$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/96/j688nIE7uodJrCFv9u1SsevTM30.roa File: j688nIE7uodJrCFv9u1SsevTM30.roa (raw, json) Hash identifier: lOq4n9wDrtUcahgAGVh2q2E6tGvNFpBS4w0Mb0QJEF4= Subject key identifier: 8F:AF:3C:9C:81:3B:BA:87:49:AC:21:6F:F6:ED:52:B1:EB:D3:33:7D Certificate issuer: /CN=E54D0A732CE1C6514A34A3D06E916B1C4FB8AA0A Certificate serial: 29 Authority key identifier: E5:4D:0A:73:2C:E1:C6:51:4A:34:A3:D0:6E:91:6B:1C:4F:B8:AA:0A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5U0KcyzhxlFKNKPQbpFrHE-4qgo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/96/j688nIE7uodJrCFv9u1SsevTM30.roa Signing time: Tue 31 Mar 2026 08:36:16 +0000 ROA not before: Tue 31 Mar 2026 08:36:16 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 55385 IP address blocks: 202.213.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/96/5U0KcyzhxlFKNKPQbpFrHE-4qgo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/96/5U0KcyzhxlFKNKPQbpFrHE-4qgo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5U0KcyzhxlFKNKPQbpFrHE-4qgo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E54D0A732CE1C6514A34A3D06E916B1C4FB8AA0A Validity Not Before: Mar 31 08:36:16 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8FAF3C9C813BBA8749AC216FF6ED52B1EBD3337D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:40:ad:e6:d8:59:6c:90:3b:4f:e9:b8:0f:de: e1:ac:dd:f8:6e:8e:02:5c:6b:a4:92:24:f3:56:46: e6:15:2e:28:21:44:3f:b9:db:53:de:f1:bd:64:db: 3f:c1:8f:13:56:8c:a2:c8:a9:88:99:2f:c2:74:93: 6f:06:05:9c:d1:63:36:d4:c3:9d:ec:6a:41:ee:51: 20:ab:16:08:81:20:84:8a:b4:1b:97:2e:a0:fe:a2: 56:eb:6e:30:02:69:d6:b3:d2:55:b5:c7:b1:f8:f9: 9a:22:70:4d:c4:2a:f6:7a:9d:ed:8c:92:dc:f2:19: 5e:8b:2c:0d:09:00:9a:c0:81:f3:8e:7d:96:2c:e0: 1b:d4:2d:63:37:7b:72:1e:53:93:5f:71:47:90:04: 17:b9:0e:e9:2c:20:aa:a9:fe:b1:8e:56:f7:da:c5: eb:1a:80:18:af:c2:87:69:a6:6f:35:f7:fa:71:ee: aa:78:99:c5:a5:6f:3f:45:04:22:9a:d1:19:20:64: 41:f6:c8:73:d1:f1:04:13:49:06:8e:a3:64:b0:a5: d7:33:05:4c:84:cd:83:48:1a:d1:6e:cd:f0:01:95: 33:b3:9b:be:da:fc:d8:78:be:50:6f:72:a4:f0:be: 16:7c:d1:d7:69:c6:4b:27:18:1e:86:4d:e2:00:cc: 8f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:AF:3C:9C:81:3B:BA:87:49:AC:21:6F:F6:ED:52:B1:EB:D3:33:7D X509v3 Authority Key Identifier: keyid:E5:4D:0A:73:2C:E1:C6:51:4A:34:A3:D0:6E:91:6B:1C:4F:B8:AA:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/96/5U0KcyzhxlFKNKPQbpFrHE-4qgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5U0KcyzhxlFKNKPQbpFrHE-4qgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/96/j688nIE7uodJrCFv9u1SsevTM30.roa sbgp-ipAddrBlock: critical IPv4: 202.213.72.0/21 Signature Algorithm: sha256WithRSAEncryption 17:dc:39:8b:63:eb:c6:e9:59:a8:8d:cf:d0:cf:3e:b2:4f:96: 39:25:d4:f5:51:34:9b:9d:e7:89:74:9e:8b:93:fa:54:72:c9: a4:ad:5b:ab:5c:48:a1:88:09:c8:95:56:ce:06:a3:4c:5f:09: c3:53:df:e3:0b:f9:15:c3:f9:bb:59:d6:01:c6:33:47:6d:3d: a4:2a:20:ce:5b:db:a7:2c:cf:c3:33:a7:ed:2f:98:57:fb:5b: 0e:16:7c:b6:3b:70:5d:5d:97:9d:b2:90:f3:81:4a:d1:18:56: 02:5a:e9:1d:21:8d:4c:f2:00:79:aa:f8:fa:b6:5f:9d:fa:15: 01:e8:88:b8:fa:22:64:bf:14:d2:9f:4a:ae:28:0f:f6:1d:b4: b2:58:21:ac:54:7f:b5:bd:e6:a1:85:89:d4:7f:41:f6:bc:23: 70:98:11:1c:50:a5:6a:61:48:e0:74:06:87:ce:0d:3a:d9:14: 43:c5:cb:bd:f8:d5:a8:5c:81:6d:26:df:48:5b:72:7b:8f:ae: c3:4f:15:7e:24:81:ec:d6:7c:ff:2b:82:0e:eb:6f:db:9a:3a: 96:f4:b7:3d:67:d9:a0:4a:14:f8:10:ca:b4:71:6e:31:e7:2b: 0a:dc:67:6d:56:d6:64:58:a4:52:33:27:4c:e1:83:1d:dd:89: 11:c7:ae:f0 -----BEGIN CERTIFICATE----- MIIEujCCA6KgAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNTRE MEE3MzJDRTFDNjUxNEEzNEEzRDA2RTkxNkIxQzRGQjhBQTBBMB4XDTI2MDMzMTA4 MzYxNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOEZBRjNDOUM4MTNCQkE4 NzQ5QUMyMTZGRjZFRDUyQjFFQkQzMzM3RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKZArebYWWyQO0/puA/e4azd+G6OAlxrpJIk81ZG5hUuKCFEP7nb U97xvWTbP8GPE1aMosipiJkvwnSTbwYFnNFjNtTDnexqQe5RIKsWCIEghIq0G5cu oP6iVutuMAJp1rPSVbXHsfj5miJwTcQq9nqd7YyS3PIZXossDQkAmsCB8459lizg G9QtYzd7ch5Tk19xR5AEF7kO6Swgqqn+sY5W99rF6xqAGK/Ch2mmbzX3+nHuqniZ xaVvP0UEIprRGSBkQfbIc9HxBBNJBo6jZLCl1zMFTITNg0ga0W7N8AGVM7Obvtr8 2Hi+UG9ypPC+FnzR12nGSycYHoZN4gDMj/cCAwEAAaOCAdcwggHTMB0GA1UdDgQW BBSPrzycgTu6h0msIW/27VKx69MzfTAfBgNVHSMEGDAWgBTlTQpzLOHGUUo0o9Bu kWscT7iqCjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTYvNVUwS2N5emh4bEZLTktQUWJwRnJIRS00cWdvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvNVUwS2N5emh4bEZLTktQUWJwRnJIRS00 cWdvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUF BzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzk2L2o2ODhuSUU3dW9kSnJDRnY5dTFTc2V2VE0zMC5yb2EwHwYIKwYB BQUHAQcBAf8EEDAOMAwEAgABMAYDBAPK1UgwDQYJKoZIhvcNAQELBQADggEBABfc OYtj68bpWaiNz9DPPrJPljkl1PVRNJud54l0nouT+lRyyaStW6tcSKGICciVVs4G o0xfCcNT3+ML+RXD+btZ1gHGM0dtPaQqIM5b26csz8Mzp+0vmFf7Ww4WfLY7cF1d l52ykPOBStEYVgJa6R0hjUzyAHmq+Pq2X536FQHoiLj6ImS/FNKfSq4oD/YdtLJY IaxUf7W95qGFidR/Qfa8I3CYERxQpWphSOB0BofODTrZFEPFy7341ahcgW0m30hb cnuPrsNPFX4kgezWfP8rgg7rb9uaOpb0tz1n2aBKFPgQyrRxbjHnKwrcZ21W1mRY pFIzJ0zhgx3diRHHrvA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:41 2026 by rpki-client