$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/hPxTdiL3cepDCqdFHJnbLqN_JPE.roa File: hPxTdiL3cepDCqdFHJnbLqN_JPE.roa (raw, json) Hash identifier: Ee1T94i301lm2pghK7WsM038KhPDYC9KbYcXqTqNAsY= Subject key identifier: 84:FC:53:76:22:F7:71:EA:43:0A:A7:45:1C:99:DB:2E:A3:7F:24:F1 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0135 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/hPxTdiL3cepDCqdFHJnbLqN_JPE.roa Signing time: Tue 31 Mar 2026 07:52:54 +0000 ROA not before: Tue 31 Mar 2026 07:52:54 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.234.129.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:52:54 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=84FC537622F771EA430AA7451C99DB2EA37F24F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d1:bc:00:73:9d:fe:96:90:50:4b:ad:5b:21: b6:0d:ae:88:35:b3:a5:4d:20:6d:d6:ea:a3:bc:4e: 7e:ca:34:11:b2:a4:76:76:a3:87:ed:3a:4c:7a:95: 5d:93:48:ca:d8:24:d2:15:fe:32:77:03:07:a9:6c: 14:7b:25:b0:df:10:17:78:c9:eb:2b:5c:6e:71:8e: b5:68:3a:c4:86:44:0c:65:88:12:85:e5:e2:29:d8: 11:67:61:ca:b7:0b:82:95:13:2b:3d:43:8d:24:3a: ea:1d:31:c0:20:0c:ea:12:67:17:12:c1:b6:e2:a5: f1:36:23:ce:0e:26:b9:22:5f:f4:7c:3e:b2:97:03: 56:f2:ab:1f:1d:65:08:0f:17:ee:7c:b5:fc:69:c2: 66:8f:c4:cf:25:8c:6d:e6:f0:63:5c:f1:c9:c3:fc: 16:01:46:b7:c3:fa:79:d8:a2:df:9d:cf:dd:91:54: 24:4f:1c:d5:4b:78:35:b1:4c:19:c2:4c:9d:1e:9d: f9:48:ad:d3:8c:cb:4d:a1:36:ad:0b:b0:68:b2:66: 41:94:8e:6a:7b:d9:c2:e6:6e:50:59:39:6c:c2:b2: eb:28:5d:29:4b:52:64:95:ab:24:e9:b2:e0:09:84: 99:58:d9:63:f5:b0:01:98:2f:8b:9b:5b:0d:5a:bf: 42:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FC:53:76:22:F7:71:EA:43:0A:A7:45:1C:99:DB:2E:A3:7F:24:F1 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/hPxTdiL3cepDCqdFHJnbLqN_JPE.roa sbgp-ipAddrBlock: critical IPv4: 202.234.129.0/24 Signature Algorithm: sha256WithRSAEncryption 44:8f:81:70:92:b6:8f:9b:8c:fa:fc:41:96:03:3a:e4:31:3f: 79:8b:8b:ab:f9:71:be:e1:45:65:35:89:49:d6:89:20:06:07: be:be:df:9d:50:b0:a3:ec:cf:42:80:cb:83:ef:5e:72:96:3a: b9:57:29:07:04:69:bd:a9:50:b8:a2:2c:c1:53:58:6c:49:74: 2a:5b:83:54:13:54:76:39:18:d0:0b:18:49:0b:d3:2e:83:01: 2c:06:e3:fc:18:45:d3:24:45:46:40:62:6f:32:20:5c:0f:fc: be:c1:8d:8f:6d:27:3a:93:0d:75:f7:d2:bd:62:20:9a:99:97: fa:de:cf:f7:88:02:6a:32:d6:c5:73:20:3d:7c:41:a9:be:6c: 03:de:54:58:a9:f3:58:b3:f7:9d:5e:c4:0c:36:f7:ab:8e:6f: b9:79:0b:76:9d:5b:7d:af:a8:48:f0:9a:97:f8:0a:d9:44:a9: 0b:96:8c:94:91:3b:02:f1:9d:f3:5a:2c:96:60:9e:aa:cc:77: 33:fd:a9:54:47:14:77:eb:26:a4:9d:e2:d1:c7:90:d6:eb:89: 52:29:56:28:09:69:fe:e9:f4:d5:5f:06:d0:a6:86:84:51:8c: 8f:c6:73:89:d2:ba:7a:d5:03:c5:38:05:d5:48:73:3c:23:60: b4:9f:8f:f7 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUyNTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg0RkM1Mzc2MjJGNzcx RUE0MzBBQTc0NTFDOTlEQjJFQTM3RjI0RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo0bwAc53+lpBQS61bIbYNrog1s6VNIG3W6qO8Tn7KNBGypHZ2 o4ftOkx6lV2TSMrYJNIV/jJ3AwepbBR7JbDfEBd4yesrXG5xjrVoOsSGRAxliBKF 5eIp2BFnYcq3C4KVEys9Q40kOuodMcAgDOoSZxcSwbbipfE2I84OJrkiX/R8PrKX A1byqx8dZQgPF+58tfxpwmaPxM8ljG3m8GNc8cnD/BYBRrfD+nnYot+dz92RVCRP HNVLeDWxTBnCTJ0enflIrdOMy02hNq0LsGiyZkGUjmp72cLmblBZOWzCsusoXSlL UmSVqyTpsuAJhJlY2WP1sAGYL4ubWw1av0LlAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUhPxTdiL3cepDCqdFHJnbLqN/JPEwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9oUHhUZGlMM2NlcERDcWRGSEpuYkxxTl9KUEUucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyuqBMA0GCSqGSIb3DQEBCwUA A4IBAQBEj4FwkraPm4z6/EGWAzrkMT95i4ur+XG+4UVlNYlJ1okgBge+vt+dULCj 7M9CgMuD715yljq5VykHBGm9qVC4oizBU1hsSXQqW4NUE1R2ORjQCxhJC9MugwEs BuP8GEXTJEVGQGJvMiBcD/y+wY2PbSc6kw1199K9YiCamZf63s/3iAJqMtbFcyA9 fEGpvmwD3lRYqfNYs/edXsQMNverjm+5eQt2nVt9r6hI8JqX+ArZRKkLloyUkTsC 8Z3zWiyWYJ6qzHcz/alURxR36yakneLRx5DW64lSKVYoCWn+6fTVXwbQpoaEUYyP xnOJ0rp61QPFOAXVSHM8I2C0n4/3 -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:21 2026 by rpki-client