$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/PSjA8dD3zXqW8Br8T5fBdoqHWtA.roa File: PSjA8dD3zXqW8Br8T5fBdoqHWtA.roa (raw, json) Hash identifier: dMtH1ToxDuRJtHu2OIJotNxLDoNOhvrkQl+sDjmWO7c= Subject key identifier: 3D:28:C0:F1:D0:F7:CD:7A:96:F0:1A:FC:4F:97:C1:76:8A:87:5A:D0 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 018A Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/PSjA8dD3zXqW8Br8T5fBdoqHWtA.roa Signing time: Tue 31 Mar 2026 07:53:38 +0000 ROA not before: Tue 31 Mar 2026 07:53:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 210.158.204.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3D28C0F1D0F7CD7A96F01AFC4F97C1768A875AD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:68:73:80:01:01:ae:7b:96:1f:13:23:c2:e9: 5c:bf:5a:07:6e:fa:4b:7e:55:41:61:fc:5b:63:74: 46:01:96:47:54:27:63:c8:c1:93:46:5a:9a:df:a9: 01:1d:df:d9:90:ac:3a:6e:14:41:c1:25:a0:0a:ff: 1e:d9:8b:75:3b:2d:ad:8b:01:4f:1e:b3:ed:ed:d8: 8c:af:de:19:61:7b:80:ff:87:7e:94:11:b4:72:85: e3:48:97:53:24:0d:d6:1a:83:21:96:8e:35:d4:21: 81:78:51:f3:f8:3a:7b:63:2f:a3:03:b8:e8:61:54: eb:b7:d5:e2:d6:7d:bf:3a:ee:d3:73:f4:73:c5:a1: 8c:c6:7d:43:89:a2:2c:7e:b5:32:3f:3c:4d:22:bf: ab:ab:9d:84:c4:d7:ce:cb:c2:5b:fc:47:01:01:a6: 35:0e:f2:d2:c9:5e:87:c8:78:ad:fc:62:30:3e:9c: 5c:60:06:60:09:97:a7:bf:25:23:fc:7a:c7:80:5f: af:37:4c:06:9d:55:2c:ad:ec:ff:ae:f5:00:3d:0f: 48:fe:ad:80:84:27:2d:6b:2c:a1:76:51:b7:a1:87: 30:7a:0f:8e:60:79:84:d6:89:59:8d:f0:75:36:00: da:86:2b:24:ed:f6:3d:4c:0e:b4:cb:3f:3e:88:e2: 6c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:28:C0:F1:D0:F7:CD:7A:96:F0:1A:FC:4F:97:C1:76:8A:87:5A:D0 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/PSjA8dD3zXqW8Br8T5fBdoqHWtA.roa sbgp-ipAddrBlock: critical IPv4: 210.158.204.0/23 Signature Algorithm: sha256WithRSAEncryption 36:dc:1c:80:54:0b:84:bf:b7:61:ea:fc:32:cf:36:a0:3b:15: 5d:1e:de:66:65:45:b0:e0:51:84:f8:2e:00:e6:10:1e:2f:31: 97:6b:2a:67:2b:13:5a:1c:bd:cc:28:72:28:8f:25:c2:98:2e: 53:48:b1:50:5a:f9:51:ce:af:f6:2b:af:10:0f:88:33:49:ac: e8:28:46:c6:5b:0e:92:e1:95:44:03:63:90:e4:1b:e3:b0:cc: 6b:b7:db:51:f2:40:64:7e:92:ee:bc:05:d5:8d:96:d3:55:1a: 29:92:36:7e:4e:a2:55:8b:42:dd:42:23:93:e3:53:5c:fa:36: 0c:38:2b:dd:33:e4:4e:65:e7:0f:82:45:75:7e:42:99:82:35: 48:7c:5b:2f:96:ab:47:c5:1d:40:8a:88:90:3f:70:5e:87:1f: cb:9e:9d:6f:5b:d9:09:8a:84:af:24:f0:13:66:6b:34:6b:51: 08:ad:a8:e9:14:3f:d2:0f:55:75:b0:39:3c:df:fb:90:b2:54: fe:a4:80:e1:88:dc:8b:59:c9:23:53:8a:21:eb:c8:d7:ab:ff: 93:2b:d4:82:e3:78:0f:fa:fe:23:47:48:10:a0:e0:e2:b0:3d: 35:17:3c:02:a6:a7:0d:cc:d7:1f:27:97:03:06:78:e2:fe:f3: f5:33:9b:03 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAYowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzMzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNEMjhDMEYxRDBGN0NE N0E5NkYwMUFGQzRGOTdDMTc2OEE4NzVBRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRaHOAAQGue5YfEyPC6Vy/Wgdu+kt+VUFh/FtjdEYBlkdUJ2PI wZNGWprfqQEd39mQrDpuFEHBJaAK/x7Zi3U7La2LAU8es+3t2Iyv3hlhe4D/h36U EbRyheNIl1MkDdYagyGWjjXUIYF4UfP4OntjL6MDuOhhVOu31eLWfb867tNz9HPF oYzGfUOJoix+tTI/PE0iv6urnYTE187Lwlv8RwEBpjUO8tLJXofIeK38YjA+nFxg BmAJl6e/JSP8eseAX683TAadVSyt7P+u9QA9D0j+rYCEJy1rLKF2UbehhzB6D45g eYTWiVmN8HU2ANqGKyTt9j1MDrTLPz6I4mzdAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUPSjA8dD3zXqW8Br8T5fBdoqHWtAwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9QU2pBOGREM3pYcVc4QnI4VDVmQmRvcUhXdEEucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0p7MMA0GCSqGSIb3DQEBCwUA A4IBAQA23ByAVAuEv7dh6vwyzzagOxVdHt5mZUWw4FGE+C4A5hAeLzGXaypnKxNa HL3MKHIojyXCmC5TSLFQWvlRzq/2K68QD4gzSazoKEbGWw6S4ZVEA2OQ5BvjsMxr t9tR8kBkfpLuvAXVjZbTVRopkjZ+TqJVi0LdQiOT41Nc+jYMOCvdM+ROZecPgkV1 fkKZgjVIfFsvlqtHxR1AioiQP3Behx/Lnp1vW9kJioSvJPATZms0a1EIrajpFD/S D1V1sDk83/uQslT+pIDhiNyLWckjU4oh68jXq/+TK9SC43gP+v4jR0gQoODisD01 FzwCpqcNzNcfJ5cDBnji/vP1M5sD -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:21 2026 by rpki-client