$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/KoVcHrfwY8kUhXQgWxqedTo5P5Y.roa File: KoVcHrfwY8kUhXQgWxqedTo5P5Y.roa (raw, json) Hash identifier: LkBjWckdAkB7trjc91BC+j1DIRGtKRSVA1Kc984oO8Q= Subject key identifier: 2A:85:5C:1E:B7:F0:63:C9:14:85:74:20:5B:1A:9E:75:3A:39:3F:96 Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: A5 Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/KoVcHrfwY8kUhXQgWxqedTo5P5Y.roa Signing time: Tue 31 Mar 2026 07:48:53 +0000 ROA not before: Tue 31 Mar 2026 07:48:53 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23816 IP address blocks: 182.22.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Mar 31 07:48:53 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2A855C1EB7F063C9148574205B1A9E753A393F96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:d7:74:ec:d3:82:d1:e1:c0:54:94:b3:8b: 9e:da:b6:ce:b0:77:aa:f7:f4:bb:9b:13:3d:66:ae: 1e:64:ce:e0:66:04:14:43:b4:c5:3f:38:5a:13:73: 8a:e2:e3:04:9e:c5:ad:44:29:b6:bd:97:cf:0d:5e: 19:49:4b:aa:f3:d1:dd:c1:64:1a:0a:96:ea:86:2d: 27:0a:97:a7:59:af:40:cb:3b:b7:ba:09:66:53:d2: 2d:ea:c0:4f:a3:e6:9b:c6:32:3c:64:84:32:02:a3: 39:08:a8:d6:45:d2:bb:d1:c8:8c:d3:9f:c0:47:74: 9a:7f:e0:5c:4e:81:c4:fe:b5:c0:68:f0:d8:6b:24: 95:74:9d:bd:bf:2c:52:fd:94:1b:a5:5f:66:4a:15: 9d:69:f0:2f:0f:d7:13:1c:5b:86:01:57:1f:06:2e: b6:5e:49:0d:98:3e:d7:28:85:75:db:8e:f2:7f:85: d5:ce:b0:77:25:10:e2:28:09:1b:b1:26:4c:81:69: 53:fd:44:32:c7:98:b3:86:60:9f:1a:a4:72:44:17: 81:f3:ba:8c:82:d2:96:9f:93:ab:58:9c:0f:0e:fc: 5c:af:90:26:b3:28:a4:a9:b7:de:5f:35:31:5c:f3: 7c:1f:5c:6e:b0:23:6b:bb:df:b3:9a:e2:cd:27:4b: f3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:85:5C:1E:B7:F0:63:C9:14:85:74:20:5B:1A:9E:75:3A:39:3F:96 X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/KoVcHrfwY8kUhXQgWxqedTo5P5Y.roa sbgp-ipAddrBlock: critical IPv4: 182.22.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7e:31:cd:b4:79:63:e5:b2:03:35:3e:21:b2:6c:fd:99:79:23: 1c:f3:63:fd:9f:af:77:c7:6a:02:7b:f3:30:5b:44:39:3e:39: a3:76:c0:32:e0:ee:86:66:97:64:9a:50:9b:e3:2e:d1:cb:6d: 18:8d:29:2d:71:b8:69:7a:32:84:6f:15:47:48:7b:2e:7f:6c: a8:1a:e4:c4:c7:01:38:22:51:dc:2c:e3:b2:ba:49:6b:79:2b: 50:a9:3c:17:10:95:07:c7:37:e0:e4:e6:ae:ea:01:a9:b1:e5: 25:58:ce:7e:51:78:f0:49:3e:48:63:bf:8a:7d:f6:b4:ab:1d: 4c:a8:88:61:c5:87:7f:ab:24:e3:c1:53:d2:1f:e7:58:d1:ca: ec:51:7f:05:22:f1:83:27:9b:22:10:92:51:4d:d0:2c:73:a2: 1b:b4:c5:d2:79:7d:c1:d2:13:55:af:62:d1:d9:26:fb:a7:ae: 8d:ac:0b:3a:83:b9:80:4c:bb:46:df:f2:92:80:dd:80:be:a3: 82:62:8b:9e:30:d7:fe:18:26:11:b5:b0:8c:41:46:f8:ad:dd: 08:8d:14:cf:f9:e2:75:dc:b7:1c:e8:69:1d:a1:2a:d6:86:2a: 1f:80:a8:ee:ee:6f:f0:c7:98:f3:cf:58:0b:cb:51:a9:ae:2c: 5b:bb:e3:d5 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTY0RkI3QzhDN0M2QjVDRDdDNzcwMTg4MkU4NTk3QzQyODM4RTAeFw0yNjAzMzEw NzQ4NTNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBODU1QzFFQjdGMDYz QzkxNDg1NzQyMDVCMUE5RTc1M0EzOTNGOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHtNd07NOC0eHAVJSzi57ats6wd6r39LubEz1mrh5kzuBmBBRD tMU/OFoTc4ri4wSexa1EKba9l88NXhlJS6rz0d3BZBoKluqGLScKl6dZr0DLO7e6 CWZT0i3qwE+j5pvGMjxkhDICozkIqNZF0rvRyIzTn8BHdJp/4FxOgcT+tcBo8Nhr JJV0nb2/LFL9lBulX2ZKFZ1p8C8P1xMcW4YBVx8GLrZeSQ2YPtcohXXbjvJ/hdXO sHclEOIoCRuxJkyBaVP9RDLHmLOGYJ8apHJEF4HzuoyC0pafk6tYnA8O/FyvkCaz KKSpt95fNTFc83wfXG6wI2u737Oa4s0nS/PBAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUKoVcHrfwY8kUhXQgWxqedTo5P5YwHwYDVR0jBBgwFoAUxJ5k+3yMfGtc18dw GILoWXxCg44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTE2L3hKNWstM3lNZkd0YzE4ZHdHSUxvV1h4Q2c0NC5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hKNWstM3lNZkd0YzE4ZHdHSUxv V1h4Q2c0NC5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDExNi9Lb1ZjSHJmd1k4a1VoWFFnV3hxZWRUbzVQNVkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHthYAMA0GCSqGSIb3DQEBCwUA A4IBAQB+Mc20eWPlsgM1PiGybP2ZeSMc82P9n693x2oCe/MwW0Q5PjmjdsAy4O6G ZpdkmlCb4y7Ry20YjSktcbhpejKEbxVHSHsuf2yoGuTExwE4IlHcLOOyuklreStQ qTwXEJUHxzfg5Oau6gGpseUlWM5+UXjwST5IY7+Kffa0qx1MqIhhxYd/qyTjwVPS H+dY0crsUX8FIvGDJ5siEJJRTdAsc6IbtMXSeX3B0hNVr2LR2Sb7p66NrAs6g7mA TLtG3/KSgN2AvqOCYoueMNf+GCYRtbCMQUb4rd0IjRTP+eJ13Lcc6GkdoSrWhiof gKju7m/wx5jzz1gLy1Gprixbu+PV -----END CERTIFICATE-----Generated at Wed Apr 1 23:09:39 2026 by rpki-client