$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/UEFoWgZADuJkFkP6XCjwcQlXkmc.roa File: UEFoWgZADuJkFkP6XCjwcQlXkmc.roa (raw, json) Hash identifier: gI4NyqlrS6r8CUGyZhr8I9znQ/1NlNPnoSQ/IxE9Uig= Subject key identifier: 50:41:68:5A:06:40:0E:E2:64:16:43:FA:5C:28:F0:71:09:57:92:67 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01B5 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/UEFoWgZADuJkFkP6XCjwcQlXkmc.roa Signing time: Tue 31 Mar 2026 07:53:56 +0000 ROA not before: Tue 31 Mar 2026 07:53:56 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 211.2.208.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:56 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5041685A06400EE2641643FA5C28F07109579267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:01:a1:da:e5:de:a5:b0:b0:cc:d5:3f:d3:0a: 82:9c:fe:f6:70:4c:7b:2b:c9:b8:dd:b0:3f:ae:2a: 74:47:9f:b4:88:19:a8:cd:16:01:45:b9:4f:97:7b: 39:1c:e2:61:57:d4:85:97:b0:e1:26:4b:99:a7:80: 59:8f:b1:ac:27:0d:f9:a5:7f:9a:eb:5d:49:69:39: a3:43:0d:fe:34:38:fb:fe:ef:d9:80:90:77:c7:10: cf:d8:b4:30:4d:9f:bf:58:fc:07:89:f2:f1:31:2f: ef:df:27:3a:1a:7f:4a:8c:7e:da:6b:94:08:37:c3: 37:a7:35:b1:23:90:67:be:b4:7a:89:73:15:02:f5: 5d:05:37:82:61:35:86:4a:9a:85:c0:5c:ce:7b:f4: fe:e2:e8:3d:3b:f4:80:f3:a7:5f:3a:d0:f4:d1:52: 9f:44:b5:4f:c3:a1:b8:76:de:85:f6:60:45:ad:30: 0b:04:46:50:c7:3a:4e:51:33:f3:79:b4:f2:a7:80: a7:f8:c8:84:44:f2:81:1c:fc:2e:f2:75:0c:37:48: d0:42:a3:3e:cc:9d:02:d2:c0:f1:84:2d:9d:7e:4b: a1:50:85:4b:fd:a6:b1:29:52:e6:d7:f4:aa:c3:1a: 2f:6f:c5:e5:e2:3e:2f:bd:3c:a1:2f:0b:9e:61:88: 90:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:41:68:5A:06:40:0E:E2:64:16:43:FA:5C:28:F0:71:09:57:92:67 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/UEFoWgZADuJkFkP6XCjwcQlXkmc.roa sbgp-ipAddrBlock: critical IPv4: 211.2.208.0/20 Signature Algorithm: sha256WithRSAEncryption 9a:ca:b2:db:96:d6:be:a1:16:7a:66:0d:4d:2b:69:de:5d:9a: 13:05:95:72:b4:dc:6b:23:e2:06:2e:0d:8d:01:3a:86:62:fb: f6:de:4a:a9:a6:02:96:51:f8:91:39:1a:a4:05:04:27:65:65: cb:ed:22:85:b9:ad:39:ec:b9:63:c5:6c:aa:ea:3f:77:d3:a7: 27:71:95:b9:25:d3:fe:89:a5:4b:56:ac:56:d8:4f:0a:e0:f9: f7:ae:6a:25:5f:6f:05:5d:90:e5:d8:81:c4:ab:8d:0a:7d:d0: cd:f3:ba:41:9b:63:2b:06:d6:16:d9:72:3b:f7:8c:71:c6:8b: a7:32:b1:48:f0:cd:34:e2:a9:d6:51:4d:82:fa:45:fa:be:16: 4b:58:03:06:e5:8e:cc:6f:f8:ad:b1:f9:87:18:13:fc:3c:11: a7:eb:6f:9a:1d:86:bc:6e:8d:1a:cb:18:75:2c:a3:d9:45:fc: 1f:a4:6a:39:ee:e8:6f:3d:aa:b7:93:32:c4:fc:cc:82:d9:d5: 3a:3c:a2:49:b6:53:4c:b7:1a:02:ce:43:fa:2e:a7:31:44:d0: 18:f3:bf:fa:22:d2:4c:32:d9:b3:8a:15:4d:32:7e:31:87:ce: 3f:02:a8:66:57:48:a4:26:f5:02:11:82:31:cc:d7:d3:8c:ca: 3a:63:fd:e5 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzNTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUwNDE2ODVBMDY0MDBF RTI2NDE2NDNGQTVDMjhGMDcxMDk1NzkyNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtAaHa5d6lsLDM1T/TCoKc/vZwTHsrybjdsD+uKnRHn7SIGajN FgFFuU+Xezkc4mFX1IWXsOEmS5mngFmPsawnDfmlf5rrXUlpOaNDDf40OPv+79mA kHfHEM/YtDBNn79Y/AeJ8vExL+/fJzoaf0qMftprlAg3wzenNbEjkGe+tHqJcxUC 9V0FN4JhNYZKmoXAXM579P7i6D079IDzp1860PTRUp9EtU/Dobh23oX2YEWtMAsE RlDHOk5RM/N5tPKngKf4yIRE8oEc/C7ydQw3SNBCoz7MnQLSwPGELZ1+S6FQhUv9 prEpUubX9KrDGi9vxeXiPi+9PKEvC55hiJC3AgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUUEFoWgZADuJkFkP6XCjwcQlXkmcwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9VRUZvV2daQUR1SmtGa1A2WENqd2NRbFhrbWMucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0wLQMA0GCSqGSIb3DQEBCwUA A4IBAQCayrLblta+oRZ6Zg1NK2neXZoTBZVytNxrI+IGLg2NATqGYvv23kqppgKW UfiRORqkBQQnZWXL7SKFua057LljxWyq6j9306cncZW5JdP+iaVLVqxW2E8K4Pn3 rmolX28FXZDl2IHEq40KfdDN87pBm2MrBtYW2XI794xxxounMrFI8M004qnWUU2C +kX6vhZLWAMG5Y7Mb/itsfmHGBP8PBGn62+aHYa8bo0ayxh1LKPZRfwfpGo57uhv Paq3kzLE/MyC2dU6PKJJtlNMtxoCzkP6LqcxRNAY87/6ItJMMtmzihVNMn4xh84/ AqhmV0ikJvUCEYIxzNfTjMo6Y/3l -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:27 2026 by rpki-client