$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/O4nZ-QzYmBF1u6JOIeM6VAxuxYI.roa File: O4nZ-QzYmBF1u6JOIeM6VAxuxYI.roa (raw, json) Hash identifier: 5whw2uE9lFjGor6JA662QWG2DkVUcYohWUiTBAdMZdo= Subject key identifier: 3B:89:D9:F9:0C:D8:98:11:75:BB:A2:4E:21:E3:3A:54:0C:6E:C5:82 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01E9 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/O4nZ-QzYmBF1u6JOIeM6VAxuxYI.roa Signing time: Tue 31 Mar 2026 07:54:22 +0000 ROA not before: Tue 31 Mar 2026 07:54:22 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 210.250.192.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:54:22 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3B89D9F90CD8981175BBA24E21E33A540C6EC582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4e:35:e1:88:66:92:cb:f8:33:b2:c0:69:d8: 39:7c:38:9d:8f:5a:89:b3:8a:c2:5e:ea:a2:13:1d: 32:e0:92:5a:39:42:01:35:2f:77:2e:a8:a4:9b:52: 5d:6b:36:ae:6d:16:6e:53:de:7b:75:e3:cf:02:c4: b8:fa:93:1b:a2:1d:e6:f2:ed:77:de:2c:eb:16:ea: c1:7c:2a:86:95:47:f8:f3:f1:a5:f8:02:61:34:74: 22:9c:0a:58:c1:55:19:ef:5a:c7:43:f1:ff:73:5f: 47:a2:0a:41:c0:16:89:fa:a6:85:1c:f9:7f:67:66: 77:8e:2f:ef:b8:d2:55:e6:87:c6:18:10:d7:83:22: 06:08:79:5e:a9:c4:f8:03:9b:85:a3:95:a4:d5:0b: a6:d9:24:28:d6:04:e5:5c:d1:b5:07:74:26:a2:c2: 8c:dc:a5:3c:5e:7d:ff:e7:37:a4:5c:bd:82:38:2c: 6f:80:cf:55:58:80:f4:19:01:9e:93:ce:1e:92:45: ce:ba:1a:a8:86:02:d3:8d:02:24:e7:fd:28:47:f4: ab:28:c1:2b:cf:2a:e0:6d:5a:91:77:9b:01:f2:f8: b3:c6:4c:2f:66:d6:10:9d:ee:d4:23:3d:1c:b6:d3: d6:65:c5:f9:20:e2:07:be:77:da:06:fa:d5:b3:ff: 3c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:89:D9:F9:0C:D8:98:11:75:BB:A2:4E:21:E3:3A:54:0C:6E:C5:82 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/O4nZ-QzYmBF1u6JOIeM6VAxuxYI.roa sbgp-ipAddrBlock: critical IPv4: 210.250.192.0/19 Signature Algorithm: sha256WithRSAEncryption af:23:f0:19:c9:65:22:22:f5:ff:40:d9:06:ea:d1:af:ca:d4: 62:cf:3c:a1:e1:d9:85:40:9a:2c:93:9d:99:3c:00:82:c7:52: cf:0c:49:0b:ff:19:34:cc:fa:52:94:26:ec:2e:59:ee:b4:0e: dd:ff:c1:0f:55:5d:0a:35:c5:0f:3a:46:ca:71:83:3f:6e:21: 96:9f:f0:03:b3:5e:af:42:5f:6d:33:70:04:59:33:bf:3b:6a: 27:2b:50:52:3a:00:f8:ae:65:54:a6:ce:4f:5c:4b:ae:30:9c: ca:b9:c0:b0:a2:ff:22:61:41:a6:5b:9b:9f:39:a0:d0:8f:f9: f9:38:73:f7:38:6e:72:92:55:b7:c3:bb:90:a5:72:d9:4b:ba: 15:70:2b:20:b3:d1:92:af:2e:2a:b1:e2:ad:67:c2:19:fd:22: cb:b6:4a:ee:0a:dd:a0:6e:6c:ff:bd:b9:d1:8c:ed:90:6c:ae: 79:6e:23:a3:3c:d0:60:3c:6d:7c:f3:8a:f7:7a:e4:63:33:56: 96:12:9c:01:2a:3e:47:5f:07:96:0e:24:5a:a1:35:1c:59:90: 8e:94:4a:d2:2b:e4:18:d8:f5:d0:48:16:4a:1f:f0:71:94:b3: 2c:f1:f0:86:50:75:70:34:de:2c:76:2c:b4:34:67:2a:dd:ed: ce:43:2b:50 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzU0MjJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNCODlEOUY5MENEODk4 MTE3NUJCQTI0RTIxRTMzQTU0MEM2RUM1ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSTjXhiGaSy/gzssBp2Dl8OJ2PWomzisJe6qITHTLgklo5QgE1 L3cuqKSbUl1rNq5tFm5T3nt1488CxLj6kxuiHeby7XfeLOsW6sF8KoaVR/jz8aX4 AmE0dCKcCljBVRnvWsdD8f9zX0eiCkHAFon6poUc+X9nZneOL++40lXmh8YYENeD IgYIeV6pxPgDm4WjlaTVC6bZJCjWBOVc0bUHdCaiwozcpTxeff/nN6RcvYI4LG+A z1VYgPQZAZ6Tzh6SRc66GqiGAtONAiTn/ShH9KsowSvPKuBtWpF3mwHy+LPGTC9m 1hCd7tQjPRy209Zlxfkg4ge+d9oG+tWz/zwfAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUO4nZ+QzYmBF1u6JOIeM6VAxuxYIwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9PNG5aLVF6WW1CRjF1NkpPSWVNNlZBeHV4WUkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF0vrAMA0GCSqGSIb3DQEBCwUA A4IBAQCvI/AZyWUiIvX/QNkG6tGvytRizzyh4dmFQJosk52ZPACCx1LPDEkL/xk0 zPpSlCbsLlnutA7d/8EPVV0KNcUPOkbKcYM/biGWn/ADs16vQl9tM3AEWTO/O2on K1BSOgD4rmVUps5PXEuuMJzKucCwov8iYUGmW5ufOaDQj/n5OHP3OG5yklW3w7uQ pXLZS7oVcCsgs9GSry4qseKtZ8IZ/SLLtkruCt2gbmz/vbnRjO2QbK55biOjPNBg PG1884r3euRjM1aWEpwBKj5HXweWDiRaoTUcWZCOlErSK+QY2PXQSBZKH/BxlLMs 8fCGUHVwNN4sdiy0NGcq3e3OQytQ -----END CERTIFICATE-----Generated at Wed Apr 1 16:02:50 2026 by rpki-client