$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/XbG-1EQR6sdNCyElR7XOHMGvrtA.roa File: XbG-1EQR6sdNCyElR7XOHMGvrtA.roa (raw, json) Hash identifier: yokHkwh7sKzvP5ifGgVC8aUO7iIAFHI49lutLDl4tjA= Subject key identifier: 5D:B1:BE:D4:44:11:EA:C7:4D:0B:21:25:47:B5:CE:1C:C1:AF:AE:D0 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 0153 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/XbG-1EQR6sdNCyElR7XOHMGvrtA.roa Signing time: Tue 31 Mar 2026 07:47:59 +0000 ROA not before: Tue 31 Mar 2026 07:47:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2914 IP address blocks: 120.29.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 12:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Mar 31 07:47:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5DB1BED44411EAC74D0B212547B5CE1CC1AFAED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fd:6c:ad:fa:fd:d6:23:5f:71:de:42:c8:9d: 2a:99:62:6c:c8:da:ca:73:a1:34:92:45:61:91:ea: 05:93:7f:e0:27:c0:07:4b:33:64:0a:98:dd:74:4c: db:54:57:01:9c:e6:f3:1c:ec:af:04:cb:d6:5b:b1: 1a:9c:44:51:fb:7a:8e:b1:71:99:fd:02:23:80:4c: 30:80:9f:38:fc:63:da:33:b4:d8:31:af:18:7c:45: 46:fc:9e:66:9d:f6:c1:7b:3c:b0:7a:a6:bf:72:7b: ff:21:ee:f6:b7:88:7a:be:fa:ff:5b:77:bd:51:45: 62:9b:8a:14:4c:ba:32:c5:3b:ca:bb:1b:f8:20:0d: af:4c:d3:d7:4b:f2:49:9a:9b:bc:79:80:21:48:d7: 60:d3:57:22:4a:da:d2:c8:f1:da:3c:3c:c6:98:ac: d3:15:14:fc:26:a6:3b:dd:2c:7f:29:18:7c:bc:96: f6:61:b7:1d:66:75:06:f6:74:46:a0:4c:16:45:c2: 6c:e8:0e:38:f3:20:35:fd:6a:c2:90:2c:6b:70:83: 65:19:18:6c:9e:be:35:25:70:56:36:d0:63:97:01: 81:fa:a1:46:02:2e:6e:ab:bf:6c:3b:d8:85:72:0a: ae:c6:00:c0:2e:3c:fe:36:08:02:cb:97:c3:f1:17: 7b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B1:BE:D4:44:11:EA:C7:4D:0B:21:25:47:B5:CE:1C:C1:AF:AE:D0 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/XbG-1EQR6sdNCyElR7XOHMGvrtA.roa sbgp-ipAddrBlock: critical IPv4: 120.29.144.0/21 Signature Algorithm: sha256WithRSAEncryption b2:f4:22:f4:29:2b:02:ab:57:2b:f4:ec:cc:d7:0f:f7:98:91: 4e:a8:27:76:63:a4:84:69:00:2a:b7:08:1f:2c:c2:8c:69:da: c4:95:a6:8f:d1:78:fc:8e:7a:8f:60:e1:55:07:07:bb:8e:73: 14:ca:80:94:7c:0a:71:7e:d6:8f:7e:ae:87:f0:c3:21:bd:eb: 22:d1:33:f9:5a:da:6c:cf:79:d6:cf:bd:3d:2f:6d:79:ee:de: 41:fd:79:67:31:df:72:66:37:55:63:a0:19:f8:3a:36:4b:58: 8b:99:78:8e:74:9b:46:73:2f:20:e4:a3:34:62:fc:da:9d:95: ae:70:ff:97:2e:04:e5:0e:d4:eb:cf:2a:05:96:68:09:35:32: 3a:99:73:22:32:2e:4e:54:c2:0a:31:9e:dc:9a:66:c8:c3:28: 44:a5:2d:86:64:92:46:75:dd:1c:9b:5e:1f:d4:f6:a1:c2:44: 8a:fc:95:c7:6a:4a:f7:10:d9:44:de:f4:df:3e:03:df:ca:63: 37:80:0e:ad:6f:b8:07:d3:20:13:a3:80:30:73:d9:c6:63:d6: 40:18:d6:12:3b:83:b2:31:0f:42:da:f2:fc:bd:42:a6:83:e5: 93:ad:3b:76:b1:f4:d8:99:69:82:e2:a4:ed:e5:f3:a3:5d:22: 08:b5:25:76 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNjAzMzEw NzQ3NTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVEQjFCRUQ0NDQxMUVB Qzc0RDBCMjEyNTQ3QjVDRTFDQzFBRkFFRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf/Wyt+v3WI19x3kLInSqZYmzI2spzoTSSRWGR6gWTf+AnwAdL M2QKmN10TNtUVwGc5vMc7K8Ey9ZbsRqcRFH7eo6xcZn9AiOATDCAnzj8Y9oztNgx rxh8RUb8nmad9sF7PLB6pr9ye/8h7va3iHq++v9bd71RRWKbihRMujLFO8q7G/gg Da9M09dL8kmam7x5gCFI12DTVyJK2tLI8do8PMaYrNMVFPwmpjvdLH8pGHy8lvZh tx1mdQb2dEagTBZFwmzoDjjzIDX9asKQLGtwg2UZGGyevjUlcFY20GOXAYH6oUYC Lm6rv2w72IVyCq7GAMAuPP42CALLl8PxF3tFAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUXbG+1EQR6sdNCyElR7XOHMGvrtAwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDEyOC9YYkctMUVRUjZzZE5DeUVsUjdYT0hNR3ZydEEucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDeB2QMA0GCSqGSIb3DQEBCwUA A4IBAQCy9CL0KSsCq1cr9OzM1w/3mJFOqCd2Y6SEaQAqtwgfLMKMadrElaaP0Xj8 jnqPYOFVBwe7jnMUyoCUfApxftaPfq6H8MMhvesi0TP5Wtpsz3nWz709L2157t5B /XlnMd9yZjdVY6AZ+Do2S1iLmXiOdJtGcy8g5KM0YvzanZWucP+XLgTlDtTrzyoF lmgJNTI6mXMiMi5OVMIKMZ7cmmbIwyhEpS2GZJJGdd0cm14f1PahwkSK/JXHakr3 ENlE3vTfPgPfymM3gA6tb7gH0yATo4Awc9nGY9ZAGNYSO4OyMQ9C2vL8vUKmg+WT rTt2sfTYmWmC4qTt5fOjXSIItSV2 -----END CERTIFICATE-----Generated at Wed Apr 8 14:50:14 2026 by rpki-client