:5c:1e:49:c3:97:b7:d4:d9: ea:7e:87:4c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0I4 MzAwQjIwNjU5QkI5NTEwNjBGNjBCMUY0QkM2MDkxQUYyNzYzOTAeFw0yNjAzMzEw NzUwNDJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEMzRkFDQzlDOTJCNTA3 QzAzN0RCOTBGNUUzRDc1RjIxNTg4RUNEM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC6sgCYG90PakGYy2LdG/ZV4cgSRXRvzE+hBrf1a27NAAEXXN5 CtMuLjxxb6MKwnhdK8j7puCtZuvIwdduqGwplOECc+mFoCKJrFSX0rTv/pZcP2uI UzLhebAdL019Jbqnmon6lJEfcwvKuAhen+9kCS3BiJ0RBHR1sXsS39p1vAbpgNZG Dn1wa/Dpvmx/ePbIuBE4HWYHdi0/ny/n0tRAgB/kYTDbQ21Fx5F25xycQcWdgMoV aRNfV961fyr2Fs5CFHv7gPnFDuA/68zF7LDqnOgLeI7tJD0wtzZT4B/gQv4rZZWg ChFETtbefgSK7D7f0CM0lRhNiDg9o3Hzxnm1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUw/rMnJK1B8A325D149dfIViOzT0wHwYDVR0jBBgwFoAUy4MAsgZZu5UQYPYL H0vGCRrydjkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzc4My95NE1Bc2daWnU1VVFZUFlMSDB2R0NScnlkamsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC95NE1Bc2daWnU1VVFZUFlMSDB2R0NS cnlkamsuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNzgzL3dfck1uSksxQjhBMzI1RDE0OWRmSVZpT3pUMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMkNKAwDQYJKoZIhvcNAQELBQADggEB AIXqJoKLmzLCzlZgwxg8sQxs+hh3DW6lu61MnJXM8G7AJeZkwJxUbTa+7FBrIWaz T+E8GoIm3uhHdveyCsn8Bl2ybAK7CTo/rH4UQ7iPUERsZ5FHTIHKcq0ldMFSJbai Ml82ALLV1Y5mUd/+BOO/mIGBvdbEWMSgYtqV0Ohe9XD5qiL8kbwEXjlZFTfD/xVs Rarv3n79h2IjXkdJwFut1p7KPBV8ATAspDPcZXUjYsR2ABYnSDOoKpQUX4z+PqXM FVkzNoIi/NXJWtoc5CeNVV3mlISAlDUwDC2s2OVcHXE5tPSrKsQDuVnXddDobcJM ajcLAiBcHknDl7fU2ep+h0w= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:18 2026 by rpki-client