$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/78dnD9O2JFuyhJ_J0i0UmS6azlI.roa File: 78dnD9O2JFuyhJ_J0i0UmS6azlI.roa (raw, json) Hash identifier: Wzw3yxGN0xaeD8ZJjIHgbSWJpxSfUwXqSs216VboriY= Subject key identifier: EF:C7:67:0F:D3:B6:24:5B:B2:84:9F:C9:D2:2D:14:99:2E:9A:CE:52 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01DD Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/78dnD9O2JFuyhJ_J0i0UmS6azlI.roa Signing time: Tue 31 Mar 2026 07:54:17 +0000 ROA not before: Tue 31 Mar 2026 07:54:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.33.0.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:54:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=EFC7670FD3B6245BB2849FC9D22D14992E9ACE52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:67:ea:39:e4:08:39:96:87:d4:28:fe:be:05: b0:00:c9:08:6b:0f:96:a5:56:a3:f8:62:2d:b6:91: 47:c3:07:a2:15:6e:4b:45:32:fa:c4:ee:8b:f3:eb: c2:ce:f1:fa:0a:30:28:e7:92:66:bc:85:a0:d0:4a: d7:b0:1a:69:8a:89:aa:9c:bb:b2:43:9c:9a:d8:b6: be:f5:ad:8d:56:1d:a3:b9:17:af:b1:7f:79:46:b9: e2:b3:c1:df:9a:1c:29:01:38:b0:64:89:d9:83:bd: 2b:1b:7f:7e:96:80:f3:38:d7:0a:f2:e0:f7:10:3c: 44:fc:59:4b:92:15:3f:ac:00:10:ca:47:d3:37:a6: f3:ea:6d:0f:70:d5:c1:4f:ef:48:82:ca:44:5c:f0: b4:fc:a3:76:11:36:ba:09:dc:14:c3:1f:cb:54:66: 7e:8c:d4:cc:38:60:d4:7b:1b:b4:4d:9d:02:33:1b: 13:aa:3b:96:1e:d5:1c:79:60:58:6d:c4:4d:fa:95: c5:3e:a4:95:24:36:5c:ca:cf:4c:2d:5e:95:07:93: da:58:67:db:ac:69:bb:f1:26:74:65:23:95:1d:45: 62:c5:d9:88:84:ba:82:80:6c:8b:6c:a9:a2:61:d3: 29:2f:5f:58:58:b0:91:5e:c4:74:bd:9d:45:51:e4: 3a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C7:67:0F:D3:B6:24:5B:B2:84:9F:C9:D2:2D:14:99:2E:9A:CE:52 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/78dnD9O2JFuyhJ_J0i0UmS6azlI.roa sbgp-ipAddrBlock: critical IPv4: 202.33.0.0/21 Signature Algorithm: sha256WithRSAEncryption 26:20:b8:6f:e7:ac:37:b5:c0:54:51:a5:a8:05:e5:4a:6d:1a: 55:b3:8d:64:75:45:8e:e5:c4:20:d6:db:d0:b7:a2:19:de:35: c8:c4:39:2f:17:f0:94:09:0b:c3:eb:87:25:69:6b:fb:4c:08: b1:a8:a6:ce:03:80:ce:70:28:39:0c:88:91:ca:ed:38:a1:a5: f9:27:cb:8a:92:aa:05:76:88:ad:c2:61:62:87:7a:20:53:e0: 79:b3:ea:5a:f8:cc:3b:df:0e:17:d1:d9:a3:76:6c:fb:ca:3d: 09:c0:e7:31:2e:40:40:5b:a6:6b:5c:0c:05:b8:53:86:2f:94: df:b6:eb:0e:e1:b9:a3:55:05:1d:16:a5:fd:58:08:88:71:48: 78:77:dc:90:f4:70:72:20:b7:f3:b0:4a:74:64:34:e5:52:c1: d4:fe:18:8e:a4:a2:95:68:e7:89:78:2a:da:8a:6d:eb:42:b5: 29:1b:ff:41:55:86:58:6c:14:05:5a:bb:4f:4e:da:9d:21:e7: ce:cb:56:6a:e7:77:e2:15:29:fd:f5:d8:99:b3:93:0a:48:ec: 40:8d:ad:02:b0:2e:05:04:61:79:a4:ad:fa:c5:fb:04:ef:96: b7:c5:ce:a2:ed:e9:bc:e6:ee:51:24:50:51:76:79:34:0c:f4: 27:77:9a:0b -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzU0MTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVGQzc2NzBGRDNCNjI0 NUJCMjg0OUZDOUQyMkQxNDk5MkU5QUNFNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/Z+o55Ag5lofUKP6+BbAAyQhrD5alVqP4Yi22kUfDB6IVbktF MvrE7ovz68LO8foKMCjnkma8haDQStewGmmKiaqcu7JDnJrYtr71rY1WHaO5F6+x f3lGueKzwd+aHCkBOLBkidmDvSsbf36WgPM41wry4PcQPET8WUuSFT+sABDKR9M3 pvPqbQ9w1cFP70iCykRc8LT8o3YRNroJ3BTDH8tUZn6M1Mw4YNR7G7RNnQIzGxOq O5Ye1Rx5YFhtxE36lcU+pJUkNlzKz0wtXpUHk9pYZ9usabvxJnRlI5UdRWLF2YiE uoKAbItsqaJh0ykvX1hYsJFexHS9nUVR5DoxAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQU78dnD9O2JFuyhJ/J0i0UmS6azlIwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My83OGRuRDlPMkpGdXloSl9KMGkwVW1TNmF6bEkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDyiEAMA0GCSqGSIb3DQEBCwUA A4IBAQAmILhv56w3tcBUUaWoBeVKbRpVs41kdUWO5cQg1tvQt6IZ3jXIxDkvF/CU CQvD64claWv7TAixqKbOA4DOcCg5DIiRyu04oaX5J8uKkqoFdoitwmFih3ogU+B5 s+pa+Mw73w4X0dmjdmz7yj0JwOcxLkBAW6ZrXAwFuFOGL5TftusO4bmjVQUdFqX9 WAiIcUh4d9yQ9HByILfzsEp0ZDTlUsHU/hiOpKKVaOeJeCraim3rQrUpG/9BVYZY bBQFWrtPTtqdIefOy1Zq53fiFSn99diZs5MKSOxAja0CsC4FBGF5pK36xfsE75a3 xc6i7em85u5RJFBRdnk0DPQnd5oL -----END CERTIFICATE-----Generated at Wed Apr 1 16:02:25 2026 by rpki-client