$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/rfE2Xn2H37AS3rh_Vw72OtJtWls.roa File: rfE2Xn2H37AS3rh_Vw72OtJtWls.roa (raw, json) Hash identifier: fNaVryOx0xELn7mUTNCO7r3wSDxEj7sswYhmEKuwXDA= Subject key identifier: AD:F1:36:5E:7D:87:DF:B0:12:DE:B8:7F:57:0E:F6:3A:D2:6D:5A:5B Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0163 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/rfE2Xn2H37AS3rh_Vw72OtJtWls.roa Signing time: Tue 31 Mar 2026 07:53:19 +0000 ROA not before: Tue 31 Mar 2026 07:53:19 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.239.20.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:19 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=ADF1365E7D87DFB012DEB87F570EF63AD26D5A5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fe:42:a1:35:36:aa:bc:21:1d:c3:2b:f0:48: de:f7:07:45:71:78:e3:87:4d:1a:fb:23:97:86:29: 35:bc:21:d6:83:8b:b1:7e:98:ec:7c:9c:11:de:a0: 55:74:29:20:ae:2e:b4:3c:d3:51:ff:fa:e0:36:73: 8a:68:64:5a:59:89:28:06:48:94:80:e0:77:1a:b6: bc:f1:3a:32:85:87:0c:6e:d3:b8:a4:46:7f:7e:cf: 7a:ec:36:8b:8c:fd:86:8b:bf:44:c3:47:a9:3a:dc: a9:fa:ea:c2:28:ba:37:6d:01:d0:18:f7:f7:6f:10: 2a:cd:39:3e:eb:c6:a5:3a:b8:5b:ca:86:52:d7:91: 48:71:5f:d0:d1:56:6e:64:0a:e9:cb:02:7a:5d:b4: db:af:64:83:a3:4b:fe:4d:dd:ef:93:6a:30:d3:29: 9a:49:c5:85:75:d5:8d:e8:3f:0b:b4:02:92:fa:30: 61:7f:8a:da:be:92:92:c2:78:06:fa:66:d8:ba:f8: 49:62:0e:b0:66:99:f7:ab:a3:e6:d6:e7:83:fb:fe: e6:6e:e6:5b:25:d0:bd:32:25:91:3d:c6:4f:69:e9: f6:e1:ab:90:98:78:84:02:e5:6a:5f:98:58:fe:85: 6b:df:15:c2:ba:b5:3f:ba:49:2f:dd:d9:04:66:8a: d0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F1:36:5E:7D:87:DF:B0:12:DE:B8:7F:57:0E:F6:3A:D2:6D:5A:5B X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/rfE2Xn2H37AS3rh_Vw72OtJtWls.roa sbgp-ipAddrBlock: critical IPv4: 202.239.20.0/23 Signature Algorithm: sha256WithRSAEncryption 24:aa:a7:66:53:23:59:01:50:13:84:34:62:b5:8f:d7:9e:ee: 5b:80:38:40:d0:e5:08:d2:0c:4c:72:15:43:5e:85:1c:a6:53: 72:8c:15:d5:03:fd:26:96:1c:cb:31:57:12:ab:9a:09:58:77: cd:2b:cc:10:d3:b7:2c:1a:64:4d:15:7d:f7:0b:59:24:05:9f: e5:89:b7:7f:bf:4c:90:ad:af:a6:08:49:a1:73:6b:19:4e:e6: 45:65:81:da:a6:16:63:ee:d8:33:14:31:33:e8:f7:93:49:5f: 32:df:8e:6c:29:88:d6:b3:9a:3f:13:6e:8b:1b:73:27:38:de: 2e:54:b2:7a:2c:a1:ff:fc:18:cf:0c:0b:9b:cf:33:82:27:69: b4:7d:ec:cc:7d:0a:27:0f:7c:53:96:7d:ca:4b:33:4f:83:01: c8:50:79:fe:cb:8f:c0:0d:cd:43:f7:43:4e:90:1d:51:e7:b5: d6:24:04:8c:2f:6d:a9:d2:58:16:6d:ae:87:0a:48:a0:79:34: cf:2b:1e:c5:7b:a5:06:a2:87:e1:ea:c0:d3:d9:df:f1:25:18: c5:7b:e7:79:44:3c:97:a6:98:f7:23:77:6b:bf:a4:bb:76:46: 7d:4e:21:d3:19:82:4c:c3:40:53:0d:6a:c6:fc:80:4e:c5:18: c5:4d:69:8e -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzMTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFERjEzNjVFN0Q4N0RG QjAxMkRFQjg3RjU3MEVGNjNBRDI2RDVBNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP/kKhNTaqvCEdwyvwSN73B0VxeOOHTRr7I5eGKTW8IdaDi7F+ mOx8nBHeoFV0KSCuLrQ801H/+uA2c4poZFpZiSgGSJSA4HcatrzxOjKFhwxu07ik Rn9+z3rsNouM/YaLv0TDR6k63Kn66sIoujdtAdAY9/dvECrNOT7rxqU6uFvKhlLX kUhxX9DRVm5kCunLAnpdtNuvZIOjS/5N3e+TajDTKZpJxYV11Y3oPwu0ApL6MGF/ itq+kpLCeAb6Zti6+EliDrBmmfero+bW54P7/uZu5lsl0L0yJZE9xk9p6fbhq5CY eIQC5WpfmFj+hWvfFcK6tT+6SS/d2QRmitARAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUrfE2Xn2H37AS3rh/Vw72OtJtWlswHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My9yZkUyWG4ySDM3QVMzcmhfVnc3Mk90SnRXbHMucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByu8UMA0GCSqGSIb3DQEBCwUA A4IBAQAkqqdmUyNZAVAThDRitY/Xnu5bgDhA0OUI0gxMchVDXoUcplNyjBXVA/0m lhzLMVcSq5oJWHfNK8wQ07csGmRNFX33C1kkBZ/libd/v0yQra+mCEmhc2sZTuZF ZYHaphZj7tgzFDEz6PeTSV8y345sKYjWs5o/E26LG3MnON4uVLJ6LKH//BjPDAub zzOCJ2m0fezMfQonD3xTln3KSzNPgwHIUHn+y4/ADc1D90NOkB1R57XWJASML22p 0lgWba6HCkigeTTPKx7Fe6UGoofh6sDT2d/xJRjFe+d5RDyXppj3I3drv6S7dkZ9 TiHTGYJMw0BTDWrG/IBOxRjFTWmO -----END CERTIFICATE-----Generated at Wed Apr 1 15:56:28 2026 by rpki-client