$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/IAOxML-m_FpfOAO-SxyD2MSxDnk.roa File: IAOxML-m_FpfOAO-SxyD2MSxDnk.roa (raw, json) Hash identifier: /N1v6HWKLUI2uyeTqz2jSpesSDL3wBz5HiQbjwRgPak= Subject key identifier: 20:03:B1:30:BF:A6:FC:5A:5F:38:03:BE:4B:1C:83:D8:C4:B1:0E:79 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 018C Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/IAOxML-m_FpfOAO-SxyD2MSxDnk.roa Signing time: Tue 31 Mar 2026 07:53:39 +0000 ROA not before: Tue 31 Mar 2026 07:53:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 210.158.208.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2003B130BFA6FC5A5F3803BE4B1C83D8C4B10E79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:5e:94:b2:10:50:88:83:0a:83:c0:42:d1: b3:69:57:07:b6:6e:94:be:e2:fb:2e:bd:41:f3:72: 62:97:a0:e1:8b:50:9f:b3:22:9f:1b:4b:bd:3d:77: 3e:3e:d8:55:13:42:02:02:28:c7:27:ec:19:c3:4c: f9:81:9d:af:54:04:b0:da:2e:71:13:de:23:35:85: ae:5f:a5:bb:ae:b1:95:77:24:c0:6b:8d:d6:7b:19: 89:0c:fb:73:a0:3d:48:23:be:4b:dd:5f:05:f5:19: ab:7b:99:fa:0e:26:f4:d0:eb:1b:f2:01:b5:ad:53: 0e:89:1f:92:17:ed:03:0a:22:fa:bf:5a:e5:cf:7c: d0:af:3c:df:3e:07:df:3d:e4:0d:00:10:32:be:cc: 42:b9:6b:8c:b9:40:cb:25:6c:66:77:7e:20:ee:74: a2:b4:4b:bb:ae:55:5f:13:ff:a2:cb:3e:52:de:81: 83:91:00:6a:55:f7:dc:e7:1d:57:70:09:da:73:7e: 06:eb:bb:ab:0b:48:7f:cb:37:47:0c:08:a0:18:37: 90:ef:38:55:d8:0e:e8:b3:ce:5c:a7:18:35:9f:a1: 22:7e:84:78:d2:84:96:e4:a7:c4:3d:0f:29:43:c4: 7b:ec:07:dd:ca:cb:bf:d6:00:79:86:5d:9b:e7:e1: 12:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:03:B1:30:BF:A6:FC:5A:5F:38:03:BE:4B:1C:83:D8:C4:B1:0E:79 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/IAOxML-m_FpfOAO-SxyD2MSxDnk.roa sbgp-ipAddrBlock: critical IPv4: 210.158.208.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:0c:2d:20:41:9d:8d:0b:05:b9:5c:6f:b1:2e:b3:ed:ed:ae: fe:cc:c0:c7:90:39:1c:5b:a2:f3:85:f2:55:85:68:66:90:13: 30:be:31:73:4a:77:3d:3d:58:2a:d7:50:bc:25:d2:89:e1:82: 9b:08:0e:25:af:1b:ac:d9:bf:ef:5c:cc:e5:1e:90:ce:bb:2e: de:84:72:ad:da:c4:20:f7:90:5a:ea:6e:16:fe:f4:cc:41:27: 4b:04:86:ee:ad:43:9f:8a:ed:44:63:9c:73:60:d7:2f:f7:3e: 07:0e:7d:6c:bd:8d:c9:d2:99:e2:9b:9a:36:0e:4c:5d:4d:e7: bc:16:2b:ad:52:af:32:ae:2f:57:6f:70:db:12:0a:02:1f:6e: e4:ac:ea:1d:09:bf:a6:73:ec:7b:2d:f1:92:15:6b:d3:64:5f: 78:49:67:fd:be:7c:cc:cc:61:3e:80:38:f2:8b:9e:83:0e:a5: c8:49:cf:7d:c8:01:86:ed:dd:ec:f3:cd:5f:00:61:24:c2:f5: 14:27:79:1a:12:37:b4:63:64:aa:e7:87:06:a5:6f:6f:ca:41: f7:7d:95:c1:3f:de:e2:8d:f3:b0:ce:27:33:b3:9f:14:53:a1: b8:1d:e2:ae:07:45:c7:be:e2:30:ef:b5:d2:5c:8b:90:3b:7b: eb:45:55:bc -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzMzlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIwMDNCMTMwQkZBNkZD NUE1RjM4MDNCRTRCMUM4M0Q4QzRCMTBFNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuXl6UshBQiIMKg8BC0bNpVwe2bpS+4vsuvUHzcmKXoOGLUJ+z Ip8bS709dz4+2FUTQgICKMcn7BnDTPmBna9UBLDaLnET3iM1ha5fpbuusZV3JMBr jdZ7GYkM+3OgPUgjvkvdXwX1Gat7mfoOJvTQ6xvyAbWtUw6JH5IX7QMKIvq/WuXP fNCvPN8+B9895A0AEDK+zEK5a4y5QMslbGZ3fiDudKK0S7uuVV8T/6LLPlLegYOR AGpV99znHVdwCdpzfgbru6sLSH/LN0cMCKAYN5DvOFXYDuizzlynGDWfoSJ+hHjS hJbkp8Q9DylDxHvsB93Ky7/WAHmGXZvn4RLvAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUIAOxML+m/FpfOAO+SxyD2MSxDnkwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9JQU94TUwtbV9GcGZPQU8tU3h5RDJNU3hEbmsucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0p7QMA0GCSqGSIb3DQEBCwUA A4IBAQA/DC0gQZ2NCwW5XG+xLrPt7a7+zMDHkDkcW6LzhfJVhWhmkBMwvjFzSnc9 PVgq11C8JdKJ4YKbCA4lrxus2b/vXMzlHpDOuy7ehHKt2sQg95Ba6m4W/vTMQSdL BIburUOfiu1EY5xzYNcv9z4HDn1svY3J0pnim5o2DkxdTee8FiutUq8yri9Xb3Db EgoCH27krOodCb+mc+x7LfGSFWvTZF94SWf9vnzMzGE+gDjyi56DDqXISc99yAGG 7d3s881fAGEkwvUUJ3kaEje0Y2Sq54cGpW9vykH3fZXBP97ijfOwziczs58UU6G4 HeKuB0XHvuIw77XSXIuQO3vrRVW8 -----END CERTIFICATE-----Generated at Wed Apr 1 15:55:58 2026 by rpki-client