$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/o5VKiOfa8G2j7rleutLI4S8zfmw.roa File: o5VKiOfa8G2j7rleutLI4S8zfmw.roa (raw, json) Hash identifier: IP3t5p8r/te2QTYbnxUnF9fB/FKoBL/hbKz1U+oWtU8= Subject key identifier: A3:95:4A:88:E7:DA:F0:6D:A3:EE:B9:5E:BA:D2:C8:E1:2F:33:7E:6C Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 018E Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/o5VKiOfa8G2j7rleutLI4S8zfmw.roa Signing time: Tue 31 Mar 2026 07:53:40 +0000 ROA not before: Tue 31 Mar 2026 07:53:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 210.158.216.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A3954A88E7DAF06DA3EEB95EBAD2C8E12F337E6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:be:62:56:5b:31:23:ab:a3:35:8e:59:91:b5: 47:b4:29:e9:12:39:b1:66:9e:f0:77:6f:ad:cf:36: 17:54:ff:20:46:ed:1b:a4:88:ca:d2:34:5e:b4:0c: 1a:fe:33:18:48:75:59:b3:cc:97:4f:6c:2c:3b:c0: 22:05:2e:fc:ec:c4:f2:5a:f5:da:ef:2d:0e:7b:b8: 1e:48:30:d8:86:a4:80:81:ec:da:52:71:ae:f4:cd: 52:a5:58:9b:9c:43:94:71:d7:a6:c0:ec:77:ad:dd: 9b:5f:f7:ee:67:01:33:ce:ed:e7:4d:26:1c:e1:c1: 8e:a5:8d:87:a2:71:30:6e:c8:ff:7b:5c:36:74:54: cf:c3:27:62:01:3e:0b:06:aa:89:5c:41:68:3e:b5: f7:4e:ff:1d:05:cc:0e:8e:c1:bc:7a:81:49:45:67: 11:11:67:8c:0d:0f:e9:2b:0b:fd:aa:4e:9d:90:47: 3c:60:50:84:22:ef:ce:4e:8f:e3:75:01:db:7f:7c: 47:d9:0f:8f:1b:5c:70:6f:5f:ee:c0:d1:b3:78:25: 68:92:0a:2d:8d:c3:a3:77:c7:08:eb:9e:0b:7a:60: 31:05:8e:81:06:e3:08:dc:e8:37:30:95:6e:1a:9f: a3:cf:b4:31:ef:eb:6f:dc:2a:8e:ff:0a:91:51:7e: b0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:95:4A:88:E7:DA:F0:6D:A3:EE:B9:5E:BA:D2:C8:E1:2F:33:7E:6C X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/o5VKiOfa8G2j7rleutLI4S8zfmw.roa sbgp-ipAddrBlock: critical IPv4: 210.158.216.0/21 Signature Algorithm: sha256WithRSAEncryption 4f:a2:14:1e:c7:8e:95:2a:d9:e1:17:9b:97:0e:8b:e0:bc:5d: 48:1c:c1:45:7c:3f:c4:1b:db:bd:58:c3:55:1c:1f:ba:76:40: 38:d0:5b:a3:a6:05:fd:df:ba:cb:ee:d6:d2:28:45:1a:a1:27: 8a:bc:11:97:30:a8:cc:81:07:85:63:93:89:a8:4b:ec:12:d9: c2:9a:30:ca:9b:6a:c7:1d:79:26:87:4a:94:14:da:6d:8b:1b: fc:2a:07:86:df:2d:6c:ce:1f:50:25:b5:9e:10:6e:70:74:17: 84:6c:8a:2d:3b:ba:6c:ae:ae:d9:f4:99:d1:5f:4f:af:88:23: 8c:05:79:59:72:a1:97:35:e5:ca:88:84:7f:d4:90:1c:88:cf: bb:07:a8:ce:0d:dc:25:a4:5f:f0:49:8b:af:cf:45:64:73:b4: 65:57:08:de:c9:2b:70:0c:7d:e9:d2:08:f2:1d:f9:82:9c:5d: 24:85:74:ca:da:28:b2:43:ff:aa:cb:18:33:54:e0:66:e6:88: 3f:c6:46:52:ed:fd:f2:e9:5b:94:9a:a9:f6:af:25:0f:93:6c: 10:4a:2c:b8:38:51:5e:ca:d3:65:7a:26:62:a3:22:de:75:ae: 62:1e:02:af:7b:3e:66:c9:38:e6:6e:a3:72:c1:0b:d8:35:7b: 3c:f1:17:e7 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzNDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEzOTU0QTg4RTdEQUYw NkRBM0VFQjk1RUJBRDJDOEUxMkYzMzdFNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/vmJWWzEjq6M1jlmRtUe0KekSObFmnvB3b63PNhdU/yBG7Ruk iMrSNF60DBr+MxhIdVmzzJdPbCw7wCIFLvzsxPJa9drvLQ57uB5IMNiGpICB7NpS ca70zVKlWJucQ5Rx16bA7Het3Ztf9+5nATPO7edNJhzhwY6ljYeicTBuyP97XDZ0 VM/DJ2IBPgsGqolcQWg+tfdO/x0FzA6Owbx6gUlFZxERZ4wND+krC/2qTp2QRzxg UIQi785Oj+N1Adt/fEfZD48bXHBvX+7A0bN4JWiSCi2Nw6N3xwjrngt6YDEFjoEG 4wjc6DcwlW4an6PPtDHv62/cKo7/CpFRfrBRAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUo5VKiOfa8G2j7rleutLI4S8zfmwwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9vNVZLaU9mYThHMmo3cmxldXRMSTRTOHpmbXcucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0p7YMA0GCSqGSIb3DQEBCwUA A4IBAQBPohQex46VKtnhF5uXDovgvF1IHMFFfD/EG9u9WMNVHB+6dkA40FujpgX9 37rL7tbSKEUaoSeKvBGXMKjMgQeFY5OJqEvsEtnCmjDKm2rHHXkmh0qUFNptixv8 KgeG3y1szh9QJbWeEG5wdBeEbIotO7psrq7Z9JnRX0+viCOMBXlZcqGXNeXKiIR/ 1JAciM+7B6jODdwlpF/wSYuvz0Vkc7RlVwjeyStwDH3p0gjyHfmCnF0khXTK2iiy Q/+qyxgzVOBm5og/xkZS7f3y6VuUmqn2ryUPk2wQSiy4OFFeytNleiZioyLeda5i HgKvez5myTjmbqNywQvYNXs88Rfn -----END CERTIFICATE-----Generated at Wed Apr 1 15:59:13 2026 by rpki-client