$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/0OPDS_8mQjd1qGfpeB_G1anQKfk.roa File: 0OPDS_8mQjd1qGfpeB_G1anQKfk.roa (raw, json) Hash identifier: 8dB5dSxNmkXNzwjtpYWdMy+/LN6IMb+l+j3ISQXUzI8= Subject key identifier: D0:E3:C3:4B:FF:26:42:37:75:A8:67:E9:78:1F:C6:D5:A9:D0:29:F9 Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: B5 Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/0OPDS_8mQjd1qGfpeB_G1anQKfk.roa Signing time: Tue 31 Mar 2026 07:48:59 +0000 ROA not before: Tue 31 Mar 2026 07:48:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23816 IP address blocks: 211.14.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Mar 31 07:48:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D0E3C34BFF26423775A867E9781FC6D5A9D029F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4a:e1:d8:fe:a1:5d:ce:88:47:b1:ca:15:cb: 1f:5b:58:73:96:37:61:9c:b1:ca:18:3c:b1:85:0b: a6:62:01:2b:36:51:2b:49:4e:44:e0:ee:2a:13:03: f8:70:6b:8c:84:c7:68:af:7f:94:62:7a:33:ca:85: f8:db:a8:49:42:9c:21:42:b1:4e:ec:78:6e:d7:0a: 14:e2:d5:e5:ba:a6:04:ca:b3:fd:81:36:98:88:2c: ad:5a:0d:34:4c:98:f5:32:bc:f0:dd:4e:91:d6:f5: 1f:a8:e0:66:10:9a:e0:e6:2d:6e:fa:fd:47:c8:4f: a1:d6:e6:1a:55:73:a4:ea:0e:1c:9a:9d:3a:cb:e4: ab:3c:3f:0f:f5:c6:a1:4a:7c:4a:86:50:bc:7e:ca: 37:a5:bf:e3:6f:bb:8d:49:8d:0a:f7:23:ab:a9:82: 22:69:3c:92:71:a7:1a:36:40:e8:d3:5e:47:9b:4e: 19:b6:45:49:77:99:f8:f7:80:52:6f:96:d2:13:68: b5:b1:1d:b6:c2:06:c0:e0:9f:f9:9d:55:51:7f:09: b3:2c:b8:4d:8f:f3:c3:73:31:b0:d6:5d:fd:e8:12: 8f:12:8f:26:b9:4f:73:36:82:60:70:7b:68:4c:d6: cd:95:67:e4:61:ec:aa:8d:c5:a0:11:77:d8:04:87: b2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E3:C3:4B:FF:26:42:37:75:A8:67:E9:78:1F:C6:D5:A9:D0:29:F9 X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/0OPDS_8mQjd1qGfpeB_G1anQKfk.roa sbgp-ipAddrBlock: critical IPv4: 211.14.12.0/22 Signature Algorithm: sha256WithRSAEncryption 55:8f:2e:e3:8e:d8:f4:43:73:aa:a4:67:3a:99:f7:45:af:ad: 8d:e4:f5:9e:c1:c5:fc:99:31:fd:ff:39:29:d9:6e:37:95:38: e5:3c:88:95:a7:20:ac:6b:25:63:fb:69:c5:be:a6:12:95:2b: ce:f0:0e:a4:d5:21:72:14:a9:4f:ea:74:56:29:18:7d:68:a4: 99:bc:16:a9:62:16:37:a0:c8:7b:32:07:aa:73:7e:7f:ce:36: 4c:af:d9:59:a6:00:d9:54:4f:55:17:80:47:7f:ea:44:91:39: d7:e1:d9:2e:e5:26:e2:35:3e:9e:e7:d7:1f:ac:63:4f:1d:91: eb:ae:8f:a1:44:81:2e:79:ef:ea:1e:f8:bd:bf:d6:a2:24:b7: 97:4b:f7:d5:86:fd:5a:dc:b9:da:c7:9e:72:3a:2c:a9:bf:1f: bc:98:48:f5:0e:7e:77:b2:7a:f3:61:3c:d5:dd:bd:da:f9:34: 58:3a:7b:cc:be:05:af:4a:80:49:e8:9f:24:05:b0:4e:b3:3b: b1:94:70:95:01:3a:84:7d:90:ad:a4:0f:90:23:82:ed:17:4e: 49:51:f1:bb:d0:af:7b:5d:b3:04:3d:85:09:70:50:62:27:bd: 2c:92:dd:6f:f0:2b:ad:54:81:0a:99:86:bf:79:79:d4:bb:8f: f0:b3:4a:44 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICALUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTY0RkI3QzhDN0M2QjVDRDdDNzcwMTg4MkU4NTk3QzQyODM4RTAeFw0yNjAzMzEw NzQ4NTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQwRTNDMzRCRkYyNjQy Mzc3NUE4NjdFOTc4MUZDNkQ1QTlEMDI5RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuSuHY/qFdzohHscoVyx9bWHOWN2GcscoYPLGFC6ZiASs2UStJ TkTg7ioTA/hwa4yEx2ivf5RiejPKhfjbqElCnCFCsU7seG7XChTi1eW6pgTKs/2B NpiILK1aDTRMmPUyvPDdTpHW9R+o4GYQmuDmLW76/UfIT6HW5hpVc6TqDhyanTrL 5Ks8Pw/1xqFKfEqGULx+yjelv+Nvu41JjQr3I6upgiJpPJJxpxo2QOjTXkebThm2 RUl3mfj3gFJvltITaLWxHbbCBsDgn/mdVVF/CbMsuE2P88NzMbDWXf3oEo8Sjya5 T3M2gmBwe2hM1s2VZ+Rh7KqNxaARd9gEh7I9AgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQU0OPDS/8mQjd1qGfpeB/G1anQKfkwHwYDVR0jBBgwFoAUxJ5k+3yMfGtc18dw GILoWXxCg44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTE2L3hKNWstM3lNZkd0YzE4ZHdHSUxvV1h4Q2c0NC5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hKNWstM3lNZkd0YzE4ZHdHSUxv V1h4Q2c0NC5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDExNi8wT1BEU184bVFqZDFxR2ZwZUJfRzFhblFLZmsucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC0w4MMA0GCSqGSIb3DQEBCwUA A4IBAQBVjy7jjtj0Q3OqpGc6mfdFr62N5PWewcX8mTH9/zkp2W43lTjlPIiVpyCs ayVj+2nFvqYSlSvO8A6k1SFyFKlP6nRWKRh9aKSZvBapYhY3oMh7Mgeqc35/zjZM r9lZpgDZVE9VF4BHf+pEkTnX4dku5SbiNT6e59cfrGNPHZHrro+hRIEuee/qHvi9 v9aiJLeXS/fVhv1a3Lnax55yOiypvx+8mEj1Dn53snrzYTzV3b3a+TRYOnvMvgWv SoBJ6J8kBbBOszuxlHCVATqEfZCtpA+QI4LtF05JUfG70K97XbMEPYUJcFBiJ70s kt1v8CutVIEKmYa/eXnUu4/ws0pE -----END CERTIFICATE-----Generated at Wed Apr 1 23:13:07 2026 by rpki-client