$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/uvBlzmtflYL1XNGFCSVy05bm3Sg.roa File: uvBlzmtflYL1XNGFCSVy05bm3Sg.roa (raw, json) Hash identifier: yayx4kIGEQhFJ9HPCZqT6SRiVlXObY2APi5Vjxb/ihA= Subject key identifier: BA:F0:65:CE:6B:5F:95:82:F5:5C:D1:85:09:25:72:D3:96:E6:DD:28 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0145 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/uvBlzmtflYL1XNGFCSVy05bm3Sg.roa Signing time: Tue 31 Mar 2026 07:53:02 +0000 ROA not before: Tue 31 Mar 2026 07:53:02 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.230.204.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:53:02 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=BAF065CE6B5F9582F55CD185092572D396E6DD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:77:3b:11:a1:94:d6:38:e6:9c:54:32:47:39: 24:24:e4:79:3e:e0:79:f7:96:b7:f2:43:fd:1a:a1: e0:5c:af:b7:70:88:3e:50:cb:cc:32:fe:35:a5:85: bd:74:8d:a2:83:27:2b:a9:fc:2b:3e:76:7a:fc:34: dc:6e:a9:b7:a9:a5:f5:26:76:6c:c7:b4:f7:b9:fc: f7:d5:ea:52:6f:1e:3b:b5:40:a3:97:19:0d:15:13: 5b:b4:29:c8:f1:a2:22:c7:a5:8d:0e:86:c5:fd:3e: 8a:ef:92:92:b2:78:de:09:f4:fb:03:1d:c4:b7:88: 2b:c6:df:bb:09:91:6f:88:24:60:87:08:6a:d8:5a: 33:7b:f2:0e:b4:1b:6e:0c:b3:13:d3:31:3c:97:9c: 29:99:0c:ea:2b:c5:50:79:6f:e9:7e:c4:d1:d8:bd: 5f:f9:31:13:a5:16:6c:f6:38:cd:17:89:a2:c2:33: f5:77:cb:14:34:b1:de:f3:3f:49:ad:6e:67:8b:98: ba:9d:13:37:5e:68:cf:6a:d4:ab:02:4d:c0:bc:98: 3c:03:45:a4:50:1e:ad:9c:03:f1:43:a3:95:10:04: 48:90:90:83:03:a6:da:ff:a0:ea:6e:13:5a:ce:7d: 21:86:8f:ca:21:94:94:b9:38:3d:31:0c:8b:17:0c: 1a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F0:65:CE:6B:5F:95:82:F5:5C:D1:85:09:25:72:D3:96:E6:DD:28 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/uvBlzmtflYL1XNGFCSVy05bm3Sg.roa sbgp-ipAddrBlock: critical IPv4: 202.230.204.0/23 Signature Algorithm: sha256WithRSAEncryption 81:e6:bf:1a:88:d6:bb:8f:53:e1:fb:6f:88:75:10:14:38:d4: 90:44:37:5c:8c:8a:3f:5c:82:e1:88:00:ed:54:9d:89:b1:a1: 65:dd:89:a3:72:18:f1:5b:b2:6c:91:fa:41:fa:e5:fb:96:af: 16:ed:49:47:1a:db:b6:38:c1:53:bf:28:57:e6:c7:14:28:a6: 2c:bd:72:2d:47:20:60:29:13:1b:73:59:b2:ce:b6:77:0e:2d: c3:0f:a8:12:ab:21:82:2b:58:22:66:ec:a0:dd:e9:27:1d:46: a0:3b:f6:a2:84:57:0e:34:16:27:d6:9c:00:21:6b:4a:1f:45: c3:bd:19:7a:d7:19:de:d3:2e:8b:e4:f2:a7:30:f2:0a:d4:72: a1:65:ee:2d:2c:3a:3b:da:0b:a4:10:d3:b8:c2:e0:a5:df:ae: 12:0f:1e:c0:4f:ef:47:02:87:c1:94:ea:7a:68:cb:08:9f:75: 42:c2:80:4b:c4:6e:c1:1f:5b:c2:43:ed:a0:f8:cd:bc:ea:f4: 3d:07:9f:a3:b0:76:85:0b:98:b6:7b:9b:08:1f:8c:31:b9:6d: 40:fe:10:22:61:35:96:1f:31:fe:19:52:71:9e:d3:58:54:e6: e3:f1:97:0c:0f:09:78:23:f6:f9:3d:32:14:9a:19:9d:09:16: 0a:2a:08:86 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUzMDJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEJBRjA2NUNFNkI1Rjk1 ODJGNTVDRDE4NTA5MjU3MkQzOTZFNkREMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSdzsRoZTWOOacVDJHOSQk5Hk+4Hn3lrfyQ/0aoeBcr7dwiD5Q y8wy/jWlhb10jaKDJyup/Cs+dnr8NNxuqbeppfUmdmzHtPe5/PfV6lJvHju1QKOX GQ0VE1u0KcjxoiLHpY0OhsX9PorvkpKyeN4J9PsDHcS3iCvG37sJkW+IJGCHCGrY WjN78g60G24MsxPTMTyXnCmZDOorxVB5b+l+xNHYvV/5MROlFmz2OM0XiaLCM/V3 yxQ0sd7zP0mtbmeLmLqdEzdeaM9q1KsCTcC8mDwDRaRQHq2cA/FDo5UQBEiQkIMD ptr/oOpuE1rOfSGGj8ohlJS5OD0xDIsXDBpxAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUuvBlzmtflYL1XNGFCSVy05bm3SgwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My91dkJsem10ZmxZTDFYTkdGQ1NWeTA1Ym0zU2cucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByubMMA0GCSqGSIb3DQEBCwUA A4IBAQCB5r8aiNa7j1Ph+2+IdRAUONSQRDdcjIo/XILhiADtVJ2JsaFl3Ymjchjx W7JskfpB+uX7lq8W7UlHGtu2OMFTvyhX5scUKKYsvXItRyBgKRMbc1myzrZ3Di3D D6gSqyGCK1giZuyg3eknHUagO/aihFcONBYn1pwAIWtKH0XDvRl61xne0y6L5PKn MPIK1HKhZe4tLDo72gukENO4wuCl364SDx7AT+9HAofBlOp6aMsIn3VCwoBLxG7B H1vCQ+2g+M286vQ9B5+jsHaFC5i2e5sIH4wxuW1A/hAiYTWWHzH+GVJxntNYVObj 8ZcMDwl4I/b5PTIUmhmdCRYKKgiG -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:21 2026 by rpki-client