$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TU-7IlPNbEOMh0BNhjuMoIV2008.roa File: TU-7IlPNbEOMh0BNhjuMoIV2008.roa (raw, json) Hash identifier: p409LeBWHvxLyYGZ/pI6BgjwynWw8WPKK/A5GUWNQ5o= Subject key identifier: 4D:4F:BB:22:53:CD:6C:43:8C:87:40:4D:86:3B:8C:A0:85:76:D3:4F Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01B1 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TU-7IlPNbEOMh0BNhjuMoIV2008.roa Signing time: Tue 31 Mar 2026 07:53:54 +0000 ROA not before: Tue 31 Mar 2026 07:53:54 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 211.2.192.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:54 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4D4FBB2253CD6C438C87404D863B8CA08576D34F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:86:31:17:1d:26:cb:48:ad:2f:ea:a4:c7:80: 43:25:35:55:e8:5c:27:a9:70:d6:1c:08:19:ba:e0: f2:bf:f6:a4:7f:d9:cb:17:b8:89:0a:bc:54:a4:e3: d6:02:d0:90:fb:b9:25:d6:19:b8:ab:1e:f1:ae:9f: 67:e3:08:c1:13:90:bd:f7:5e:b7:c8:2b:f9:72:79: a1:33:43:78:44:c8:1d:21:86:45:a5:11:44:f8:d9: 5a:cc:ca:33:29:33:12:71:38:43:c3:f5:13:05:fb: 97:05:a8:ca:51:1a:f3:0e:ee:74:9f:4e:07:1d:74: 9b:7e:cb:3c:e6:41:18:83:f1:9f:f8:89:f1:2a:7a: af:be:9c:b1:ef:df:78:72:c2:67:22:57:35:50:b7: 2f:e8:78:9c:ed:85:5b:e8:f4:0c:ac:28:91:61:15: c8:77:33:3c:9c:f6:6f:b6:a1:9c:f6:aa:75:32:d8: 94:00:56:83:05:1f:cc:08:b3:bb:5b:d8:85:15:e0: a9:21:61:46:c4:d4:4a:7b:2f:b5:30:f2:51:2a:b2: ab:af:74:1c:45:33:e0:5f:45:bf:b6:a6:e0:ff:89: ec:93:2d:de:e9:87:70:dd:57:55:da:46:2d:c6:48: 5f:bd:b6:2c:83:18:c3:f1:37:7b:cb:55:97:63:12: 51:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4F:BB:22:53:CD:6C:43:8C:87:40:4D:86:3B:8C:A0:85:76:D3:4F X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TU-7IlPNbEOMh0BNhjuMoIV2008.roa sbgp-ipAddrBlock: critical IPv4: 211.2.192.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:5b:31:0c:f6:19:6d:68:d3:18:0d:a6:e1:42:96:0b:35:13: 96:03:7c:6e:9c:ec:6f:b2:9f:c2:2c:a1:57:52:80:5a:25:7e: 43:69:e7:6e:f6:cd:c3:51:cf:6e:91:50:84:e0:25:bc:11:39: 73:39:24:68:35:5f:c6:2e:b9:e7:64:e1:5b:86:28:3d:93:f5: 1e:47:da:d6:46:6d:e2:8e:67:2a:74:67:d8:ba:f8:f0:2c:ca: 3f:f0:94:19:a9:39:4d:66:c5:2c:bc:36:22:02:4c:bd:24:8c: 71:c8:ef:fe:07:2b:f6:1c:f3:89:c9:54:a8:7c:6c:6e:8e:0d: f2:ef:ce:95:60:b2:a0:f9:ca:4d:13:f6:2a:1d:cf:34:81:08: f8:09:98:fe:87:c1:bd:f7:2e:47:ed:9f:20:ee:65:6a:e0:2b: 16:d9:51:7b:a8:d3:d5:3d:5d:ae:3f:e1:62:b5:56:74:c9:fa: ed:b7:70:bb:3b:5e:2e:9a:22:72:92:ad:0a:d1:05:2e:fe:5d: 51:3a:dc:78:89:da:3c:f4:e2:85:9c:fa:35:fb:a6:9e:37:c5: d4:2f:5b:0e:fc:df:b1:cb:9c:0b:7d:3c:66:7d:0f:9f:3c:ab: d4:5d:70:e4:88:6c:c7:77:32:22:6b:cb:ec:f1:87:1c:e8:84: cd:18:96:1d -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzNTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRENEZCQjIyNTNDRDZD NDM4Qzg3NDA0RDg2M0I4Q0EwODU3NkQzNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvhjEXHSbLSK0v6qTHgEMlNVXoXCepcNYcCBm64PK/9qR/2csX uIkKvFSk49YC0JD7uSXWGbirHvGun2fjCMETkL33XrfIK/lyeaEzQ3hEyB0hhkWl EUT42VrMyjMpMxJxOEPD9RMF+5cFqMpRGvMO7nSfTgcddJt+yzzmQRiD8Z/4ifEq eq++nLHv33hywmciVzVQty/oeJzthVvo9AysKJFhFch3Mzyc9m+2oZz2qnUy2JQA VoMFH8wIs7tb2IUV4KkhYUbE1Ep7L7Uw8lEqsquvdBxFM+BfRb+2puD/ieyTLd7p h3DdV1XaRi3GSF+9tiyDGMPxN3vLVZdjElHvAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUTU+7IlPNbEOMh0BNhjuMoIV2008wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9UVS03SWxQTmJFT01oMEJOaGp1TW9JVjIwMDgucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0wLAMA0GCSqGSIb3DQEBCwUA A4IBAQBuWzEM9hltaNMYDabhQpYLNROWA3xunOxvsp/CLKFXUoBaJX5Daedu9s3D Uc9ukVCE4CW8ETlzOSRoNV/GLrnnZOFbhig9k/UeR9rWRm3ijmcqdGfYuvjwLMo/ 8JQZqTlNZsUsvDYiAky9JIxxyO/+Byv2HPOJyVSofGxujg3y786VYLKg+cpNE/Yq Hc80gQj4CZj+h8G99y5H7Z8g7mVq4CsW2VF7qNPVPV2uP+FitVZ0yfrtt3C7O14u miJykq0K0QUu/l1ROtx4ido89OKFnPo1+6aeN8XUL1sO/N+xy5wLfTxmfQ+fPKvU XXDkiGzHdzIia8vs8Ycc6ITNGJYd -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:22 2026 by rpki-client