$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/LAZbSKsDSSLt32Px9VAJewRaS0c.roa File: LAZbSKsDSSLt32Px9VAJewRaS0c.roa (raw, json) Hash identifier: mMZXwrYF8q/jvh0IfLh+PLQ3VlkyaiN4gzn/fAQAAJk= Subject key identifier: 2C:06:5B:48:AB:03:49:22:ED:DF:63:F1:F5:50:09:7B:04:5A:4B:47 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01B9 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/LAZbSKsDSSLt32Px9VAJewRaS0c.roa Signing time: Tue 31 Mar 2026 07:53:58 +0000 ROA not before: Tue 31 Mar 2026 07:53:58 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 211.14.132.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:58 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2C065B48AB034922EDDF63F1F550097B045A4B47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6f:4d:02:28:3a:1c:a5:d6:10:89:be:a8:6e: dc:0c:6e:e3:21:7c:1c:fe:77:6d:e5:0b:c9:05:5b: 70:19:13:3a:50:45:19:54:ff:89:eb:63:0e:fd:34: 17:71:05:cc:5a:41:cb:63:5f:dd:85:67:d8:07:9f: 6e:bb:35:0b:4b:f6:ed:24:c1:ef:f9:e2:71:fd:a7: 0c:31:e6:24:48:f9:a2:e5:b3:b5:f2:55:ae:03:27: 1f:43:7c:f9:02:b6:85:34:a2:ca:82:54:65:fa:4a: 93:83:79:06:6a:a0:d7:31:0d:98:27:46:76:0d:0a: 29:f7:bc:bc:51:c6:ae:2e:d7:56:42:ff:6c:27:83: 19:9e:92:c8:ca:17:76:89:f6:5d:af:4e:4f:d3:fc: fb:56:6f:0a:9a:7f:1e:87:16:7a:16:30:a2:79:20: 26:48:d4:8a:11:5c:93:e3:3a:77:14:d8:87:23:16: 53:5c:d4:d3:62:21:67:94:4e:ca:80:b9:5d:3b:91: dd:ef:3f:0a:38:54:e7:52:24:5a:08:3e:5c:a1:d4: 27:d0:64:3b:a3:fc:b8:03:e9:08:a3:db:dd:97:a4: 8f:a4:f4:c3:0d:9e:b6:55:52:b7:f3:97:68:d6:c5: f8:78:c3:7d:46:37:21:1e:07:90:17:2f:18:d4:12: b4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:06:5B:48:AB:03:49:22:ED:DF:63:F1:F5:50:09:7B:04:5A:4B:47 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/LAZbSKsDSSLt32Px9VAJewRaS0c.roa sbgp-ipAddrBlock: critical IPv4: 211.14.132.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:98:e1:23:95:36:0f:66:0f:e0:38:ba:cb:c4:ed:dd:34:a0: cc:9a:9c:17:cd:af:0e:b2:35:12:46:eb:36:7e:82:79:e5:1a: 73:4a:93:34:48:3a:fa:6d:ab:e3:41:4b:56:11:6b:9f:1b:cf: 5f:9f:23:0d:88:61:33:73:83:53:08:cb:31:35:b2:2a:02:12: 7b:20:51:1a:e7:ae:44:db:5a:1c:4b:f2:aa:1a:ff:11:6a:d9: 5f:d6:8e:2b:d2:f4:5a:e7:c5:0e:7a:f1:17:55:31:a6:3b:55: 0d:37:48:39:bd:14:35:67:94:b9:98:1a:99:4b:1c:40:05:d5: e9:cb:70:11:f3:b4:f7:63:40:d9:b4:af:f4:5f:74:ae:70:81: 55:a3:4f:ad:e5:b3:6d:08:82:97:e9:96:0c:2c:67:50:bd:23: 2c:7a:5c:f8:3b:b9:15:27:5e:9c:a5:0c:56:18:e5:d4:0f:13: dd:d9:60:a4:bf:97:72:ea:ac:1b:71:cd:b5:90:84:27:2d:35: e0:82:1c:c1:ca:32:0c:97:5c:c2:97:2e:23:2b:bf:25:68:91: ae:d1:c0:91:8f:9e:a0:fe:74:c6:d6:73:2c:a0:c0:29:d3:1e: c0:8a:4d:72:da:67:65:7f:27:ba:c1:1c:92:df:f5:ff:0f:c8: fa:8c:b8:00 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzNThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJDMDY1QjQ4QUIwMzQ5 MjJFRERGNjNGMUY1NTAwOTdCMDQ1QTRCNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeb00CKDocpdYQib6obtwMbuMhfBz+d23lC8kFW3AZEzpQRRlU /4nrYw79NBdxBcxaQctjX92FZ9gHn267NQtL9u0kwe/54nH9pwwx5iRI+aLls7Xy Va4DJx9DfPkCtoU0osqCVGX6SpODeQZqoNcxDZgnRnYNCin3vLxRxq4u11ZC/2wn gxmeksjKF3aJ9l2vTk/T/PtWbwqafx6HFnoWMKJ5ICZI1IoRXJPjOncU2IcjFlNc 1NNiIWeUTsqAuV07kd3vPwo4VOdSJFoIPlyh1CfQZDuj/LgD6Qij292XpI+k9MMN nrZVUrfzl2jWxfh4w31GNyEeB5AXLxjUErRBAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQULAZbSKsDSSLt32Px9VAJewRaS0cwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9MQVpiU0tzRFNTTHQzMlB4OVZBSmV3UmFTMGMucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0w6EMA0GCSqGSIb3DQEBCwUA A4IBAQBbmOEjlTYPZg/gOLrLxO3dNKDMmpwXza8OsjUSRus2foJ55RpzSpM0SDr6 bavjQUtWEWufG89fnyMNiGEzc4NTCMsxNbIqAhJ7IFEa565E21ocS/KqGv8Ratlf 1o4r0vRa58UOevEXVTGmO1UNN0g5vRQ1Z5S5mBqZSxxABdXpy3AR87T3Y0DZtK/0 X3SucIFVo0+t5bNtCIKX6ZYMLGdQvSMselz4O7kVJ16cpQxWGOXUDxPd2WCkv5dy 6qwbcc21kIQnLTXgghzByjIMl1zCly4jK78laJGu0cCRj56g/nTG1nMsoMAp0x7A ik1y2mdlfye6wRyS3/X/D8j6jLgA -----END CERTIFICATE-----Generated at Wed Apr 1 15:56:17 2026 by rpki-client