$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/vcoKPUOWk7Y_zMImCA_16J6Jutk.roa File: vcoKPUOWk7Y_zMImCA_16J6Jutk.roa (raw, json) Hash identifier: 2YS5qG1cC4JnSL0G5zLhO3GDAPFwJCO689zqhAUy0b8= Subject key identifier: BD:CA:0A:3D:43:96:93:B6:3F:CC:C2:26:08:0F:F5:E8:9E:89:BA:D9 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0137 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/vcoKPUOWk7Y_zMImCA_16J6Jutk.roa Signing time: Tue 31 Mar 2026 07:52:55 +0000 ROA not before: Tue 31 Mar 2026 07:52:55 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.234.137.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:52:55 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=BDCA0A3D439693B63FCCC226080FF5E89E89BAD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:34:15:ab:ae:f1:cd:17:f0:31:39:2d:78:71: 16:cb:12:a8:eb:55:14:b5:60:46:a5:20:13:cd:b7: ee:c2:66:31:db:7f:bd:eb:93:9b:0a:3f:c4:dc:57: d9:54:52:f4:f0:32:5e:bc:4a:a6:eb:12:68:5a:63: d4:25:ee:a4:e8:cb:a2:85:d9:d8:b7:37:9e:fc:bb: 10:cb:56:e6:e4:2a:f3:39:5b:31:fd:a9:7f:5c:08: 53:e7:13:2e:1c:ed:b3:c3:53:a3:df:13:6e:7f:5d: 11:01:05:9f:3c:3d:ce:4b:c2:a3:db:aa:04:16:f9: 72:88:68:15:70:fd:b0:1d:64:d7:fc:d2:01:a2:bd: 1d:58:8f:e8:e3:5f:1f:1c:ed:8a:eb:66:e4:8c:94: c9:b7:d9:54:e9:aa:a7:53:a0:dd:83:8f:c7:0c:c4: 99:11:09:88:e8:1a:99:01:29:28:e2:64:08:54:c3: 50:85:01:de:cd:82:72:83:95:6d:6d:96:d5:8d:aa: ad:c2:5f:e8:83:15:a9:15:6d:ec:67:01:ce:b3:7e: 42:85:9b:5e:e1:55:34:be:0c:f6:7b:d7:21:e4:f8: fe:33:3e:c6:aa:e4:d0:1b:10:59:38:ae:6e:73:75: 24:63:d9:4e:58:ff:58:68:44:0e:3a:4d:8f:72:b2: d1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CA:0A:3D:43:96:93:B6:3F:CC:C2:26:08:0F:F5:E8:9E:89:BA:D9 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/vcoKPUOWk7Y_zMImCA_16J6Jutk.roa sbgp-ipAddrBlock: critical IPv4: 202.234.137.0/24 Signature Algorithm: sha256WithRSAEncryption 68:e4:e4:80:2d:64:62:b0:c4:a4:f1:af:4a:4a:20:78:f6:74: 90:2f:a6:04:cc:9e:50:f0:07:1f:32:78:19:57:3f:b5:95:c1: db:91:0c:ec:06:ca:45:53:b9:47:58:75:3d:49:2b:e3:6d:d1: 6c:07:5b:86:3a:ba:9b:11:e5:02:7f:5e:49:45:07:a3:f0:bb: c7:d2:ba:d2:86:0f:2e:ac:45:d3:9a:65:8e:4a:61:39:00:65: 79:c8:c1:16:04:6b:a3:c1:44:a2:2c:96:8c:3c:bb:18:ac:e9: 63:59:db:ab:47:0c:70:b8:81:cf:87:af:72:09:32:ba:fa:1f: cc:89:01:24:7d:b1:0e:c2:5d:cf:be:50:6e:78:f8:37:9c:f0: 18:e6:87:17:0b:d2:16:03:f4:d6:44:43:fa:2e:a8:60:71:29: b6:05:33:54:b4:bd:8d:ae:c4:90:a0:2f:fb:c0:ee:1e:ca:40: ea:5d:17:f2:44:9a:ab:f1:a0:56:a8:82:d9:1c:5c:23:aa:5a: ae:f4:12:f9:08:04:bf:cd:3c:53:75:2e:5b:bd:28:0f:f2:f3: 71:a0:67:47:b0:3a:4f:80:0a:65:19:ee:bc:43:16:60:a5:60: bf:d6:0d:51:77:8f:22:2f:1f:8f:c5:e1:9c:1c:9c:e1:2b:55: ff:fb:9b:d5 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUyNTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEJEQ0EwQTNENDM5Njkz QjYzRkNDQzIyNjA4MEZGNUU4OUU4OUJBRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoNBWrrvHNF/AxOS14cRbLEqjrVRS1YEalIBPNt+7CZjHbf73r k5sKP8TcV9lUUvTwMl68SqbrEmhaY9Ql7qToy6KF2di3N578uxDLVubkKvM5WzH9 qX9cCFPnEy4c7bPDU6PfE25/XREBBZ88Pc5LwqPbqgQW+XKIaBVw/bAdZNf80gGi vR1Yj+jjXx8c7YrrZuSMlMm32VTpqqdToN2Dj8cMxJkRCYjoGpkBKSjiZAhUw1CF Ad7NgnKDlW1tltWNqq3CX+iDFakVbexnAc6zfkKFm17hVTS+DPZ71yHk+P4zPsaq 5NAbEFk4rm5zdSRj2U5Y/1hoRA46TY9ystGHAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUvcoKPUOWk7Y/zMImCA/16J6JutkwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My92Y29LUFVPV2s3WV96TUltQ0FfMTZKNkp1dGsucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyuqJMA0GCSqGSIb3DQEBCwUA A4IBAQBo5OSALWRisMSk8a9KSiB49nSQL6YEzJ5Q8AcfMngZVz+1lcHbkQzsBspF U7lHWHU9SSvjbdFsB1uGOrqbEeUCf15JRQej8LvH0rrShg8urEXTmmWOSmE5AGV5 yMEWBGujwUSiLJaMPLsYrOljWdurRwxwuIHPh69yCTK6+h/MiQEkfbEOwl3PvlBu ePg3nPAY5ocXC9IWA/TWREP6LqhgcSm2BTNUtL2NrsSQoC/7wO4eykDqXRfyRJqr 8aBWqILZHFwjqlqu9BL5CAS/zTxTdS5bvSgP8vNxoGdHsDpPgAplGe68QxZgpWC/ 1g1Rd48iLx+PxeGcHJzhK1X/+5vV -----END CERTIFICATE-----Generated at Wed Apr 1 15:58:22 2026 by rpki-client