$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/g56keh-B9qmHRt-ARrWbsP65oTA.roa File: g56keh-B9qmHRt-ARrWbsP65oTA.roa (raw, json) Hash identifier: n34+eWKqZ3e/rCHqRrx2HKMaVgArby97FDbcW1Z5S0k= Subject key identifier: 83:9E:A4:7A:1F:81:F6:A9:87:46:DF:80:46:B5:9B:B0:FE:B9:A1:30 Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Certificate serial: 80 Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/g56keh-B9qmHRt-ARrWbsP65oTA.roa Signing time: Tue 31 Mar 2026 07:51:39 +0000 ROA not before: Tue 31 Mar 2026 07:51:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23778 IP address blocks: 133.88.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Validity Not Before: Mar 31 07:51:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=839EA47A1F81F6A98746DF8046B59BB0FEB9A130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8f:ab:3b:1a:25:41:2f:ab:29:5c:84:93:49: 52:b3:b2:2b:df:57:e5:04:b2:76:16:9c:b2:6f:0f: fd:b3:78:40:c8:c2:c8:fa:0e:d8:7f:3c:b0:03:c1: d6:e0:79:83:41:bd:27:60:f0:fb:f6:96:90:e4:e1: db:01:80:da:3c:f6:4e:15:e0:b4:c5:49:13:20:f2: 4d:d7:af:d4:04:c4:24:b0:cd:bf:ff:93:eb:e0:46: 90:94:c4:20:cf:00:46:17:0d:18:81:53:94:b9:bb: ba:a9:a4:a2:b1:6e:f0:0c:b3:0a:95:5a:a0:5e:62: b2:b6:f4:23:79:3f:08:d8:d0:b0:03:87:43:f7:15: 12:b8:a3:c8:2a:31:1d:6f:6a:8f:44:de:62:6b:a5: 64:c6:cf:31:ea:00:c8:72:a3:f4:68:52:42:e0:d7: 1c:90:62:c5:07:78:2a:df:7a:31:ab:de:37:9e:cc: 01:36:88:14:87:70:e2:90:d5:7f:b2:4d:b8:b1:64: 9e:07:df:b6:ef:5d:15:1a:57:af:4a:96:77:eb:90: 8f:ef:67:a2:a1:37:4b:e7:1c:f9:06:eb:0c:11:6b: f2:7d:b5:96:50:fc:9a:4b:c3:14:80:68:09:2f:41: 0a:15:d5:c2:75:4d:53:f1:3f:5f:54:5c:c0:e8:dc: 6f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:9E:A4:7A:1F:81:F6:A9:87:46:DF:80:46:B5:9B:B0:FE:B9:A1:30 X509v3 Authority Key Identifier: keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/g56keh-B9qmHRt-ARrWbsP65oTA.roa sbgp-ipAddrBlock: critical IPv4: 133.88.48.0/20 Signature Algorithm: sha256WithRSAEncryption 52:72:c5:4c:7b:ec:29:2f:97:46:27:01:e6:54:ae:af:d3:ad: 57:ce:cf:2a:1b:5e:7d:49:d9:86:7b:3f:35:95:ea:db:c2:97: ed:c2:d9:89:28:60:3d:f9:81:2d:46:39:cc:2e:79:1c:b6:82: 35:11:29:5c:65:aa:d1:6d:31:fe:d4:cb:a6:cf:f4:9a:3c:d0: db:80:87:9e:5b:75:4f:f9:43:ee:f8:42:8c:d1:1f:f7:73:01: 57:8f:73:89:d2:23:4b:0f:75:2b:94:3e:73:01:76:04:c5:de: 81:8c:f2:5b:fc:49:9a:f5:01:8b:0b:d0:9e:a8:a0:6c:9c:74: a9:21:08:b0:42:c8:a9:43:29:97:89:3c:f2:7a:b7:52:94:e6: b5:6b:c4:7f:9b:b5:25:be:84:1e:ba:c4:b3:ee:52:dc:b7:f9: 09:ff:59:c4:79:07:dd:99:ad:ad:9b:8f:72:36:97:05:00:d3: 0a:bc:e4:5c:63:df:74:17:56:1c:59:2c:2b:fe:b5:1b:a2:18: 78:ac:50:aa:e8:b1:74:45:74:14:2f:f2:21:3b:ff:f5:98:1f: 0c:70:e2:c8:09:88:91:9f:33:3f:8b:c0:7d:9f:82:d8:f4:1f: 6b:15:a6:bd:60:50:3d:0c:85:ce:c9:09:dd:9e:33:e2:bb:94: ae:b0:a9:c7 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y5 MEYyRkJDQUEyNTM4Q0E2NTc0RkIyMkQ4QzZFQjNFOUNBMDQ2QjAeFw0yNjAzMzEw NzUxMzlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDgzOUVBNDdBMUY4MUY2 QTk4NzQ2REY4MDQ2QjU5QkIwRkVCOUExMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpj6s7GiVBL6spXISTSVKzsivfV+UEsnYWnLJvD/2zeEDIwsj6 Dth/PLADwdbgeYNBvSdg8Pv2lpDk4dsBgNo89k4V4LTFSRMg8k3Xr9QExCSwzb// k+vgRpCUxCDPAEYXDRiBU5S5u7qppKKxbvAMswqVWqBeYrK29CN5PwjY0LADh0P3 FRK4o8gqMR1vao9E3mJrpWTGzzHqAMhyo/RoUkLg1xyQYsUHeCrfejGr3jeezAE2 iBSHcOKQ1X+yTbixZJ4H37bvXRUaV69KlnfrkI/vZ6KhN0vnHPkG6wwRa/J9tZZQ /JpLwxSAaAkvQQoV1cJ1TVPxP19UXMDo3G8DAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUg56keh+B9qmHRt+ARrWbsP65oTAwHwYDVR0jBBgwFoAUP5Dy+8qiU4ymV0+y LYxus+nKBGswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzg1OS9QNUR5LThxaVU0eW1WMC15TFl4dXMtbktCR3MuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9QNUR5LThxaVU0eW1WMC15TFl4dXMt bktCR3MuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvODU5L2c1NmtlaC1COXFtSFJ0LUFScldic1A2NW9UQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBASFWDAwDQYJKoZIhvcNAQELBQADggEB AFJyxUx77Ckvl0YnAeZUrq/TrVfOzyobXn1J2YZ7PzWV6tvCl+3C2YkoYD35gS1G OcwueRy2gjURKVxlqtFtMf7Uy6bP9Jo80NuAh55bdU/5Q+74QozRH/dzAVePc4nS I0sPdSuUPnMBdgTF3oGM8lv8SZr1AYsL0J6ooGycdKkhCLBCyKlDKZeJPPJ6t1KU 5rVrxH+btSW+hB66xLPuUty3+Qn/WcR5B92Zra2bj3I2lwUA0wq85Fxj33QXVhxZ LCv+tRuiGHisUKrosXRFdBQv8iE7//WYHwxw4sgJiJGfMz+LwH2fgtj0H2sVpr1g UD0Mhc7JCd2eM+K7lK6wqcc= -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:26 2026 by rpki-client