$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/i1JpL5N5It7SZy5Vglw7r1BQRXs.roa File: i1JpL5N5It7SZy5Vglw7r1BQRXs.roa (raw, json) Hash identifier: BwIoFuggKV0XmUxBv6wf+siAkXLvGWn8KDBm4aDED/0= Subject key identifier: 8B:52:69:2F:93:79:22:DE:D2:67:2E:55:82:5C:3B:AF:50:50:45:7B Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 0149 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/i1JpL5N5It7SZy5Vglw7r1BQRXs.roa Signing time: Tue 31 Mar 2026 07:47:53 +0000 ROA not before: Tue 31 Mar 2026 07:47:53 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2914 IP address blocks: 117.103.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 12:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Mar 31 07:47:53 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8B52692F937922DED2672E55825C3BAF5050457B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:69:11:8e:47:91:f8:91:a8:8c:db:38:23:72: 50:48:63:1c:66:d6:58:2a:b2:4d:93:77:ca:87:59: a4:fb:cd:da:00:8f:ae:6c:2d:50:05:3c:60:56:20: 9e:82:22:05:72:ad:a2:51:83:63:6b:ed:93:5f:10: 2e:2e:83:21:f7:ee:01:5d:36:e2:f3:97:44:c8:47: fc:4e:75:2a:c3:7b:c2:36:fd:f9:26:d2:56:66:40: 36:c2:eb:e1:ff:19:a6:d5:bd:2f:37:e9:3b:59:74: 1a:cd:8a:de:46:02:1e:92:6d:ad:c9:42:be:59:2e: e4:65:17:7b:48:34:5c:06:a5:b7:03:86:25:ae:02: 9d:98:d9:9c:f3:24:65:d3:23:6a:19:f1:2f:74:3a: ff:68:77:97:71:12:7b:11:dc:4f:cc:11:e9:96:28: 22:9c:b7:2a:be:19:91:d0:45:ca:ee:3d:8b:e2:a6: 3a:86:a3:75:49:95:c1:74:7f:a2:d2:e8:e4:fe:53: bd:01:19:bf:f5:b1:cd:4c:7e:1e:de:50:d6:74:2c: 30:0f:2c:84:4c:96:2b:ac:8d:7f:7d:b8:53:7d:3a: b3:41:ad:6c:35:66:af:34:52:5e:95:a2:29:0d:8e: db:83:4a:93:08:46:4c:b4:92:41:22:4c:e2:2a:22: 6f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:52:69:2F:93:79:22:DE:D2:67:2E:55:82:5C:3B:AF:50:50:45:7B X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/i1JpL5N5It7SZy5Vglw7r1BQRXs.roa sbgp-ipAddrBlock: critical IPv4: 117.103.176.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:ea:7e:6f:14:ba:f9:13:b5:d5:64:5c:d2:ae:f8:e9:bd:0c: 1c:39:70:9f:ca:3b:85:97:cb:3e:7b:a1:9d:70:7d:47:a1:12: fe:14:e7:3d:4a:10:0f:9d:08:c7:f3:c7:f5:58:68:50:73:12: d7:22:7d:34:8e:97:65:26:83:24:02:21:ae:55:d2:5d:50:ae: ed:09:66:b4:5d:55:a0:b2:0d:1e:7a:7f:80:91:2e:18:56:2a: 1e:a2:27:19:f2:bf:56:f9:1a:d5:01:a3:26:47:ba:28:f9:28: aa:c6:72:53:4e:4d:83:c6:02:f0:ec:ae:e3:47:7c:35:74:c2: b6:89:f8:a0:6c:fa:bd:77:37:5d:50:68:dc:0a:cd:13:49:97: 6f:d9:7e:8b:85:cb:a6:fc:ad:87:24:ea:92:39:23:35:bc:6a: 6b:7b:88:12:6f:3d:f2:b6:db:39:12:da:b4:7a:7f:1e:0f:7c: 98:44:ab:5c:45:eb:ba:4b:69:e0:3f:72:24:d6:57:cf:55:aa: 9f:c7:e7:68:95:6a:1e:e7:f1:ad:a5:22:45:c2:33:d6:8f:a2: 60:8a:3c:ea:97:c9:36:f3:0d:f5:7c:c2:78:74:2b:e7:4d:83: 4e:22:99:45:7d:48:a2:dc:93:01:bc:6a:c8:8d:12:51:1d:f1: 15:86:e9:49 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNjAzMzEw NzQ3NTNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhCNTI2OTJGOTM3OTIy REVEMjY3MkU1NTgyNUMzQkFGNTA1MDQ1N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnaRGOR5H4kaiM2zgjclBIYxxm1lgqsk2Td8qHWaT7zdoAj65s LVAFPGBWIJ6CIgVyraJRg2Nr7ZNfEC4ugyH37gFdNuLzl0TIR/xOdSrDe8I2/fkm 0lZmQDbC6+H/GabVvS836TtZdBrNit5GAh6Sba3JQr5ZLuRlF3tINFwGpbcDhiWu Ap2Y2ZzzJGXTI2oZ8S90Ov9od5dxEnsR3E/MEemWKCKctyq+GZHQRcruPYvipjqG o3VJlcF0f6LS6OT+U70BGb/1sc1Mfh7eUNZ0LDAPLIRMliusjX99uFN9OrNBrWw1 Zq80Ul6VoikNjtuDSpMIRky0kkEiTOIqIm9VAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUi1JpL5N5It7SZy5Vglw7r1BQRXswHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDEyOC9pMUpwTDVONUl0N1NaeTVWZ2x3N3IxQlFSWHMucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdWewMA0GCSqGSIb3DQEBCwUA A4IBAQA86n5vFLr5E7XVZFzSrvjpvQwcOXCfyjuFl8s+e6GdcH1HoRL+FOc9ShAP nQjH88f1WGhQcxLXIn00jpdlJoMkAiGuVdJdUK7tCWa0XVWgsg0een+AkS4YVioe oicZ8r9W+RrVAaMmR7oo+SiqxnJTTk2DxgLw7K7jR3w1dMK2ifigbPq9dzddUGjc Cs0TSZdv2X6Lhcum/K2HJOqSOSM1vGpre4gSbz3ytts5Etq0en8eD3yYRKtcReu6 S2ngP3Ik1lfPVaqfx+dolWoe5/GtpSJFwjPWj6Jgijzql8k28w31fMJ4dCvnTYNO IplFfUii3JMBvGrIjRJRHfEVhulJ -----END CERTIFICATE-----Generated at Wed Apr 8 14:50:13 2026 by rpki-client