$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/3iSjyyO5watOtoeo0N4CmmDEMVM.roa File: 3iSjyyO5watOtoeo0N4CmmDEMVM.roa (raw, json) Hash identifier: irm4LBqjxXdqwKh7K+E3UslOcQf3ET5G6xZkVPiha7g= Subject key identifier: DE:24:A3:CB:23:B9:C1:AB:4E:B6:87:A8:D0:DE:02:9A:60:C4:31:53 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01B8 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/3iSjyyO5watOtoeo0N4CmmDEMVM.roa Signing time: Tue 31 Mar 2026 07:53:58 +0000 ROA not before: Tue 31 Mar 2026 07:53:58 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 211.14.131.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:58 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DE24A3CB23B9C1AB4EB687A8D0DE029A60C43153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:85:0c:69:e3:1b:c2:1d:66:6c:f1:5d:21:69: ba:6a:e9:f9:27:c8:27:c9:e2:b4:d5:e6:06:2f:3f: 0c:3b:c5:c3:75:96:c9:24:57:72:9d:cd:b1:ee:37: ad:2a:3b:ea:43:62:14:9a:ee:0a:dd:ae:8e:19:92: 85:b1:c9:e6:e4:2d:9d:be:94:81:9c:eb:bd:7c:40: ad:b3:29:77:e0:ca:45:1d:16:ee:90:35:5f:28:a1: 5d:ac:c7:ff:45:8c:eb:16:de:09:08:83:69:aa:91: 7a:53:2d:bd:30:47:c8:b8:a0:9e:13:a5:0f:41:02: b6:23:a0:94:00:14:9d:e2:ae:be:fc:0f:e4:dd:a6: 4b:b6:ba:4e:49:6c:11:42:c8:0a:24:d9:8a:bd:73: e4:7c:1e:04:66:e2:54:31:ef:d9:bf:be:5f:d4:af: 33:c5:11:9e:24:fe:e3:96:62:7d:41:f2:8a:e6:d5: 6f:98:43:39:63:68:89:dc:6d:9c:6a:9f:54:82:73: 45:fb:cf:d3:c6:4e:07:85:96:b2:13:04:4b:94:62: 49:5b:f0:6f:24:7b:27:31:64:b2:21:6a:3b:21:c6: 8c:68:30:1a:11:74:1f:67:7c:f4:a7:e2:9a:8a:de: 52:78:69:cf:63:ce:97:a5:71:45:a7:5c:e9:10:b8: 8b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:24:A3:CB:23:B9:C1:AB:4E:B6:87:A8:D0:DE:02:9A:60:C4:31:53 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/3iSjyyO5watOtoeo0N4CmmDEMVM.roa sbgp-ipAddrBlock: critical IPv4: 211.14.131.0/24 Signature Algorithm: sha256WithRSAEncryption 90:43:3c:e2:ea:ea:07:c3:d0:67:70:25:95:f1:b3:cf:02:ca: 8b:03:a8:46:7b:11:d9:04:59:e2:04:de:2b:01:f7:50:65:a0: 32:0d:2b:09:05:69:41:52:55:14:1b:7f:c7:ba:28:19:80:55: 51:16:dc:3b:11:7f:c2:25:48:c0:b3:3d:02:05:cc:6f:48:5e: 7a:a0:61:d9:a5:87:0b:bd:19:38:87:26:07:e0:36:ee:89:0d: a3:63:b2:a1:d5:ac:43:c7:ac:ff:49:d1:7f:0e:5e:e5:a9:d3: e7:75:f0:91:e0:f1:e8:38:5c:f2:1f:6d:ce:f6:c2:74:2f:6b: a9:f7:5c:9a:57:cf:96:63:65:2e:5f:bd:29:01:2a:eb:7c:15: 9f:a8:8c:5b:97:24:29:55:1d:78:ef:47:c3:c1:f2:89:f8:cb: 2a:98:61:3b:a6:75:ca:97:7d:85:ae:6d:6a:61:38:89:f1:74: 46:ba:c0:b8:39:77:37:79:5d:2a:c0:b5:a7:59:9d:4d:c9:c6: 29:1b:59:58:d6:ac:1f:66:ac:f3:90:39:7a:ce:34:14:9b:4d: f8:9b:a5:e3:fb:03:ca:70:18:63:4e:a0:27:ab:ce:bb:97:0f: d7:ab:23:5e:04:d8:c5:c8:23:f1:ea:e1:85:84:59:ab:17:7c: 65:8e:9d:6f -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzNThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERFMjRBM0NCMjNCOUMx QUI0RUI2ODdBOEQwREUwMjlBNjBDNDMxNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCehQxp4xvCHWZs8V0habpq6fknyCfJ4rTV5gYvPww7xcN1lskk V3KdzbHuN60qO+pDYhSa7grdro4ZkoWxyebkLZ2+lIGc6718QK2zKXfgykUdFu6Q NV8ooV2sx/9FjOsW3gkIg2mqkXpTLb0wR8i4oJ4TpQ9BArYjoJQAFJ3irr78D+Td pku2uk5JbBFCyAok2Yq9c+R8HgRm4lQx79m/vl/UrzPFEZ4k/uOWYn1B8orm1W+Y QzljaIncbZxqn1SCc0X7z9PGTgeFlrITBEuUYklb8G8keycxZLIhajshxoxoMBoR dB9nfPSn4pqK3lJ4ac9jzpelcUWnXOkQuIs1AgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQU3iSjyyO5watOtoeo0N4CmmDEMVMwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My8zaVNqeXlPNXdhdE90b2VvME40Q21tREVNVk0ucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0w6DMA0GCSqGSIb3DQEBCwUA A4IBAQCQQzzi6uoHw9BncCWV8bPPAsqLA6hGexHZBFniBN4rAfdQZaAyDSsJBWlB UlUUG3/HuigZgFVRFtw7EX/CJUjAsz0CBcxvSF56oGHZpYcLvRk4hyYH4DbuiQ2j Y7Kh1axDx6z/SdF/Dl7lqdPndfCR4PHoOFzyH23O9sJ0L2up91yaV8+WY2UuX70p ASrrfBWfqIxblyQpVR1470fDwfKJ+MsqmGE7pnXKl32Frm1qYTiJ8XRGusC4OXc3 eV0qwLWnWZ1NycYpG1lY1qwfZqzzkDl6zjQUm034m6Xj+wPKcBhjTqAnq867lw/X qyNeBNjFyCPx6uGFhFmrF3xljp1v -----END CERTIFICATE-----Generated at Wed Apr 1 15:55:57 2026 by rpki-client