$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/4BEShFXeTfaUJnhNg3AI6dSIMmY.roa File: 4BEShFXeTfaUJnhNg3AI6dSIMmY.roa (raw, json) Hash identifier: 98JvMollqZuXaSFJkKmMQa7Tmwhxkv3OvI4qYEnjDg8= Subject key identifier: E0:11:12:84:55:DE:4D:F6:94:26:78:4D:83:70:08:E9:D4:88:32:66 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01C5 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/4BEShFXeTfaUJnhNg3AI6dSIMmY.roa Signing time: Tue 31 Mar 2026 07:54:06 +0000 ROA not before: Tue 31 Mar 2026 07:54:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 211.133.248.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:54:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E011128455DE4DF69426784D837008E9D4883266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e3:85:fc:7c:86:55:26:99:9b:35:c3:79:6d: 2d:f0:9d:6d:e6:7b:89:8f:2a:2f:8b:15:be:b9:d8: 06:f0:10:ce:76:30:38:33:3f:64:60:71:0e:b9:2a: c4:c7:11:00:dd:79:b4:6b:b8:dc:bb:64:bb:d4:a6: 48:80:7c:79:e4:11:66:4d:3f:b9:3e:8a:11:6f:99: 34:dd:ec:ed:01:72:29:36:f2:71:42:07:f6:ad:c3: 0d:72:3c:17:96:f4:92:16:70:da:d4:f1:6a:e8:0b: bb:d4:09:35:a6:56:a9:9f:dd:f9:18:af:ba:70:5a: 1b:80:f8:45:77:83:77:62:9f:5c:81:6f:74:81:fb: 89:dc:db:cd:ff:2a:c6:16:a0:86:3d:df:0b:4e:1c: d9:cc:56:54:9f:9e:5d:ff:cf:07:ec:0f:8f:6d:a2: de:5c:8e:e2:83:89:1f:45:03:2f:e0:a7:68:3a:87: 1a:84:7d:cc:82:74:b1:91:d2:dd:73:a0:d2:1b:04: 3d:71:2d:71:5f:6f:ca:f9:2a:54:39:b9:23:7f:80: 79:b7:27:94:25:c8:0b:e4:0d:ce:45:bb:1a:d4:b1: 35:b5:2f:a3:85:59:4d:02:ac:1d:ac:cc:c2:9c:38: 53:0b:a1:cf:bc:e5:6b:12:c5:36:d0:e4:e4:d8:ac: e8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:11:12:84:55:DE:4D:F6:94:26:78:4D:83:70:08:E9:D4:88:32:66 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/4BEShFXeTfaUJnhNg3AI6dSIMmY.roa sbgp-ipAddrBlock: critical IPv4: 211.133.248.0/22 Signature Algorithm: sha256WithRSAEncryption 79:32:ba:b2:36:68:a3:01:1f:d0:a6:9a:97:d9:b2:42:69:68: 89:1f:d5:36:a8:0a:c3:6d:21:87:43:21:4d:7e:82:3e:dc:47: 16:ae:c7:2d:73:5f:5b:ee:b3:f9:c6:1d:f2:45:e0:8d:60:7c: 93:5a:78:0c:59:e0:20:25:f5:86:6b:55:0f:f0:56:a2:c0:88: 9b:d5:03:ba:11:75:12:55:bf:6a:8f:3c:bd:46:97:12:61:33: 9c:31:9b:d9:b1:72:be:bb:9d:d4:9b:b1:75:b3:73:83:e3:17: 94:07:50:2c:3d:73:e7:6c:86:9b:90:29:a9:60:cb:5c:7d:b9: ef:ba:e1:48:64:2d:63:57:0b:4c:91:88:fb:32:1e:7b:0e:ab: a2:5f:93:81:3e:20:e2:c9:e8:24:48:61:99:f5:11:fc:0b:54: d6:56:cd:32:7d:8d:73:ba:d3:65:b9:4d:15:3a:e2:7d:af:23: cb:e4:30:10:bd:96:13:76:4e:69:fd:34:70:f6:66:ff:f7:4f: 06:92:43:fa:90:a0:fe:44:79:cf:b7:b1:84:09:07:f8:f6:74: fd:01:52:ee:cc:27:a2:85:4f:8d:0e:47:35:38:de:d1:63:ae: 1b:fa:2c:31:2f:0d:64:32:10:21:70:2b:e4:23:c7:a6:ef:83: 17:b0:6d:f4 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzU0MDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUwMTExMjg0NTVERTRE RjY5NDI2Nzg0RDgzNzAwOEU5RDQ4ODMyNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH44X8fIZVJpmbNcN5bS3wnW3me4mPKi+LFb652AbwEM52MDgz P2RgcQ65KsTHEQDdebRruNy7ZLvUpkiAfHnkEWZNP7k+ihFvmTTd7O0Bcik28nFC B/atww1yPBeW9JIWcNrU8WroC7vUCTWmVqmf3fkYr7pwWhuA+EV3g3din1yBb3SB +4nc283/KsYWoIY93wtOHNnMVlSfnl3/zwfsD49tot5cjuKDiR9FAy/gp2g6hxqE fcyCdLGR0t1zoNIbBD1xLXFfb8r5KlQ5uSN/gHm3J5QlyAvkDc5FuxrUsTW1L6OF WU0CrB2szMKcOFMLoc+85WsSxTbQ5OTYrOjDAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQU4BEShFXeTfaUJnhNg3AI6dSIMmYwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My80QkVTaEZYZVRmYVVKbmhOZzNBSTZkU0lNbVkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC04X4MA0GCSqGSIb3DQEBCwUA A4IBAQB5MrqyNmijAR/QppqX2bJCaWiJH9U2qArDbSGHQyFNfoI+3EcWrsctc19b 7rP5xh3yReCNYHyTWngMWeAgJfWGa1UP8FaiwIib1QO6EXUSVb9qjzy9RpcSYTOc MZvZsXK+u53Um7F1s3OD4xeUB1AsPXPnbIabkCmpYMtcfbnvuuFIZC1jVwtMkYj7 Mh57DquiX5OBPiDiyegkSGGZ9RH8C1TWVs0yfY1zutNluU0VOuJ9ryPL5DAQvZYT dk5p/TRw9mb/908GkkP6kKD+RHnPt7GECQf49nT9AVLuzCeihU+NDkc1ON7RY64b +iwxLw1kMhAhcCvkI8em74MXsG30 -----END CERTIFICATE-----Generated at Wed Apr 1 16:02:24 2026 by rpki-client