$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TWuB-rVEHbHHw39mOaVJW4pYcPU.roa File: TWuB-rVEHbHHw39mOaVJW4pYcPU.roa (raw, json) Hash identifier: oReUqLYy18ToGRQ5hcCO3oulezm91O7Q5lBz7jfWfgk= Subject key identifier: 4D:6B:81:FA:B5:44:1D:B1:C7:C3:7F:66:39:A5:49:5B:8A:58:70:F5 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01AF Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TWuB-rVEHbHHw39mOaVJW4pYcPU.roa Signing time: Tue 31 Mar 2026 07:53:53 +0000 ROA not before: Tue 31 Mar 2026 07:53:53 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 210.252.104.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:53 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4D6B81FAB5441DB1C7C37F6639A5495B8A5870F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:89:a2:f9:41:17:06:58:06:46:62:63:0d:01: 07:0c:d3:99:8a:73:cf:71:0f:e0:70:dc:99:1a:e9: d9:6f:1c:34:23:5d:5d:c6:8c:29:e3:7f:73:84:13: c8:7b:7d:cc:8f:01:31:25:3d:87:0e:0b:f5:15:5a: 35:73:b0:81:47:d7:e3:0f:2b:65:7f:3f:e4:bc:e6: cf:79:ee:1e:5b:04:d8:1d:2d:29:01:0b:f9:19:49: 57:93:88:31:b8:cf:72:f3:4a:f1:7a:ce:6d:50:c5: 0e:88:81:68:95:2c:d6:45:e8:23:11:e9:d7:d1:ed: e4:27:71:d7:b0:03:fe:2d:e9:76:a1:58:4a:9e:e4: 3e:07:1c:ca:10:01:75:e3:b2:f7:ea:87:e5:55:13: ae:6b:f5:39:49:e9:60:98:fc:a4:61:b2:d5:c4:71: e6:8e:38:c0:69:f0:21:09:d5:b8:9a:87:b5:b4:43: 47:b4:a5:e2:1d:39:64:8a:ec:9f:cb:3b:c2:bb:2b: 95:8a:63:42:e4:76:49:0f:3e:d8:bf:d3:fb:f1:77: 7b:c8:67:97:26:b6:ff:95:23:32:b0:49:a8:50:17: 70:22:aa:a1:8d:1f:02:49:0f:d0:15:4e:22:bb:87: f7:2b:ad:f0:18:5a:ab:2b:d4:b6:4c:df:29:c8:e4: ee:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6B:81:FA:B5:44:1D:B1:C7:C3:7F:66:39:A5:49:5B:8A:58:70:F5 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TWuB-rVEHbHHw39mOaVJW4pYcPU.roa sbgp-ipAddrBlock: critical IPv4: 210.252.104.0/21 Signature Algorithm: sha256WithRSAEncryption 58:54:43:26:89:22:7f:18:fb:1a:7c:80:14:75:5e:a9:56:01: 8f:a5:7c:3d:68:28:c9:1b:b9:aa:82:e7:f7:8e:68:e6:46:9d: b8:a2:6a:34:49:2d:7d:a3:ea:96:48:f9:92:29:23:4d:25:79: 66:01:ca:69:5f:f6:d7:2e:87:9f:ac:6e:d1:eb:a1:b0:09:43: 20:1f:c2:1d:bb:01:35:54:a8:95:7b:02:7c:58:83:5d:87:1e: 71:d9:05:a7:43:0d:8b:a9:ee:d6:66:8a:b4:98:24:b0:be:c6: c8:fb:12:d9:2b:47:4c:45:8f:13:c3:3a:4a:65:a1:40:d9:8d: d2:cc:ee:e7:82:b8:75:2c:bd:f7:93:fa:e4:2a:11:95:3f:e5: 12:a6:4e:aa:b9:81:13:48:d2:0b:f7:25:7f:c7:5f:e7:0b:bd: 1f:fa:a0:99:23:1d:7e:7a:81:1c:41:38:da:df:67:54:5b:98: a9:9e:5c:18:35:1d:3d:99:74:45:45:82:c4:59:3c:58:58:f4: 1e:04:00:10:1b:e2:a7:74:41:3b:72:24:66:48:69:17:54:de: b6:9a:7b:cf:1e:57:45:0d:96:54:50:1b:0b:3e:13:f1:99:43: 26:ce:60:ec:de:aa:5c:9c:2e:fb:8e:9c:2f:01:54:ab:61:53: 18:83:f0:19 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzNTNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRENkI4MUZBQjU0NDFE QjFDN0MzN0Y2NjM5QTU0OTVCOEE1ODcwRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDliaL5QRcGWAZGYmMNAQcM05mKc89xD+Bw3Jka6dlvHDQjXV3G jCnjf3OEE8h7fcyPATElPYcOC/UVWjVzsIFH1+MPK2V/P+S85s957h5bBNgdLSkB C/kZSVeTiDG4z3LzSvF6zm1QxQ6IgWiVLNZF6CMR6dfR7eQncdewA/4t6XahWEqe 5D4HHMoQAXXjsvfqh+VVE65r9TlJ6WCY/KRhstXEceaOOMBp8CEJ1biah7W0Q0e0 peIdOWSK7J/LO8K7K5WKY0LkdkkPPti/0/vxd3vIZ5cmtv+VIzKwSahQF3AiqqGN HwJJD9AVTiK7h/crrfAYWqsr1LZM3ynI5O55AgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUTWuB+rVEHbHHw39mOaVJW4pYcPUwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9UV3VCLXJWRUhiSEh3MzltT2FWSlc0cFljUFUucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0vxoMA0GCSqGSIb3DQEBCwUA A4IBAQBYVEMmiSJ/GPsafIAUdV6pVgGPpXw9aCjJG7mqguf3jmjmRp24omo0SS19 o+qWSPmSKSNNJXlmAcppX/bXLoefrG7R66GwCUMgH8IduwE1VKiVewJ8WINdhx5x 2QWnQw2Lqe7WZoq0mCSwvsbI+xLZK0dMRY8TwzpKZaFA2Y3SzO7ngrh1LL33k/rk KhGVP+USpk6quYETSNIL9yV/x1/nC70f+qCZIx1+eoEcQTja32dUW5ipnlwYNR09 mXRFRYLEWTxYWPQeBAAQG+KndEE7ciRmSGkXVN62mnvPHldFDZZUUBsLPhPxmUMm zmDs3qpcnC77jpwvAVSrYVMYg/AZ -----END CERTIFICATE-----Generated at Wed Apr 1 15:59:13 2026 by rpki-client