$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/uc2kBnEGQeWGpOFasHA14dBncKE.roa File: uc2kBnEGQeWGpOFasHA14dBncKE.roa (raw, json) Hash identifier: EsR+lZR0MyrjYWLfaRXKaY2by/Cw5RUncwwiZj+wsKQ= Subject key identifier: B9:CD:A4:06:71:06:41:E5:86:A4:E1:5A:B0:70:35:E1:D0:67:70:A1 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0139 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/uc2kBnEGQeWGpOFasHA14dBncKE.roa Signing time: Tue 31 Mar 2026 07:52:55 +0000 ROA not before: Tue 31 Mar 2026 07:52:55 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.234.140.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:52:55 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B9CDA406710641E586A4E15AB07035E1D06770A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9d:1b:a3:d6:e2:58:cc:03:cb:33:a5:49:1e: 4c:25:4d:60:6f:76:5e:fd:2d:7d:0f:84:19:ce:30: bc:4b:1c:39:b5:b8:ff:5e:e7:2b:32:ae:03:15:dd: e6:17:19:cc:4e:3e:28:38:0f:9a:45:b2:96:03:29: 9f:2b:b8:2d:4f:ff:4c:f8:3e:24:81:a0:fa:45:96: 55:73:6e:d3:57:24:2e:fc:a7:fb:42:8b:e0:02:03: dd:05:f5:c6:67:0e:fd:d3:25:86:47:53:20:46:dc: aa:e7:4b:7d:e4:b9:2f:c1:a8:06:a4:a7:06:93:c4: b5:fb:9f:51:5e:75:5c:51:ab:c8:b6:a2:e0:cf:50: 3c:60:e0:f8:f5:d7:2b:14:2b:79:6d:90:ba:ab:c5: 2e:e2:ab:e4:84:58:49:15:f0:d5:8d:47:28:5c:17: 29:92:76:10:0b:d2:46:38:16:b4:89:d0:ea:54:34: f8:3b:db:b9:aa:46:b4:a2:c2:16:f1:62:7a:4d:85: 9e:3f:01:cf:61:ae:ec:d6:1a:e0:bc:2e:b8:f4:e9: c6:05:5d:1f:02:57:a3:37:22:c8:13:31:17:4a:8e: 59:58:36:21:1b:85:14:d7:bf:42:b0:55:ac:52:c0: 7b:bf:b1:09:18:e7:25:d6:f5:d7:9e:d9:40:a2:9f: e8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CD:A4:06:71:06:41:E5:86:A4:E1:5A:B0:70:35:E1:D0:67:70:A1 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/uc2kBnEGQeWGpOFasHA14dBncKE.roa sbgp-ipAddrBlock: critical IPv4: 202.234.140.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:d5:91:57:0c:b7:2c:70:d0:ce:2e:7d:1a:28:9a:f3:1a:e6: c1:2e:b6:8a:1d:8c:39:b6:05:f8:47:97:3a:16:2b:c6:3f:75: bd:d5:a4:f1:b0:1f:1c:c8:16:cd:c6:b2:05:19:b3:a6:54:b0: 06:6c:a3:52:28:5d:da:bf:15:78:4d:3a:72:44:58:a1:dd:b2: 7d:e5:cf:7e:55:83:d7:f1:b5:b9:04:cb:32:37:43:54:79:79: 80:d9:89:6d:10:e4:d2:d9:12:48:d5:f8:c9:07:dd:5b:58:45: 3d:18:05:d2:a6:4f:92:50:d7:23:75:80:d7:3a:e6:0b:e7:34: 01:12:d6:ab:29:d1:36:9e:ed:3c:a0:af:41:59:49:7f:25:39: c7:3b:2e:a9:5f:f9:c9:60:99:19:51:cc:9d:a5:28:b5:e2:b0: 73:55:0f:b5:e9:ed:76:e9:48:8b:4a:7e:23:26:bd:4d:1e:14: d6:86:24:a1:39:52:47:3a:7b:ee:7c:0f:d7:7a:8b:a4:9d:c5: d7:a3:aa:79:db:a0:12:d6:bb:a1:cd:5b:ad:3f:83:9f:cb:cf: 0f:3b:60:34:f2:ef:d3:2e:df:d2:7b:c4:e4:a6:34:d7:bd:db: 1f:aa:dd:70:be:bd:8e:b7:98:9e:ec:67:d0:e8:bf:52:d8:be: 8d:bf:93:90 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICATkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUyNTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI5Q0RBNDA2NzEwNjQx RTU4NkE0RTE1QUIwNzAzNUUxRDA2NzcwQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSnRuj1uJYzAPLM6VJHkwlTWBvdl79LX0PhBnOMLxLHDm1uP9e 5ysyrgMV3eYXGcxOPig4D5pFspYDKZ8ruC1P/0z4PiSBoPpFllVzbtNXJC78p/tC i+ACA90F9cZnDv3TJYZHUyBG3KrnS33kuS/BqAakpwaTxLX7n1FedVxRq8i2ouDP UDxg4Pj11ysUK3ltkLqrxS7iq+SEWEkV8NWNRyhcFymSdhAL0kY4FrSJ0OpUNPg7 27mqRrSiwhbxYnpNhZ4/Ac9hruzWGuC8Lrj06cYFXR8CV6M3IsgTMRdKjllYNiEb hRTXv0KwVaxSwHu/sQkY5yXW9dee2UCin+h/AgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUuc2kBnEGQeWGpOFasHA14dBncKEwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My91YzJrQm5FR1FlV0dwT0Zhc0hBMTRkQm5jS0Uucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyuqMMA0GCSqGSIb3DQEBCwUA A4IBAQAq1ZFXDLcscNDOLn0aKJrzGubBLraKHYw5tgX4R5c6FivGP3W91aTxsB8c yBbNxrIFGbOmVLAGbKNSKF3avxV4TTpyRFih3bJ95c9+VYPX8bW5BMsyN0NUeXmA 2YltEOTS2RJI1fjJB91bWEU9GAXSpk+SUNcjdYDXOuYL5zQBEtarKdE2nu08oK9B WUl/JTnHOy6pX/nJYJkZUcydpSi14rBzVQ+16e126UiLSn4jJr1NHhTWhiShOVJH OnvufA/XeoukncXXo6p526AS1ruhzVutP4Ofy88PO2A08u/TLt/Se8TkpjTXvdsf qt1wvr2Ot5ie7GfQ6L9S2L6Nv5OQ -----END CERTIFICATE-----Generated at Wed Apr 1 15:55:57 2026 by rpki-client