$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/ggQgP7Ki9Cb6DXiDTRz3Y9Efx9s.roa File: ggQgP7Ki9Cb6DXiDTRz3Y9Efx9s.roa (raw, json) Hash identifier: 4dU/Au3c6eMgG6vqi/5qWHMpfaN0RzfQJcO1W2vMUn8= Subject key identifier: 82:04:20:3F:B2:A2:F4:26:FA:0D:78:83:4D:1C:F7:63:D1:1F:C7:DB Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0169 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/ggQgP7Ki9Cb6DXiDTRz3Y9Efx9s.roa Signing time: Tue 31 Mar 2026 07:53:22 +0000 ROA not before: Tue 31 Mar 2026 07:53:22 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 203.183.152.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:22 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8204203FB2A2F426FA0D78834D1CF763D11FC7DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:40:69:8d:9f:98:a0:9a:96:8e:54:d3:e1:70: 12:d0:0a:0d:ac:54:52:90:ca:d5:5a:89:3b:23:4d: cc:54:d0:4f:7d:61:f6:50:55:29:b2:e7:d0:e8:1a: 5c:ff:e3:55:47:5a:e6:68:07:07:c4:6d:ee:98:10: 59:0c:cf:ea:ce:94:d3:9c:3b:cd:92:19:4b:5d:9b: 5f:ef:e4:54:28:54:3a:24:4f:73:cc:dd:7c:e5:be: 7e:62:5e:4a:c2:5a:8f:71:ed:cc:f4:85:98:9c:c1: 74:ef:f7:c0:8d:fc:f0:2a:48:c7:81:ed:38:81:47: 87:73:eb:79:45:e9:aa:3d:81:64:bd:80:d8:4f:c4: b2:e8:bd:ee:cd:d8:a1:08:3f:77:1d:50:fe:85:30: ff:d5:a2:6f:05:dc:35:d9:33:12:26:cc:de:43:01: 23:78:20:fe:00:3d:e3:7e:23:cd:a0:cd:97:2d:43: b6:64:70:d4:13:fb:a3:f5:f3:75:e8:30:16:cc:7d: c0:78:56:67:11:cb:57:b5:4f:14:30:66:1d:40:6c: c9:02:34:63:15:81:86:3c:c2:b0:e3:46:05:af:ea: 27:50:43:e9:46:77:07:7f:d1:06:50:46:71:6b:b1: e7:7f:d2:b3:90:c1:77:2a:1e:66:c1:01:63:52:2a: 2f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:04:20:3F:B2:A2:F4:26:FA:0D:78:83:4D:1C:F7:63:D1:1F:C7:DB X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/ggQgP7Ki9Cb6DXiDTRz3Y9Efx9s.roa sbgp-ipAddrBlock: critical IPv4: 203.183.152.0/24 Signature Algorithm: sha256WithRSAEncryption 03:cc:4d:c1:cb:ca:47:b8:8e:bf:d2:61:05:e5:31:56:ec:a8: b2:94:3b:c7:64:68:cd:f6:72:09:47:3e:a1:04:89:67:95:77: 99:7d:03:5e:c6:f6:61:7a:56:d4:fc:12:7e:41:ff:19:b8:8d: ec:54:11:a3:54:76:7d:1c:e6:94:e1:2b:33:98:da:5f:93:a5: a5:de:f0:2a:b7:e3:94:3c:0a:32:48:9b:fb:1a:73:0b:a8:9f: 96:73:53:c3:89:f6:9d:fd:6e:4d:2f:59:96:b3:51:38:3d:87: 38:70:02:68:02:e6:1d:8d:59:11:d8:ee:fb:35:64:58:db:db: 76:d8:0b:ec:48:3a:7f:9a:85:40:5d:eb:fb:fc:74:06:54:ad: 38:c2:5a:af:a7:78:d9:82:1a:f1:76:cb:d1:34:bd:98:bc:50: a2:3d:7e:7f:eb:34:e2:4c:da:5f:df:86:c4:08:fb:12:48:39: b0:6d:91:e8:2a:56:20:b2:2a:dd:bc:a6:50:51:0f:a7:4f:f9: 61:af:da:89:c4:6e:2d:9a:24:81:c9:71:6a:8a:b4:91:77:ce: cc:42:ef:93:89:dc:85:27:0f:bd:3d:35:30:62:a7:85:1c:f1: 6e:19:07:17:d6:5f:eb:0c:ed:61:e5:35:68:ca:b8:ad:53:01: 35:a8:b5:d0 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzMjJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDgyMDQyMDNGQjJBMkY0 MjZGQTBENzg4MzREMUNGNzYzRDExRkM3REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3QGmNn5igmpaOVNPhcBLQCg2sVFKQytVaiTsjTcxU0E99YfZQ VSmy59DoGlz/41VHWuZoBwfEbe6YEFkMz+rOlNOcO82SGUtdm1/v5FQoVDokT3PM 3Xzlvn5iXkrCWo9x7cz0hZicwXTv98CN/PAqSMeB7TiBR4dz63lF6ao9gWS9gNhP xLLove7N2KEIP3cdUP6FMP/Vom8F3DXZMxImzN5DASN4IP4APeN+I82gzZctQ7Zk cNQT+6P183XoMBbMfcB4VmcRy1e1TxQwZh1AbMkCNGMVgYY8wrDjRgWv6idQQ+lG dwd/0QZQRnFrsed/0rOQwXcqHmbBAWNSKi8ZAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUggQgP7Ki9Cb6DXiDTRz3Y9Efx9swHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9nZ1FnUDdLaTlDYjZEWGlEVFJ6M1k5RWZ4OXMucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy7eYMA0GCSqGSIb3DQEBCwUA A4IBAQADzE3By8pHuI6/0mEF5TFW7KiylDvHZGjN9nIJRz6hBIlnlXeZfQNexvZh elbU/BJ+Qf8ZuI3sVBGjVHZ9HOaU4SszmNpfk6Wl3vAqt+OUPAoySJv7GnMLqJ+W c1PDifad/W5NL1mWs1E4PYc4cAJoAuYdjVkR2O77NWRY29t22AvsSDp/moVAXev7 /HQGVK04wlqvp3jZghrxdsvRNL2YvFCiPX5/6zTiTNpf34bECPsSSDmwbZHoKlYg sirdvKZQUQ+nT/lhr9qJxG4tmiSByXFqirSRd87MQu+TidyFJw+9PTUwYqeFHPFu GQcX1l/rDO1h5TVoyritUwE1qLXQ -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:26 2026 by rpki-client