$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/npXzP-87WcNegU1nFmtla3ekBZY.roa File: npXzP-87WcNegU1nFmtla3ekBZY.roa (raw, json) Hash identifier: kF39T8SvF+6eDJqkkoljN8VGZjvJaSGZfmu4BtdotAY= Subject key identifier: 9E:95:F3:3F:EF:3B:59:C3:5E:81:4D:67:16:6B:65:6B:77:A4:05:96 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 013F Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/npXzP-87WcNegU1nFmtla3ekBZY.roa Signing time: Tue 31 Mar 2026 07:52:58 +0000 ROA not before: Tue 31 Mar 2026 07:52:58 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.234.156.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:52:58 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9E95F33FEF3B59C35E814D67166B656B77A40596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0a:f7:88:22:3e:40:91:23:92:95:77:b3:5e: d8:f9:ce:35:5d:65:9c:52:22:ed:03:28:fb:57:14: c7:19:68:3f:5a:09:ce:13:79:e5:bb:0d:11:99:ca: 0e:2a:d2:a5:c7:33:ac:fe:f0:80:f2:65:4f:07:be: 22:c0:a3:e7:6f:f7:e4:94:0d:3e:80:50:07:3c:d5: bc:63:58:d0:e0:3c:fb:66:75:43:dc:24:63:84:ef: ed:cf:b8:e0:5b:2b:b7:14:1c:07:b7:bf:b7:11:9f: 33:f7:cc:ba:92:f8:93:60:e4:2c:ea:bd:bb:76:93: d0:3a:1c:62:8e:0c:ae:d0:a3:62:69:bb:fb:bf:44: db:a2:72:71:68:18:cc:a0:14:e6:11:1b:cb:fd:7e: d1:7a:25:4f:ca:54:81:79:e4:3d:9b:d4:ad:a5:f0: 28:69:5c:80:fc:fb:69:66:c0:29:85:c2:ee:d0:4a: 53:72:3f:e3:ba:42:87:bd:98:26:cd:48:eb:f2:cb: da:83:ab:13:75:57:3c:dc:5c:32:01:f6:88:b2:91: 52:a6:c4:a1:c6:c7:eb:f9:b5:ed:d0:26:ca:bb:7d: b6:22:27:89:b1:97:d3:94:da:5d:4a:91:79:71:b4: dd:7a:bf:2e:ed:31:82:12:09:8e:39:6c:05:4b:f3: 9c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:95:F3:3F:EF:3B:59:C3:5E:81:4D:67:16:6B:65:6B:77:A4:05:96 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/npXzP-87WcNegU1nFmtla3ekBZY.roa sbgp-ipAddrBlock: critical IPv4: 202.234.156.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:38:b6:da:32:01:b0:5a:8b:c8:d7:1a:b4:cb:62:0e:23:90: 47:0d:b8:9b:03:a9:37:67:4e:78:6c:67:7b:69:32:a4:3d:64: 11:b9:4e:3f:86:9b:64:23:d6:de:7a:e9:bf:c5:0a:64:f9:09: 16:11:df:c0:f5:51:54:62:b1:29:23:03:be:7b:ee:84:26:3a: e1:48:5f:d0:31:56:5b:7c:54:62:e8:3f:c9:c9:c6:7f:99:e0: f6:ca:dd:a8:9a:a2:b0:b9:16:cc:99:df:03:b9:71:9c:75:e9: d3:b1:ce:16:47:08:a7:48:0a:12:7e:03:4d:5f:d0:ff:c0:58: df:70:3c:03:db:7c:12:04:04:1f:8e:6a:cc:77:fb:1e:2c:f7: 64:5e:41:48:04:31:e6:4c:31:32:f4:cb:72:7a:00:6a:50:e8: 26:92:e5:49:37:e4:aa:65:b9:86:39:07:ff:7b:8e:bf:b9:54: 47:f6:77:d6:d4:5f:8c:7c:aa:a5:a0:be:3c:33:69:ef:d5:04: aa:5e:f4:b3:1b:5b:ff:e8:e5:69:26:6f:a3:82:a7:c6:90:41: 22:62:c1:a2:38:9c:49:b1:47:a2:33:8a:49:1a:9e:79:05:5a: 03:0c:b8:de:85:c3:c8:fc:5e:64:98:23:24:77:d6:4a:7b:78: 94:06:14:cf -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUyNThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlFOTVGMzNGRUYzQjU5 QzM1RTgxNEQ2NzE2NkI2NTZCNzdBNDA1OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClCveIIj5AkSOSlXezXtj5zjVdZZxSIu0DKPtXFMcZaD9aCc4T eeW7DRGZyg4q0qXHM6z+8IDyZU8HviLAo+dv9+SUDT6AUAc81bxjWNDgPPtmdUPc JGOE7+3PuOBbK7cUHAe3v7cRnzP3zLqS+JNg5Czqvbt2k9A6HGKODK7Qo2Jpu/u/ RNuicnFoGMygFOYRG8v9ftF6JU/KVIF55D2b1K2l8ChpXID8+2lmwCmFwu7QSlNy P+O6Qoe9mCbNSOvyy9qDqxN1VzzcXDIB9oiykVKmxKHGx+v5te3QJsq7fbYiJ4mx l9OU2l1KkXlxtN16vy7tMYISCY45bAVL85xzAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUnpXzP+87WcNegU1nFmtla3ekBZYwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9ucFh6UC04N1djTmVnVTFuRm10bGEzZWtCWlkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyuqcMA0GCSqGSIb3DQEBCwUA A4IBAQANOLbaMgGwWovI1xq0y2IOI5BHDbibA6k3Z054bGd7aTKkPWQRuU4/hptk I9beeum/xQpk+QkWEd/A9VFUYrEpIwO+e+6EJjrhSF/QMVZbfFRi6D/JycZ/meD2 yt2omqKwuRbMmd8DuXGcdenTsc4WRwinSAoSfgNNX9D/wFjfcDwD23wSBAQfjmrM d/seLPdkXkFIBDHmTDEy9MtyegBqUOgmkuVJN+SqZbmGOQf/e46/uVRH9nfW1F+M fKqloL48M2nv1QSqXvSzG1v/6OVpJm+jgqfGkEEiYsGiOJxJsUeiM4pJGp55BVoD DLjehcPI/F5kmCMkd9ZKe3iUBhTP -----END CERTIFICATE-----Generated at Wed Apr 1 15:57:41 2026 by rpki-client