$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/hez3GN2WrgQee6ZA4mhjBGBH-8g.roa File: hez3GN2WrgQee6ZA4mhjBGBH-8g.roa (raw, json) Hash identifier: dCtHN4jO5/QYDMt5WX2so66lBX8U0UBfPfy6YimXoXU= Subject key identifier: 85:EC:F7:18:DD:96:AE:04:1E:7B:A6:40:E2:68:63:04:60:47:FB:C8 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 013A Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/hez3GN2WrgQee6ZA4mhjBGBH-8g.roa Signing time: Tue 31 Mar 2026 07:52:56 +0000 ROA not before: Tue 31 Mar 2026 07:52:56 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.234.144.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:52:56 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=85ECF718DD96AE041E7BA640E26863046047FBC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:a0:9d:c8:95:c6:06:5a:a3:93:3e:90:e0: 35:51:35:60:66:c2:bf:e2:23:6a:bb:35:fc:d7:8f: 2c:0e:37:ff:f3:3a:be:ca:bb:9b:99:da:12:b1:50: 3f:89:5f:55:5b:58:18:f7:85:c6:f8:56:06:bc:db: 7c:14:84:3a:5a:eb:a8:ff:ca:ea:b2:05:71:20:26: c6:c1:1f:53:98:79:3c:f8:72:65:f5:bb:fd:a3:41: 2d:58:e5:80:ee:5b:db:c8:74:98:73:89:53:58:6c: 04:3a:f8:99:e2:7e:17:3d:8b:4a:9e:e6:c8:74:25: 38:77:73:c0:ac:16:8f:a9:24:0f:da:88:86:2b:73: 68:a2:89:72:ab:84:10:8d:48:58:7c:70:cc:38:a4: f5:6a:da:cc:28:64:65:0f:f7:02:8f:35:6b:81:7e: 72:89:ad:ef:8f:7b:f0:b6:34:8a:e6:05:76:e6:97: df:fa:7c:49:9f:c8:ae:48:18:33:db:b6:ed:e6:35: 20:6a:98:e0:2e:b1:6b:8b:f8:65:0a:1a:3d:c8:39: 98:3f:7a:7f:d8:ea:cb:d1:43:15:45:76:d9:33:67: 53:ec:d0:dc:89:3d:5c:41:23:99:bb:a9:d5:4e:81: fc:29:3c:81:34:5c:0a:41:aa:71:d0:ec:98:4f:a0: 6a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:EC:F7:18:DD:96:AE:04:1E:7B:A6:40:E2:68:63:04:60:47:FB:C8 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/hez3GN2WrgQee6ZA4mhjBGBH-8g.roa sbgp-ipAddrBlock: critical IPv4: 202.234.144.0/24 Signature Algorithm: sha256WithRSAEncryption af:df:e7:70:a6:c4:6a:7d:ed:6e:52:81:03:b4:9a:af:ef:ae: a5:da:7f:a6:b3:5b:a4:52:00:81:9a:dd:72:9a:c2:12:2d:bd: c9:b2:90:7b:1a:52:86:f9:0b:69:97:11:3f:90:76:85:e5:f5: 06:25:b6:5a:43:d6:06:a0:53:56:2b:d2:37:de:49:d4:6f:ec: 1f:02:0e:bb:8d:77:d9:d6:7b:e2:e0:4c:41:67:7d:a9:64:00: 13:56:6f:ca:4b:b7:51:e4:4d:71:17:7a:26:2f:ab:b9:85:28: 04:e4:2b:e7:a3:7f:4e:5d:d4:b1:d1:e0:23:c1:e6:ea:4b:c9: f9:40:38:d0:74:04:d0:1a:32:6e:00:a6:3e:1e:24:25:e6:ca: 86:c5:14:c7:79:12:6f:a6:12:eb:e7:5f:ba:50:a6:b9:2e:4f: eb:2e:70:d1:d4:bc:3f:8d:e8:16:fc:f4:bc:3b:06:f3:0e:49: b1:e4:fa:7b:8b:59:ef:11:06:70:fe:15:84:b0:63:49:38:16: 79:3b:be:da:27:b0:e6:eb:d3:0c:eb:ce:4b:bb:a5:0c:36:cd: 28:c3:da:85:8e:52:f6:f8:9c:7f:16:3c:13:af:62:40:18:49: c5:ed:f5:ee:0c:4f:d0:00:c7:ce:e7:26:7e:0b:d7:39:d1:6b: 17:bd:7d:02 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICATowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUyNTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg1RUNGNzE4REQ5NkFF MDQxRTdCQTY0MEUyNjg2MzA0NjA0N0ZCQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCopaCdyJXGBlqjkz6Q4DVRNWBmwr/iI2q7NfzXjywON//zOr7K u5uZ2hKxUD+JX1VbWBj3hcb4Vga823wUhDpa66j/yuqyBXEgJsbBH1OYeTz4cmX1 u/2jQS1Y5YDuW9vIdJhziVNYbAQ6+Jnifhc9i0qe5sh0JTh3c8CsFo+pJA/aiIYr c2iiiXKrhBCNSFh8cMw4pPVq2swoZGUP9wKPNWuBfnKJre+Pe/C2NIrmBXbml9/6 fEmfyK5IGDPbtu3mNSBqmOAusWuL+GUKGj3IOZg/en/Y6svRQxVFdtkzZ1Ps0NyJ PVxBI5m7qdVOgfwpPIE0XApBqnHQ7JhPoGp7AgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUhez3GN2WrgQee6ZA4mhjBGBH+8gwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9oZXozR04yV3JnUWVlNlpBNG1oakJHQkgtOGcucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyuqQMA0GCSqGSIb3DQEBCwUA A4IBAQCv3+dwpsRqfe1uUoEDtJqv766l2n+ms1ukUgCBmt1ymsISLb3JspB7GlKG +QtplxE/kHaF5fUGJbZaQ9YGoFNWK9I33knUb+wfAg67jXfZ1nvi4ExBZ32pZAAT Vm/KS7dR5E1xF3omL6u5hSgE5Cvno39OXdSx0eAjwebqS8n5QDjQdATQGjJuAKY+ HiQl5sqGxRTHeRJvphLr51+6UKa5Lk/rLnDR1Lw/jegW/PS8OwbzDkmx5Pp7i1nv EQZw/hWEsGNJOBZ5O77aJ7Dm69MM685Lu6UMNs0ow9qFjlL2+Jx/FjwTr2JAGEnF 7fXuDE/QAMfO5yZ+C9c50WsXvX0C -----END CERTIFICATE-----Generated at Wed Apr 1 16:01:48 2026 by rpki-client