$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/96B5YvehB-ndAGx-J3v-rTnjiYk.roa File: 96B5YvehB-ndAGx-J3v-rTnjiYk.roa (raw, json) Hash identifier: Psvj7LQoGhJtYWjmLqaDo/UCcNK7BkWwiXw+33sj5wc= Subject key identifier: F7:A0:79:62:F7:A1:07:E9:DD:00:6C:7E:27:7B:FE:AD:39:E3:89:89 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01E3 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/96B5YvehB-ndAGx-J3v-rTnjiYk.roa Signing time: Tue 31 Mar 2026 07:54:20 +0000 ROA not before: Tue 31 Mar 2026 07:54:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.33.102.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:54:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=F7A07962F7A107E9DD006C7E277BFEAD39E38989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d2:d1:a9:20:33:26:3b:43:89:03:55:26:8a: f4:80:73:01:b8:b2:ee:2e:94:07:d0:84:37:e9:8d: 2e:71:6e:de:3b:6e:10:ad:38:9b:41:49:6b:6b:86: 4b:2a:83:e0:75:37:6e:56:3c:92:3c:2f:5a:4b:82: cc:cc:b9:6e:1c:76:4b:cc:6b:ae:16:2a:6b:cf:e5: 16:24:bf:07:6a:83:cf:57:65:c3:53:17:b8:2b:97: 96:de:93:69:07:80:5f:cc:51:2c:ae:1f:34:21:76: 7c:2e:85:18:14:c4:0f:d7:dc:64:9e:18:cb:c5:90: 2f:d2:af:cf:b8:d6:b2:1d:1e:2a:5c:66:0c:2a:52: ab:f3:4e:8a:71:a8:ab:c6:0a:cb:67:26:b4:2e:76: c2:aa:47:b9:90:1c:37:ba:80:ce:82:95:9a:2b:3f: 48:0c:26:31:40:4c:7f:36:38:33:90:5e:70:ed:06: e3:f0:34:a5:e6:2b:8f:ef:7b:51:c9:f0:b3:c6:b3: 92:4f:3f:25:a7:54:22:f0:3e:f5:0e:26:7a:71:3b: b5:44:d9:19:40:bc:0d:38:7e:e6:7e:2b:1b:9b:ce: 88:a5:44:93:5c:9b:e8:dd:a3:6e:6a:d5:ab:5a:74: 0d:57:53:03:df:0d:93:55:5c:56:65:47:ca:e7:7b: 77:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A0:79:62:F7:A1:07:E9:DD:00:6C:7E:27:7B:FE:AD:39:E3:89:89 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/96B5YvehB-ndAGx-J3v-rTnjiYk.roa sbgp-ipAddrBlock: critical IPv4: 202.33.102.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:dd:d8:99:7e:15:04:13:c0:2f:38:75:8d:16:53:19:26:9f: c4:cb:30:95:b9:29:4c:a9:9e:5d:5a:65:85:a8:59:98:71:16: 34:49:09:25:57:7e:9a:5f:b2:06:c0:c5:5f:90:c9:62:ca:83: b4:b5:95:e9:07:b7:01:61:65:db:ef:dc:30:f7:93:1b:a9:94: 9e:bb:20:1c:58:b9:d5:94:06:f9:5a:68:9f:81:8f:95:52:6d: 4a:13:e1:dc:f4:e7:3a:f6:68:11:88:3b:30:ca:25:37:28:11: 1e:b8:a5:d5:3e:84:65:0b:fb:aa:df:fd:f8:eb:a7:65:65:a6: bf:19:6c:ed:e3:2e:94:bd:c7:57:8a:b3:ed:5c:60:c3:df:ef: 84:10:73:9d:62:aa:2e:36:99:82:3c:09:d2:60:8e:02:13:0a: 6c:5c:67:f1:c2:ca:d7:30:2f:ef:e0:d7:fe:c1:8c:01:00:07: 43:a0:fb:4a:97:22:c7:a1:42:84:f3:46:b8:ac:10:7d:4d:2b: 86:6b:16:4f:c5:6a:5d:35:3f:95:a8:ca:e6:25:ea:a7:77:a6: 47:99:65:99:c3:d9:26:14:55:d7:9c:a4:d7:9e:fd:6a:b6:1d: 5b:54:52:0e:13:05:b6:6b:94:bf:9f:74:c1:5e:69:ec:89:25: cb:bb:a0:ea -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzU0MjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEY3QTA3OTYyRjdBMTA3 RTlERDAwNkM3RTI3N0JGRUFEMzlFMzg5ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC00tGpIDMmO0OJA1UmivSAcwG4su4ulAfQhDfpjS5xbt47bhCt OJtBSWtrhksqg+B1N25WPJI8L1pLgszMuW4cdkvMa64WKmvP5RYkvwdqg89XZcNT F7grl5bek2kHgF/MUSyuHzQhdnwuhRgUxA/X3GSeGMvFkC/Sr8+41rIdHipcZgwq UqvzTopxqKvGCstnJrQudsKqR7mQHDe6gM6ClZorP0gMJjFATH82ODOQXnDtBuPw NKXmK4/ve1HJ8LPGs5JPPyWnVCLwPvUOJnpxO7VE2RlAvA04fuZ+KxubzoilRJNc m+jdo25q1atadA1XUwPfDZNVXFZlR8rne3d7AgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQU96B5YvehB+ndAGx+J3v+rTnjiYkwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My85NkI1WXZlaEItbmRBR3gtSjN2LXJUbmppWWsucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByiFmMA0GCSqGSIb3DQEBCwUA A4IBAQBv3diZfhUEE8AvOHWNFlMZJp/EyzCVuSlMqZ5dWmWFqFmYcRY0SQklV36a X7IGwMVfkMliyoO0tZXpB7cBYWXb79ww95MbqZSeuyAcWLnVlAb5WmifgY+VUm1K E+Hc9Oc69mgRiDswyiU3KBEeuKXVPoRlC/uq3/3466dlZaa/GWzt4y6UvcdXirPt XGDD3++EEHOdYqouNpmCPAnSYI4CEwpsXGfxwsrXMC/v4Nf+wYwBAAdDoPtKlyLH oUKE80a4rBB9TSuGaxZPxWpdNT+VqMrmJeqnd6ZHmWWZw9kmFFXXnKTXnv1qth1b VFIOEwW2a5S/n3TBXmnsiSXLu6Dq -----END CERTIFICATE-----Generated at Wed Apr 1 16:03:37 2026 by rpki-client