$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xg8jvpkezd0BMrZDzruNxyMBvlw.roa File: xg8jvpkezd0BMrZDzruNxyMBvlw.roa (raw, json) Hash identifier: 5iEtg0+IZ/pyh9kMpVAWGOYpJTyYd4yp1bDaYV94VqQ= Subject key identifier: C6:0F:23:BE:99:1E:CD:DD:01:32:B6:43:CE:BB:8D:C7:23:01:BE:5C Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0132 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xg8jvpkezd0BMrZDzruNxyMBvlw.roa Signing time: Tue 31 Mar 2026 07:52:53 +0000 ROA not before: Tue 31 Mar 2026 07:52:53 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 202.230.192.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Mar 31 07:52:53 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C60F23BE991ECDDD0132B643CEBB8DC72301BE5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:50:eb:92:66:46:45:7e:1e:1c:b1:72:e4:e4: 69:e4:dc:2e:d7:8e:b5:f2:e2:29:cc:6d:39:9e:8b: 1a:56:4b:96:94:7f:2b:88:12:f3:e2:66:66:11:52: 63:a9:06:ab:dc:41:dd:2b:fb:09:fd:f2:5e:e8:de: e1:6e:99:4b:f9:43:f7:d3:58:78:32:4e:63:af:4e: 3e:c4:91:a9:95:86:52:bb:dc:97:9d:29:69:27:12: b8:88:77:63:6f:b0:8f:0e:58:1c:39:5d:66:35:46: bc:3a:52:17:e6:0e:44:6d:12:d9:34:c9:14:17:fa: bc:dd:dc:99:e9:d1:8e:98:ee:74:29:3d:46:35:eb: d9:ec:d7:c7:11:fe:5e:94:29:6c:92:c6:88:0c:c6: fe:42:bc:43:50:47:f5:a3:0e:07:ba:7c:90:33:dd: f7:57:1b:22:0f:b6:ff:aa:de:96:ff:b8:5f:84:67: e2:98:f1:62:ac:30:d9:75:c2:57:7b:78:7d:ba:f2: bd:63:7f:6a:fd:e9:4b:c5:c7:cd:37:00:01:44:f3: 8c:eb:b6:70:d4:13:fb:ff:b2:b3:19:28:ac:5a:88: 31:7a:e7:37:f7:f0:3b:a5:7e:8a:a3:cd:ad:e7:28: f7:4b:23:c8:fc:c8:f5:1b:77:ab:89:d3:a4:be:f5: ae:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:0F:23:BE:99:1E:CD:DD:01:32:B6:43:CE:BB:8D:C7:23:01:BE:5C X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xg8jvpkezd0BMrZDzruNxyMBvlw.roa sbgp-ipAddrBlock: critical IPv4: 202.230.192.0/21 Signature Algorithm: sha256WithRSAEncryption 29:8a:ad:b1:3d:07:50:a9:a4:20:a3:87:7c:dd:d2:ef:c3:06: 55:e2:da:2b:8b:5b:31:a3:26:94:c3:96:d6:89:20:e6:a1:36: 53:d5:84:0d:50:7a:65:46:9e:d2:a7:6f:ea:ea:1f:a4:61:31: 63:48:70:10:6b:37:ca:62:3b:60:6f:94:fa:f4:85:75:47:f0: 21:26:d5:c3:71:eb:26:e2:76:83:d0:7b:1f:61:24:22:f1:4d: e5:ca:ab:56:b6:c8:79:79:8a:91:92:4e:fc:56:eb:15:d6:b5: 9d:93:91:4e:69:0f:72:3d:0a:4c:10:39:68:72:f4:1f:7c:8d: b6:55:4d:0f:5e:70:82:dd:57:fe:0c:21:51:c1:77:2f:4e:02: 8d:43:e2:4f:66:a0:a5:7d:03:b6:0e:29:f4:44:99:09:bc:78: f0:f0:84:91:b5:8a:64:88:9c:5d:87:ed:5c:93:cd:df:72:4a: ce:06:7f:82:4b:7c:06:e8:f7:10:b3:4a:03:82:39:f9:26:6e: a4:43:67:6a:a9:8c:b4:1d:3e:a7:1f:9d:42:78:0c:05:02:81: 2e:94:72:71:e2:35:2a:03:db:51:eb:8a:8b:57:11:19:05:b7: 5d:13:77:f1:9a:a2:20:2e:d1:45:71:11:ce:39:39:46:b7:ee: 3b:d8:0b:49 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICATIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNjAzMzEw NzUyNTNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM2MEYyM0JFOTkxRUNE REQwMTMyQjY0M0NFQkI4REM3MjMwMUJFNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4UOuSZkZFfh4csXLk5Gnk3C7XjrXy4inMbTmeixpWS5aUfyuI EvPiZmYRUmOpBqvcQd0r+wn98l7o3uFumUv5Q/fTWHgyTmOvTj7EkamVhlK73Jed KWknEriId2NvsI8OWBw5XWY1Rrw6UhfmDkRtEtk0yRQX+rzd3Jnp0Y6Y7nQpPUY1 69ns18cR/l6UKWySxogMxv5CvENQR/WjDge6fJAz3fdXGyIPtv+q3pb/uF+EZ+KY 8WKsMNl1wld7eH268r1jf2r96UvFx803AAFE84zrtnDUE/v/srMZKKxaiDF65zf3 8Dulfoqjza3nKPdLI8j8yPUbd6uJ06S+9a6vAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUxg8jvpkezd0BMrZDzruNxyMBvlwwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDA4My94ZzhqdnBrZXpkMEJNclpEenJ1Tnh5TUJ2bHcucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDyubAMA0GCSqGSIb3DQEBCwUA A4IBAQApiq2xPQdQqaQgo4d83dLvwwZV4tori1sxoyaUw5bWiSDmoTZT1YQNUHpl Rp7Sp2/q6h+kYTFjSHAQazfKYjtgb5T69IV1R/AhJtXDcesm4naD0HsfYSQi8U3l yqtWtsh5eYqRkk78VusV1rWdk5FOaQ9yPQpMEDlocvQffI22VU0PXnCC3Vf+DCFR wXcvTgKNQ+JPZqClfQO2Din0RJkJvHjw8ISRtYpkiJxdh+1ck83fckrOBn+CS3wG 6PcQs0oDgjn5Jm6kQ2dqqYy0HT6nH51CeAwFAoEulHJx4jUqA9tR64qLVxEZBbdd E3fxmqIgLtFFcRHOOTlGt+472AtJ -----END CERTIFICATE-----Generated at Wed Apr 1 15:59:44 2026 by rpki-client