$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/lM3sTG5IiTAtwP2aR_s6jb8ExK0.roa File: lM3sTG5IiTAtwP2aR_s6jb8ExK0.roa (raw, json) Hash identifier: C0uB4Dis5w3iMPlGPOqjmtgNjX5IP23VGfdCUMBRMcg= Subject key identifier: 94:CD:EC:4C:6E:48:89:30:2D:C0:FD:9A:47:FB:3A:8D:BF:04:C4:AD Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 015F Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/lM3sTG5IiTAtwP2aR_s6jb8ExK0.roa Signing time: Tue 31 Mar 2026 07:53:17 +0000 ROA not before: Tue 31 Mar 2026 07:53:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.230.128.0/18 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=94CDEC4C6E4889302DC0FD9A47FB3A8DBF04C4AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0c:8a:5a:ef:e7:28:fb:05:0d:a8:c1:10:08: 01:2b:5a:39:29:0b:0c:7a:a4:57:3c:30:7b:5f:e6: f1:e6:6b:3a:f8:ba:9d:e5:ef:cf:f8:0a:33:36:62: ee:53:63:c5:5a:49:ff:7f:9a:d1:b3:83:5e:b5:58: 2d:a0:1b:4a:e8:75:3a:ab:d0:61:2e:32:76:03:65: 4c:e1:fa:36:20:42:a0:39:f7:e9:49:5c:84:9a:a9: 12:2a:06:72:0b:d2:d2:86:ca:e4:ad:f8:62:ee:f7: 2b:3a:6b:5b:62:37:ca:55:87:0e:c7:4f:9c:e5:fb: d0:ed:93:80:ab:d5:0c:d1:f7:5b:fb:f8:f7:18:07: 4a:d1:5c:71:dd:56:42:f9:c9:f7:77:69:1a:c0:20: c3:62:fd:e6:44:1a:33:ed:ff:bc:33:88:8e:c7:1b: 06:a2:eb:57:f2:25:ca:af:97:7f:0c:ad:76:c4:63: 25:d9:6b:be:87:4a:95:67:08:37:eb:8d:a9:dd:ac: 5c:86:b5:97:96:9c:54:d7:35:14:80:70:17:d3:fd: 28:df:a4:08:03:02:fa:3f:68:eb:08:39:63:3c:ac: 4b:3b:e6:62:8a:90:9b:4c:0c:37:07:35:97:6d:57: 86:42:63:70:c5:13:fd:6e:b5:96:f2:f4:a1:27:61: 6a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:CD:EC:4C:6E:48:89:30:2D:C0:FD:9A:47:FB:3A:8D:BF:04:C4:AD X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/lM3sTG5IiTAtwP2aR_s6jb8ExK0.roa sbgp-ipAddrBlock: critical IPv4: 202.230.128.0/18 Signature Algorithm: sha256WithRSAEncryption 41:ba:20:d1:e1:ab:f4:34:3c:9b:96:99:e1:16:a9:1e:ce:6a: 71:e8:05:51:71:39:1c:02:c9:e7:c4:f2:0f:1a:11:25:cd:db: f3:33:f7:02:fe:4d:62:03:f2:5c:fd:f0:3a:59:ed:2c:6c:0c: 6a:6b:9d:9d:d9:d6:56:b1:57:87:94:c5:8b:f4:80:ac:75:29: 31:d6:42:5f:90:ea:34:17:46:0b:fd:0f:26:44:14:ea:41:7e: b3:28:77:38:c1:a1:fd:55:55:a7:77:37:b2:b6:a4:55:1f:e3: fb:c6:39:1b:d7:38:ff:9f:f9:5e:00:7d:60:43:e0:23:c6:b1: 7a:3f:9e:23:04:13:84:62:d4:bb:47:5b:99:9d:03:c3:37:3a: 27:dd:ce:f7:66:fe:f7:15:1f:b1:1a:99:63:32:7e:03:98:f2: f6:3f:b8:47:bd:60:b8:5d:cb:88:f2:c3:79:12:24:4f:db:43: 39:08:c4:9c:2e:dd:23:cb:6f:31:2c:0a:d3:6f:2f:2f:91:7f: 08:65:04:d9:17:03:b1:d2:99:3a:90:9d:5e:35:46:c7:d2:61: 6a:a7:f2:4c:80:3a:0a:7a:a1:29:84:ae:48:f5:83:e9:ff:30: 63:98:e5:4b:81:f5:f4:d1:62:aa:8e:f6:55:f6:97:fb:82:92: 0a:8d:5b:49 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzMTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk0Q0RFQzRDNkU0ODg5 MzAyREMwRkQ5QTQ3RkIzQThEQkYwNEM0QUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDODIpa7+co+wUNqMEQCAErWjkpCwx6pFc8MHtf5vHmazr4up3l 78/4CjM2Yu5TY8VaSf9/mtGzg161WC2gG0rodTqr0GEuMnYDZUzh+jYgQqA59+lJ XISaqRIqBnIL0tKGyuSt+GLu9ys6a1tiN8pVhw7HT5zl+9Dtk4Cr1QzR91v7+PcY B0rRXHHdVkL5yfd3aRrAIMNi/eZEGjPt/7wziI7HGwai61fyJcqvl38MrXbEYyXZ a76HSpVnCDfrjandrFyGtZeWnFTXNRSAcBfT/SjfpAgDAvo/aOsIOWM8rEs75mKK kJtMDDcHNZdtV4ZCY3DFE/1utZby9KEnYWpBAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUlM3sTG5IiTAtwP2aR/s6jb8ExK0wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9sTTNzVEc1SWlUQXR3UDJhUl9zNmpiOEV4SzAucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGyuaAMA0GCSqGSIb3DQEBCwUA A4IBAQBBuiDR4av0NDyblpnhFqkezmpx6AVRcTkcAsnnxPIPGhElzdvzM/cC/k1i A/Jc/fA6We0sbAxqa52d2dZWsVeHlMWL9ICsdSkx1kJfkOo0F0YL/Q8mRBTqQX6z KHc4waH9VVWndzeytqRVH+P7xjkb1zj/n/leAH1gQ+AjxrF6P54jBBOEYtS7R1uZ nQPDNzon3c73Zv73FR+xGpljMn4DmPL2P7hHvWC4XcuI8sN5EiRP20M5CMScLt0j y28xLArTby8vkX8IZQTZFwOx0pk6kJ1eNUbH0mFqp/JMgDoKeqEphK5I9YPp/zBj mOVLgfX00WKqjvZV9pf7gpIKjVtJ -----END CERTIFICATE-----Generated at Wed Apr 1 15:55:59 2026 by rpki-client