$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/kzIfejqFfpv754glrHS07gLV5rQ.roa File: kzIfejqFfpv754glrHS07gLV5rQ.roa (raw, json) Hash identifier: H0YeImUw9WyuBnq0oTpBUdrHjNO2jpfK6nHST5PXbuE= Subject key identifier: 93:32:1F:7A:3A:85:7E:9B:FB:E7:88:25:AC:74:B4:EE:02:D5:E6:B4 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 01C4 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/kzIfejqFfpv754glrHS07gLV5rQ.roa Signing time: Tue 31 Mar 2026 07:54:05 +0000 ROA not before: Tue 31 Mar 2026 07:54:05 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 211.133.240.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:54:05 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=93321F7A3A857E9BFBE78825AC74B4EE02D5E6B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3b:d9:5d:06:7b:f8:fb:56:79:0d:82:03:31: c1:fe:2b:9f:70:7a:66:25:f8:53:31:b9:52:26:98: 7a:d6:17:64:66:13:50:1e:ac:b5:91:ab:f6:c3:de: 09:84:f5:57:c1:03:3b:da:1b:7f:ef:b3:ba:8c:f5: ae:f4:c8:f1:f9:4a:1f:44:8a:be:53:6a:37:72:0a: 23:b4:40:a6:f0:e1:78:bf:ee:5b:db:a0:a2:f9:57: 44:ca:e1:a5:ea:8b:4b:12:70:2b:7f:90:88:27:4b: 4f:89:d0:84:b6:85:b6:05:ae:d6:10:3d:88:6e:7f: f3:4d:47:f1:4b:4c:df:8f:f1:ac:89:d0:c4:0a:ee: ce:66:a9:8a:eb:0f:58:f8:10:64:eb:19:12:9c:e2: 15:01:30:03:a1:52:ef:61:31:e9:e5:a3:18:06:77: 0e:cc:88:a7:10:e2:98:b8:f2:3a:4f:13:21:23:ec: 35:a6:6f:ac:80:e4:df:f4:65:c9:fd:26:3e:81:04: 71:67:f3:f1:50:94:32:fb:39:ad:ec:ae:22:f7:b3: 1e:bd:d6:2a:ee:91:a8:9b:b1:53:d6:c4:54:c0:79: 0f:b5:39:61:09:b2:61:3e:37:f0:d8:d9:c8:4b:ef: d9:70:7e:97:1a:14:66:4d:cb:78:49:4a:6e:c7:25: be:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:32:1F:7A:3A:85:7E:9B:FB:E7:88:25:AC:74:B4:EE:02:D5:E6:B4 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/kzIfejqFfpv754glrHS07gLV5rQ.roa sbgp-ipAddrBlock: critical IPv4: 211.133.240.0/21 Signature Algorithm: sha256WithRSAEncryption 17:ed:da:20:4b:f4:20:24:59:d8:28:07:08:52:7c:26:08:39: 67:92:dd:a2:a0:6a:ec:41:82:fe:28:bf:9d:e8:b5:f2:6b:b5: 7a:cd:d7:a6:02:9d:f3:62:95:93:ad:57:c1:8c:27:51:5f:49: 06:02:9b:88:b5:b4:71:a1:7f:33:9c:95:c6:1b:1a:10:d8:ce: de:bd:db:7a:bd:b7:a0:8c:ac:5c:12:26:92:07:19:4e:80:9b: 07:18:96:1c:42:b3:f6:36:8a:76:05:1f:46:02:8e:79:25:9f: bd:1c:a6:0d:cd:3c:ee:55:ce:74:36:ca:e0:dd:ab:3b:b6:e9: 9a:5d:25:44:f3:ff:51:d8:2a:cc:69:61:34:08:39:95:bb:14: 92:41:d5:cc:dd:37:1d:53:5a:1a:e4:4f:59:9d:8b:fa:0f:ec: 94:7f:60:cc:d3:39:90:da:be:4d:38:b5:28:56:71:cb:79:e2: 2e:89:84:a3:94:b1:10:f3:13:55:32:00:90:25:0f:5f:6c:1b: 61:0f:38:1a:f3:03:ba:b2:37:f5:75:25:42:8a:63:d1:71:28: 93:60:f7:02:8f:54:db:56:41:84:23:a1:ac:35:73:c7:97:3f: 8d:65:8d:b8:02:79:2d:43:6a:85:a2:49:3b:da:6d:b3:bd:bb: b8:2d:64:26 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzU0MDVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkzMzIxRjdBM0E4NTdF OUJGQkU3ODgyNUFDNzRCNEVFMDJENUU2QjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyO9ldBnv4+1Z5DYIDMcH+K59wemYl+FMxuVImmHrWF2RmE1Ae rLWRq/bD3gmE9VfBAzvaG3/vs7qM9a70yPH5Sh9Eir5TajdyCiO0QKbw4Xi/7lvb oKL5V0TK4aXqi0sScCt/kIgnS0+J0IS2hbYFrtYQPYhuf/NNR/FLTN+P8ayJ0MQK 7s5mqYrrD1j4EGTrGRKc4hUBMAOhUu9hMenloxgGdw7MiKcQ4pi48jpPEyEj7DWm b6yA5N/0Zcn9Jj6BBHFn8/FQlDL7Oa3sriL3sx691irukaibsVPWxFTAeQ+1OWEJ smE+N/DY2chL79lwfpcaFGZNy3hJSm7HJb6HAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUkzIfejqFfpv754glrHS07gLV5rQwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9reklmZWpxRmZwdjc1NGdsckhTMDdnTFY1clEucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD04XwMA0GCSqGSIb3DQEBCwUA A4IBAQAX7dogS/QgJFnYKAcIUnwmCDlnkt2ioGrsQYL+KL+d6LXya7V6zdemAp3z YpWTrVfBjCdRX0kGApuItbRxoX8znJXGGxoQ2M7evdt6vbegjKxcEiaSBxlOgJsH GJYcQrP2Nop2BR9GAo55JZ+9HKYNzTzuVc50Nsrg3as7tumaXSVE8/9R2CrMaWE0 CDmVuxSSQdXM3TcdU1oa5E9ZnYv6D+yUf2DM0zmQ2r5NOLUoVnHLeeIuiYSjlLEQ 8xNVMgCQJQ9fbBthDzga8wO6sjf1dSVCimPRcSiTYPcCj1TbVkGEI6GsNXPHlz+N ZY24AnktQ2qFokk72m2zvbu4LWQm -----END CERTIFICATE-----Generated at Wed Apr 1 16:02:34 2026 by rpki-client