$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21116/EjrMEC4pGdtUFrP8AxI3uRzlNNs.roa File: EjrMEC4pGdtUFrP8AxI3uRzlNNs.roa (raw, json) Hash identifier: U532mGYslYL942FbtU6oMz9aNiNiRialSrfBBeFY12Y= Subject key identifier: 12:3A:CC:10:2E:29:19:DB:54:16:B3:FC:03:12:37:B9:1C:E5:34:DB Certificate issuer: /CN=72F8ABBA4AB4F650B2C69BA8C6CA5ED22DFE354F Certificate serial: 7B Authority key identifier: 72:F8:AB:BA:4A:B4:F6:50:B2:C6:9B:A8:C6:CA:5E:D2:2D:FE:35:4F Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cvirukq09lCyxpuoxspe0i3-NU8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/EjrMEC4pGdtUFrP8AxI3uRzlNNs.roa Signing time: Tue 31 Mar 2026 07:49:18 +0000 ROA not before: Tue 31 Mar 2026 07:49:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 24296 IP address blocks: 210.189.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/cvirukq09lCyxpuoxspe0i3-NU8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/cvirukq09lCyxpuoxspe0i3-NU8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cvirukq09lCyxpuoxspe0i3-NU8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72F8ABBA4AB4F650B2C69BA8C6CA5ED22DFE354F Validity Not Before: Mar 31 07:49:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=123ACC102E2919DB5416B3FC031237B91CE534DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:61:ac:b3:80:c1:8c:68:86:cf:a9:aa:42:9d: 89:58:2e:e6:8e:a7:a9:ed:76:e6:13:23:00:26:af: bb:9a:2a:a6:e7:88:01:79:ac:4a:d8:99:27:ed:bb: 7b:fd:1c:bb:4e:1b:e8:5f:9a:f9:b7:b9:b1:71:58: 9a:d4:08:08:4b:0d:56:21:7d:d1:8e:90:3f:68:96: 1f:f3:f4:ca:2e:fc:15:86:0e:56:b1:cd:cb:79:4e: d3:0c:70:47:2d:36:12:fe:e9:3d:7a:80:d9:30:ed: d8:92:f7:22:2c:09:cb:7e:12:0b:73:32:aa:5c:ee: 25:ab:84:0d:cb:da:c8:3f:72:79:0f:2d:a4:89:4e: ba:f8:82:99:1c:97:6e:75:e3:66:dd:63:21:ce:50: ea:17:c6:b4:f9:9a:6e:22:f2:81:9e:48:83:3b:c5: 8a:82:f4:15:b8:72:f1:ea:89:f5:55:7c:f0:62:1a: 95:7a:7d:80:ab:a2:a6:7c:c2:1b:8f:01:a4:04:77: 4a:0e:7a:16:0a:2a:ff:f1:82:6a:73:7c:c1:db:9f: 15:5d:4d:e7:ed:9f:d6:c6:96:c3:97:b8:9b:6e:6b: 01:ac:c3:08:4b:89:62:ab:8d:19:71:14:04:76:5a: d2:38:31:c6:d6:d8:ca:8f:70:f9:55:70:37:2f:cf: 9d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:3A:CC:10:2E:29:19:DB:54:16:B3:FC:03:12:37:B9:1C:E5:34:DB X509v3 Authority Key Identifier: keyid:72:F8:AB:BA:4A:B4:F6:50:B2:C6:9B:A8:C6:CA:5E:D2:2D:FE:35:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/cvirukq09lCyxpuoxspe0i3-NU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cvirukq09lCyxpuoxspe0i3-NU8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21116/EjrMEC4pGdtUFrP8AxI3uRzlNNs.roa sbgp-ipAddrBlock: critical IPv4: 210.189.192.0/20 Signature Algorithm: sha256WithRSAEncryption 6f:d6:f6:68:c9:31:f9:25:2d:1f:92:a2:a6:10:8e:d4:28:ef: 98:f6:95:1a:cf:9c:04:d3:55:e8:a0:30:c8:71:44:bc:32:40: 5a:16:b7:9e:ee:91:35:d4:8e:b3:90:fe:8c:50:cd:18:3a:e5: de:55:88:b6:80:6c:60:45:ce:41:05:31:f2:a1:5d:86:8d:21: 28:ef:36:85:3b:95:01:47:1c:04:c5:07:c0:60:62:ed:29:ed: 72:db:df:e3:04:ca:12:ec:2b:29:47:81:cb:21:2e:88:90:62: d2:67:d5:e7:23:b0:37:73:33:ca:c1:dc:66:55:57:ae:f6:3d: cc:0b:a8:54:5f:31:42:48:40:17:9c:61:a4:07:eb:c1:e7:37: 19:e2:ac:76:07:1e:b6:a3:fe:5b:9a:5d:b3:72:0e:65:01:5d: bd:bc:88:67:e6:42:fb:66:c2:41:db:72:aa:2f:01:2f:ec:27: 1d:77:dd:73:58:53:97:9a:f5:7d:5f:f7:fc:57:38:61:53:18: 90:4f:04:89:00:62:82:a2:13:b5:3d:4f:ec:30:a6:23:7e:32: 81:0a:f4:df:d8:0b:c4:f9:dc:2b:6c:3e:e4:e9:db:eb:85:8a: b4:43:50:5a:5d:4f:b0:65:ca:bd:f1:e4:b0:1b:d8:d7:f4:e2: 93:a6:6e:be -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MkY4 QUJCQTRBQjRGNjUwQjJDNjlCQThDNkNBNUVEMjJERkUzNTRGMB4XDTI2MDMzMTA3 NDkxOFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMTIzQUNDMTAyRTI5MTlE QjU0MTZCM0ZDMDMxMjM3QjkxQ0U1MzREQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALphrLOAwYxohs+pqkKdiVgu5o6nqe125hMjACavu5oqpueIAXms StiZJ+27e/0cu04b6F+a+be5sXFYmtQICEsNViF90Y6QP2iWH/P0yi78FYYOVrHN y3lO0wxwRy02Ev7pPXqA2TDt2JL3IiwJy34SC3MyqlzuJauEDcvayD9yeQ8tpIlO uviCmRyXbnXjZt1jIc5Q6hfGtPmabiLygZ5IgzvFioL0Fbhy8eqJ9VV88GIalXp9 gKuipnzCG48BpAR3Sg56Fgoq//GCanN8wdufFV1N5+2f1saWw5e4m25rAazDCEuJ YquNGXEUBHZa0jgxxtbYyo9w+VVwNy/PnYcCAwEAAaOCAd0wggHZMB0GA1UdDgQW BBQSOswQLikZ21QWs/wDEje5HOU02zAfBgNVHSMEGDAWgBRy+Ku6SrT2ULLGm6jG yl7SLf41TzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjExMTYvY3ZpcnVrcTA5bEN5eHB1b3hzcGUwaTMtTlU4LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvY3ZpcnVrcTA5bEN5eHB1b3hzcGUw aTMtTlU4LmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIxMTE2L0Vqck1FQzRwR2R0VUZyUDhBeEkzdVJ6bE5Ocy5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSvcAwDQYJKoZIhvcNAQELBQAD ggEBAG/W9mjJMfklLR+SoqYQjtQo75j2lRrPnATTVeigMMhxRLwyQFoWt57ukTXU jrOQ/oxQzRg65d5ViLaAbGBFzkEFMfKhXYaNISjvNoU7lQFHHATFB8BgYu0p7XLb 3+MEyhLsKylHgcshLoiQYtJn1ecjsDdzM8rB3GZVV672PcwLqFRfMUJIQBecYaQH 68HnNxnirHYHHraj/luaXbNyDmUBXb28iGfmQvtmwkHbcqovAS/sJx133XNYU5ea 9X1f9/xXOGFTGJBPBIkAYoKiE7U9T+wwpiN+MoEK9N/YC8T53CtsPuTp2+uFirRD UFpdT7Blyr3x5LAb2Nf04pOmbr4= -----END CERTIFICATE-----Generated at Wed Apr 1 16:44:30 2026 by rpki-client