$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/SxtKVR3i1gpYu3ItXIKDyQul_Yg.roa File: SxtKVR3i1gpYu3ItXIKDyQul_Yg.roa (raw, json) Hash identifier: z6mXO2OzaQDXOay3xEWioHLvdYufXG8GzZRLEmqXQiw= Subject key identifier: 4B:1B:4A:55:1D:E2:D6:0A:58:BB:72:2D:5C:82:83:C9:0B:A5:FD:88 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01C8 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/SxtKVR3i1gpYu3ItXIKDyQul_Yg.roa Signing time: Tue 31 Mar 2026 07:54:07 +0000 ROA not before: Tue 31 Mar 2026 07:54:07 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 61.203.176.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:54:07 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4B1B4A551DE2D60A58BB722D5C8283C90BA5FD88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:59:d3:57:c0:77:3e:9f:cb:6f:53:d6:dc: bc:d5:5c:dd:b8:8d:0d:16:b7:55:71:a5:5b:7c:59: db:44:1e:ff:85:95:a4:81:5c:12:31:b0:7c:ef:21: f4:20:6d:01:17:d1:18:94:c8:6f:73:07:5d:f2:34: 46:32:ec:62:a9:0a:0f:81:87:12:ac:78:0d:fc:1a: 05:c7:aa:93:a4:22:94:7c:6d:c9:5d:6b:8a:3a:cf: ee:72:7d:2d:a3:90:b2:6c:e8:34:2c:5c:89:47:35: 61:e3:17:83:de:b0:fd:0b:3c:62:e0:4c:bd:70:08: e1:6a:e7:be:44:9a:15:0d:65:ba:65:12:a7:62:fe: d6:b7:5d:4c:d3:ab:c9:7b:92:32:63:a5:f0:ae:21: 18:5d:b6:51:71:4f:e3:47:9a:20:26:a6:c6:70:9d: fa:53:4f:bd:17:06:03:0a:4a:92:5d:88:4f:76:de: 14:b5:3c:92:bd:b8:ad:02:fc:19:ca:0e:b4:fa:d4: d6:94:30:f8:7e:f7:00:b0:70:f6:e1:23:99:10:ae: 5a:fa:7c:03:5d:d2:3b:03:bf:da:ad:9d:75:f3:b0: 36:09:2e:55:e5:27:a7:8a:81:54:94:43:21:2d:76: 9c:91:6d:71:23:a3:99:36:6e:c8:e7:4c:5a:2f:fa: 98:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1B:4A:55:1D:E2:D6:0A:58:BB:72:2D:5C:82:83:C9:0B:A5:FD:88 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/SxtKVR3i1gpYu3ItXIKDyQul_Yg.roa sbgp-ipAddrBlock: critical IPv4: 61.203.176.0/20 Signature Algorithm: sha256WithRSAEncryption 32:a2:ea:23:10:65:5c:b8:a7:04:e3:09:15:54:5b:37:a1:31: 7f:21:db:b1:38:11:1c:ae:ab:9c:6e:75:d0:dc:9b:f6:a5:37: 3e:5b:c9:5c:28:ec:d8:8c:f4:3e:62:d3:70:73:b2:79:5c:53: 42:a2:83:72:72:ce:3b:fb:20:62:51:7e:e7:89:c7:00:17:67: 2f:2b:ff:d7:75:7c:7a:a7:2e:50:81:51:84:2e:d9:d8:d4:63: 49:7e:f4:13:4f:86:ac:96:0c:24:30:a7:c8:df:0f:30:cf:16: 28:97:1e:74:28:d1:66:b6:ad:32:dc:bf:40:5d:75:82:27:7e: 9c:20:85:04:5d:88:ff:7d:fb:e5:40:46:f9:0a:d4:ef:d0:23: a1:90:37:2c:0d:37:97:8c:28:ca:29:38:89:da:b9:61:3a:61: 32:19:98:22:2f:64:aa:65:2d:3d:27:6a:af:50:24:94:d1:33: f3:18:4d:36:81:b0:43:bb:e9:78:3b:36:fb:f3:90:d4:b4:52: ef:96:b3:92:84:00:83:4f:30:be:15:1e:e3:73:d3:db:bd:9a: 7e:54:e9:65:99:82:71:ce:ab:a6:60:78:5c:b2:fc:80:39:63: ec:2d:e3:cf:3b:49:c4:c9:10:41:6e:b3:91:fc:e0:3c:db:4b: 18:49:5a:63 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzU0MDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRCMUI0QTU1MURFMkQ2 MEE1OEJCNzIyRDVDODI4M0M5MEJBNUZEODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8qlnTV8B3Pp/Lb1PW3LzVXN24jQ0Wt1VxpVt8WdtEHv+FlaSB XBIxsHzvIfQgbQEX0RiUyG9zB13yNEYy7GKpCg+BhxKseA38GgXHqpOkIpR8bcld a4o6z+5yfS2jkLJs6DQsXIlHNWHjF4PesP0LPGLgTL1wCOFq575EmhUNZbplEqdi /ta3XUzTq8l7kjJjpfCuIRhdtlFxT+NHmiAmpsZwnfpTT70XBgMKSpJdiE923hS1 PJK9uK0C/BnKDrT61NaUMPh+9wCwcPbhI5kQrlr6fANd0jsDv9qtnXXzsDYJLlXl J6eKgVSUQyEtdpyRbXEjo5k2bsjnTFov+phtAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUSxtKVR3i1gpYu3ItXIKDyQul/YgwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9TeHRLVlIzaTFncFl1M0l0WElLRHlRdWxfWWcucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPcuwMA0GCSqGSIb3DQEBCwUA A4IBAQAyouojEGVcuKcE4wkVVFs3oTF/IduxOBEcrqucbnXQ3Jv2pTc+W8lcKOzY jPQ+YtNwc7J5XFNCooNycs47+yBiUX7niccAF2cvK//XdXx6py5QgVGELtnY1GNJ fvQTT4aslgwkMKfI3w8wzxYolx50KNFmtq0y3L9AXXWCJ36cIIUEXYj/ffvlQEb5 CtTv0COhkDcsDTeXjCjKKTiJ2rlhOmEyGZgiL2SqZS09J2qvUCSU0TPzGE02gbBD u+l4Ozb785DUtFLvlrOShACDTzC+FR7jc9PbvZp+VOllmYJxzqumYHhcsvyAOWPs LePPO0nEyRBBbrOR/OA820sYSVpj -----END CERTIFICATE-----Generated at Wed Apr 1 15:57:38 2026 by rpki-client