$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21116/4r-TFt-Lqk6zb27Q5ZJ8gfWPO_o.roa File: 4r-TFt-Lqk6zb27Q5ZJ8gfWPO_o.roa (raw, json) Hash identifier: Q89vL6Ie29Wqc7hR1WGYfTa0d2Dhkrfg5vZR6pWpYD4= Subject key identifier: E2:BF:93:16:DF:8B:AA:4E:B3:6F:6E:D0:E5:92:7C:81:F5:8F:3B:FA Certificate issuer: /CN=85FB862022BBE5CC40462FBFD8B6BB81135D65FD Certificate serial: 57 Authority key identifier: 85:FB:86:20:22:BB:E5:CC:40:46:2F:BF:D8:B6:BB:81:13:5D:65:FD Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/4r-TFt-Lqk6zb27Q5ZJ8gfWPO_o.roa Signing time: Tue 31 Mar 2026 07:49:16 +0000 ROA not before: Tue 31 Mar 2026 07:49:16 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 24296 IP address blocks: 154.34.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85FB862022BBE5CC40462FBFD8B6BB81135D65FD Validity Not Before: Mar 31 07:49:16 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E2BF9316DF8BAA4EB36F6ED0E5927C81F58F3BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2c:59:44:42:4c:bc:fa:6f:1e:98:79:f4:3f: e2:5b:b6:a7:dc:ba:03:eb:a9:cc:11:3a:34:73:e0: a0:b5:d5:f0:fc:f5:2f:58:22:f8:33:43:b2:c0:97: 64:34:51:df:5d:23:da:14:a2:6e:68:63:61:97:5a: 85:d5:ac:c5:89:03:99:cb:51:ba:dc:d8:2e:15:23: 61:41:53:40:39:7f:ec:41:96:e9:47:d2:f9:42:a8: 96:05:e3:5d:ea:94:f5:13:96:71:86:c0:5c:4c:a3: 07:10:43:18:cc:ca:d8:2d:46:23:4e:05:79:95:43: e4:03:5f:6a:94:74:1c:88:28:ae:29:e1:17:a7:fb: 05:e6:97:4c:13:d3:ec:56:e3:01:82:75:11:b8:46: d4:84:32:2d:fc:3a:65:77:2c:8f:6e:00:5a:31:39: d7:32:85:3d:bb:24:8e:34:84:00:e3:6f:e3:a5:bd: 6e:de:a7:6f:3f:0e:00:a3:25:1a:91:e5:1f:4a:26: cd:0a:06:71:02:ed:6e:8a:53:6b:a9:c9:0f:4f:86: 31:e6:1b:c4:e2:b1:ba:b1:d0:a8:1d:a4:00:97:1b: 70:5a:8b:9b:ea:e6:8a:1c:03:03:b2:88:de:ce:ad: 78:2d:f9:b7:bb:5d:3b:2e:48:61:a8:ed:a0:81:b6: 74:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:BF:93:16:DF:8B:AA:4E:B3:6F:6E:D0:E5:92:7C:81:F5:8F:3B:FA X509v3 Authority Key Identifier: keyid:85:FB:86:20:22:BB:E5:CC:40:46:2F:BF:D8:B6:BB:81:13:5D:65:FD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/hfuGICK75cxARi-_2La7gRNdZf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hfuGICK75cxARi-_2La7gRNdZf0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/4r-TFt-Lqk6zb27Q5ZJ8gfWPO_o.roa sbgp-ipAddrBlock: critical IPv4: 154.34.0.0/18 Signature Algorithm: sha256WithRSAEncryption ad:dd:2b:4d:57:b7:59:dc:7d:2a:32:bc:6c:d3:1c:45:0f:9f: 4b:2d:1c:de:ec:0c:77:55:14:d8:c5:02:09:18:65:96:ff:34: c1:9d:a1:36:fa:fa:72:36:66:ce:52:9b:68:be:32:22:10:aa: 81:c0:5d:22:b9:c5:d0:49:3e:5e:11:90:bd:70:de:85:17:a0: cd:7a:7e:b1:7a:f8:bd:3d:bc:ae:fe:84:7e:04:63:11:24:c5: d4:c5:1c:5e:0e:0d:6d:a4:61:26:31:53:24:6f:c8:df:04:83: f0:df:8f:47:a4:32:cd:b7:b4:c5:95:48:fb:e1:a7:dd:54:63: 93:ee:b4:f2:30:f3:05:72:a1:3b:1e:52:eb:e0:76:23:b6:8d: 48:64:66:49:d7:a3:39:52:25:26:57:8d:dd:f4:47:6b:12:6a: f4:8a:a2:24:d0:c6:71:c9:11:d5:a2:9c:4a:06:72:6e:de:5e: 52:34:30:04:b4:71:32:4a:60:59:c2:5e:27:77:7f:1b:23:fb: 93:c9:ef:37:18:38:92:5b:61:b3:af:61:37:e0:d7:9c:ab:d7: 56:d8:81:4a:21:4f:e3:3b:05:21:cd:29:d5:62:32:26:17:3b: 3b:6a:96:67:b3:ed:05:23:db:6f:11:13:71:ea:ec:e9:85:5c: 7b:5b:99:ef -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUZC ODYyMDIyQkJFNUNDNDA0NjJGQkZEOEI2QkI4MTEzNUQ2NUZEMB4XDTI2MDMzMTA3 NDkxNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRTJCRjkzMTZERjhCQUE0 RUIzNkY2RUQwRTU5MjdDODFGNThGM0JGQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJwsWURCTLz6bx6YefQ/4lu2p9y6A+upzBE6NHPgoLXV8Pz1L1gi +DNDssCXZDRR310j2hSibmhjYZdahdWsxYkDmctRutzYLhUjYUFTQDl/7EGW6UfS +UKolgXjXeqU9ROWcYbAXEyjBxBDGMzK2C1GI04FeZVD5ANfapR0HIgorinhF6f7 BeaXTBPT7FbjAYJ1EbhG1IQyLfw6ZXcsj24AWjE51zKFPbskjjSEAONv46W9bt6n bz8OAKMlGpHlH0omzQoGcQLtbopTa6nJD0+GMeYbxOKxurHQqB2kAJcbcFqLm+rm ihwDA7KI3s6teC35t7tdOy5IYajtoIG2dHUCAwEAAaOCAd0wggHZMB0GA1UdDgQW BBTiv5MW34uqTrNvbtDlknyB9Y87+jAfBgNVHSMEGDAWgBSF+4YgIrvlzEBGL7/Y truBE11l/TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjExMTYvaGZ1R0lDSzc1Y3hBUmktXzJMYTdnUk5kWmYwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaGZ1R0lDSzc1Y3hBUmktXzJMYTdn Uk5kWmYwLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIxMTE2LzRyLVRGdC1McWs2emIyN1E1Wko4Z2ZXUE9fby5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAaaIgAwDQYJKoZIhvcNAQELBQAD ggEBAK3dK01Xt1ncfSoyvGzTHEUPn0stHN7sDHdVFNjFAgkYZZb/NMGdoTb6+nI2 Zs5Sm2i+MiIQqoHAXSK5xdBJPl4RkL1w3oUXoM16frF6+L09vK7+hH4EYxEkxdTF HF4ODW2kYSYxUyRvyN8Eg/Dfj0ekMs23tMWVSPvhp91UY5PutPIw8wVyoTseUuvg diO2jUhkZknXozlSJSZXjd30R2sSavSKoiTQxnHJEdWinEoGcm7eXlI0MAS0cTJK YFnCXid3fxsj+5PJ7zcYOJJbYbOvYTfg15yr11bYgUohT+M7BSHNKdViMiYXOztq lmez7QUj228RE3Hq7OmFXHtbme8= -----END CERTIFICATE-----Generated at Wed Apr 1 14:10:07 2026 by rpki-client