$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/h02vnBXnq8bP7hXTpjoQdcCsQQA.roa File: h02vnBXnq8bP7hXTpjoQdcCsQQA.roa (raw, json) Hash identifier: +iJr/lnBl/2okfu9sHb0xFD+qssCyM7jmUIsE+XXJNk= Subject key identifier: 87:4D:AF:9C:15:E7:AB:C6:CF:EE:15:D3:A6:3A:10:75:C0:AC:41:00 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0140 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/h02vnBXnq8bP7hXTpjoQdcCsQQA.roa Signing time: Tue 31 Mar 2026 07:52:59 +0000 ROA not before: Tue 31 Mar 2026 07:52:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 210.152.192.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:52:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=874DAF9C15E7ABC6CFEE15D3A63A1075C0AC4100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:84:0c:03:08:dd:f6:6e:ff:a4:98:ea:fe:cf: 05:fd:a3:a1:96:bf:dd:dd:c7:68:bc:48:da:d2:30: 3f:f8:7f:24:9a:0a:23:5a:80:d3:4c:21:2e:99:f2: 29:85:e1:2c:dc:e8:28:00:0c:a8:fe:a8:d3:9c:fb: d6:f0:68:fa:64:e8:64:60:32:ed:3f:c1:6b:e8:57: 61:1c:78:51:94:c4:1f:6c:17:24:d9:3a:44:b7:78: 03:87:ef:e9:a1:f0:31:d8:e9:62:19:9f:5b:b1:49: b1:70:61:ea:17:29:49:30:53:b1:74:35:66:38:c6: 6a:8e:f8:ec:cc:2a:4e:58:5b:8e:62:e1:4d:5c:89: 98:bf:52:d2:14:c0:6a:b8:a6:01:87:4b:10:54:2e: f1:3f:8c:9e:9e:c7:10:2d:a3:48:dc:c0:e8:4e:6e: 7a:06:18:da:2a:71:c9:b6:a6:02:4b:f0:6c:7d:5e: ea:f1:0c:4a:10:25:8b:ee:14:6a:53:69:ee:92:50: bf:b7:15:e3:ee:62:e4:90:14:b6:9c:f3:c0:7a:28: 12:78:af:0a:4f:e2:64:d3:77:f2:ca:2a:aa:95:9b: b0:c5:9c:16:44:06:ce:ef:9e:57:77:f7:58:ad:63: 01:ea:e0:83:3f:21:e1:6f:3f:86:55:62:54:38:1d: 06:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4D:AF:9C:15:E7:AB:C6:CF:EE:15:D3:A6:3A:10:75:C0:AC:41:00 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/h02vnBXnq8bP7hXTpjoQdcCsQQA.roa sbgp-ipAddrBlock: critical IPv4: 210.152.192.0/21 Signature Algorithm: sha256WithRSAEncryption aa:99:28:25:27:7e:04:70:e2:33:58:7d:50:2b:22:2d:c3:84: 44:8e:74:1c:d1:98:97:68:28:e9:e4:3e:67:83:98:c0:d6:0b: 13:dd:00:36:f0:2c:1a:dc:e2:b3:d5:9c:0a:94:42:3d:85:53: ab:5d:09:3b:7d:d9:9f:57:cb:19:ee:a2:7f:fe:7c:d8:e3:0a: 6f:28:c7:1c:22:2f:a4:ff:be:ff:cb:e3:45:85:d5:b0:19:87: 18:c2:4b:90:5b:64:c2:ea:ce:3a:5f:9b:9b:e9:f9:15:86:76: 1c:f1:0a:99:0d:c7:9a:ad:4c:35:19:7e:ec:d7:50:98:19:2b: d2:07:2e:76:01:d7:4a:9f:87:05:5a:14:e4:7d:0d:d6:92:85: b2:b6:8e:18:34:94:11:18:0f:4e:b6:fd:7b:a7:c0:eb:03:0e: 69:8e:d3:c5:5b:42:b5:0d:c3:d6:cf:67:45:33:c9:8b:e1:be: 72:57:57:4c:40:a9:28:cb:a4:76:12:92:ad:ea:ae:6a:78:c8: 06:4b:d1:79:39:cd:cb:bd:af:85:5b:fb:41:bf:89:d2:bc:0c: f8:46:3e:ee:b1:af:aa:49:5a:71:bd:5a:e1:1a:19:c2:02:80: eb:40:fb:89:be:b2:58:51:70:e3:b2:83:92:30:57:e2:39:63: 9c:88:0f:fc -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUyNTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg3NERBRjlDMTVFN0FC QzZDRkVFMTVEM0E2M0ExMDc1QzBBQzQxMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCohAwDCN32bv+kmOr+zwX9o6GWv93dx2i8SNrSMD/4fySaCiNa gNNMIS6Z8imF4Szc6CgADKj+qNOc+9bwaPpk6GRgMu0/wWvoV2EceFGUxB9sFyTZ OkS3eAOH7+mh8DHY6WIZn1uxSbFwYeoXKUkwU7F0NWY4xmqO+OzMKk5YW45i4U1c iZi/UtIUwGq4pgGHSxBULvE/jJ6exxAto0jcwOhObnoGGNoqccm2pgJL8Gx9Xurx DEoQJYvuFGpTae6SUL+3FePuYuSQFLac88B6KBJ4rwpP4mTTd/LKKqqVm7DFnBZE Bs7vnld391itYwHq4IM/IeFvP4ZVYlQ4HQaZAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUh02vnBXnq8bP7hXTpjoQdcCsQQAwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9oMDJ2bkJYbnE4YlA3aFhUcGpvUWRjQ3NRUUEucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0pjAMA0GCSqGSIb3DQEBCwUA A4IBAQCqmSglJ34EcOIzWH1QKyItw4REjnQc0ZiXaCjp5D5ng5jA1gsT3QA28Cwa 3OKz1ZwKlEI9hVOrXQk7fdmfV8sZ7qJ//nzY4wpvKMccIi+k/77/y+NFhdWwGYcY wkuQW2TC6s46X5ub6fkVhnYc8QqZDcearUw1GX7s11CYGSvSBy52AddKn4cFWhTk fQ3WkoWyto4YNJQRGA9Otv17p8DrAw5pjtPFW0K1DcPWz2dFM8mL4b5yV1dMQKko y6R2EpKt6q5qeMgGS9F5Oc3Lva+FW/tBv4nSvAz4Rj7usa+qSVpxvVrhGhnCAoDr QPuJvrJYUXDjsoOSMFfiOWOciA/8 -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:22 2026 by rpki-client