$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/948/CmpNU5avvDY4RlaU5FGcNdM_mf0.roa File: CmpNU5avvDY4RlaU5FGcNdM_mf0.roa (raw, json) Hash identifier: X+N3Hzp/WwpDh75hJhtzFKi91GsqQvB3j6SOqIiEmKY= Subject key identifier: 0A:6A:4D:53:96:AF:BC:36:38:46:56:94:E4:51:9C:35:D3:3F:99:FD Certificate issuer: /CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C Certificate serial: 57 Authority key identifier: C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/CmpNU5avvDY4RlaU5FGcNdM_mf0.roa Signing time: Tue 31 Mar 2026 08:24:06 +0000 ROA not before: Tue 31 Mar 2026 08:24:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 38628 IP address blocks: 120.50.160.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 13:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C Validity Not Before: Mar 31 08:24:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0A6A4D5396AFBC3638465694E4519C35D33F99FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:62:69:34:13:9f:c0:df:37:7d:98:03:af:a4: 0b:31:4a:b8:84:8a:61:3d:13:c5:37:96:7d:bb:79: 67:d2:40:9d:69:11:63:bc:6c:65:dd:af:27:17:ea: ab:2f:9d:b1:a8:cc:e5:74:19:73:26:9e:dd:70:3d: 78:e5:3b:d1:e3:b4:fa:31:e2:3d:0d:c2:f8:ac:35: f2:32:29:10:2d:45:10:9c:84:42:ea:6a:4e:bc:aa: 53:dc:d4:1c:a7:e0:93:db:8c:2a:e7:43:14:02:95: ad:be:6f:29:76:28:d7:b5:6e:fe:d4:09:9e:ab:a3: 85:50:bd:0f:53:c7:4b:54:dd:89:4e:15:35:29:e4: 53:2f:c9:c6:6b:0f:1e:41:3c:c7:eb:63:24:4c:99: 29:d0:c3:40:a8:1e:d3:9f:bb:6c:d0:a4:20:cb:fa: 27:a0:6b:5c:e3:85:88:bb:3d:1a:eb:fc:8d:fa:e5: 83:fb:99:0d:ed:3b:63:d7:a7:4f:57:a6:b9:4c:f0: c4:8c:3d:64:94:90:bf:5f:ed:ac:d2:da:a8:5e:a1: 9e:f4:0f:87:ec:66:15:0c:e1:9f:38:ab:8a:cd:3c: b9:86:9c:14:76:91:f9:6c:24:85:4f:67:43:f4:4c: 1f:2c:80:8c:86:ee:4e:26:b5:0a:1d:7b:04:8f:1a: f8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:6A:4D:53:96:AF:BC:36:38:46:56:94:E4:51:9C:35:D3:3F:99:FD X509v3 Authority Key Identifier: keyid:C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/CmpNU5avvDY4RlaU5FGcNdM_mf0.roa sbgp-ipAddrBlock: critical IPv4: 120.50.160.0/21 Signature Algorithm: sha256WithRSAEncryption 49:29:c3:08:7b:fa:9a:f2:02:da:c8:17:0d:29:f3:c1:46:42: cc:72:26:c2:c2:da:73:8a:bc:d5:fb:b7:8f:4f:05:ef:e4:65: ad:6b:bf:61:93:05:1b:69:7a:12:0d:19:64:14:fe:f7:28:c2: 7d:1b:11:9e:e3:0f:12:04:c6:36:ab:95:2c:a5:c3:d5:cf:0b: fd:ad:a6:52:5f:6b:6f:f2:2b:80:13:0d:a9:d6:43:43:cc:51: 2d:e7:11:60:1a:2d:c0:b2:0d:9b:5e:dd:be:f8:40:1c:be:e8: b3:c5:37:61:d7:64:51:01:51:b5:56:f4:e4:88:d7:b6:11:2f: 7e:24:0f:7f:f1:84:8a:e4:5b:92:d5:34:0a:64:b2:b0:0e:49: dd:4d:bc:69:43:b2:ed:f6:55:23:37:3e:5b:e2:af:bc:76:8e: f9:85:2f:43:14:66:c9:46:bf:9d:94:e2:3d:cc:c4:ae:b0:42: c6:6c:47:69:a2:ee:ea:7d:bb:40:99:4d:3c:88:7f:7b:92:96: 04:fe:a5:4c:fc:50:7f:3d:1e:36:4b:96:50:62:c9:42:c8:ac: 96:c2:69:ba:1b:34:75:66:55:37:67:d1:85:7a:b9:67:9a:21: 72:5b:87:d5:0b:6c:bf:38:ef:31:3c:fb:ba:6e:90:67:1a:94: 78:d1:80:27 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNEI5 NTM2QzRFQzc4NUI4ODEyRTUzQTIxOUQyQjA5QTdEQ0JDRTBDMB4XDTI2MDMzMTA4 MjQwNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMEE2QTRENTM5NkFGQkMz NjM4NDY1Njk0RTQ1MTlDMzVEMzNGOTlGRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMNiaTQTn8DfN32YA6+kCzFKuISKYT0TxTeWfbt5Z9JAnWkRY7xs Zd2vJxfqqy+dsajM5XQZcyae3XA9eOU70eO0+jHiPQ3C+Kw18jIpEC1FEJyEQupq TryqU9zUHKfgk9uMKudDFAKVrb5vKXYo17Vu/tQJnqujhVC9D1PHS1TdiU4VNSnk Uy/JxmsPHkE8x+tjJEyZKdDDQKge05+7bNCkIMv6J6BrXOOFiLs9Guv8jfrlg/uZ De07Y9enT1emuUzwxIw9ZJSQv1/trNLaqF6hnvQPh+xmFQzhnziris08uYacFHaR +WwkhU9nQ/RMHyyAjIbuTia1Ch17BI8a+KkCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQKak1Tlq+8NjhGVpTkUZw10z+Z/TAfBgNVHSMEGDAWgBTEuVNsTseFuIEuU6IZ 0rCafcvODDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTQ4L3hMbFRiRTdIaGJpQkxsT2lHZEt3bW4zTHpndy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hMbFRiRTdIaGJpQkxsT2lHZEt3bW4z THpndy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC85NDgvQ21wTlU1YXZ2RFk0UmxhVTVGR2NOZE1fbWYwLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3gyoDANBgkqhkiG9w0BAQsFAAOCAQEA SSnDCHv6mvIC2sgXDSnzwUZCzHImwsLac4q81fu3j08F7+RlrWu/YZMFG2l6Eg0Z ZBT+9yjCfRsRnuMPEgTGNquVLKXD1c8L/a2mUl9rb/IrgBMNqdZDQ8xRLecRYBot wLINm17dvvhAHL7os8U3YddkUQFRtVb05IjXthEvfiQPf/GEiuRbktU0CmSysA5J 3U28aUOy7fZVIzc+W+KvvHaO+YUvQxRmyUa/nZTiPczErrBCxmxHaaLu6n27QJlN PIh/e5KWBP6lTPxQfz0eNkuWUGLJQsislsJpuhs0dWZVN2fRhXq5Z5ohcluH1Qts vzjvMTz7um6QZxqUeNGAJw== -----END CERTIFICATE-----Generated at Tue Apr 7 16:35:02 2026 by rpki-client