$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/597/MBbrh3OByOmAxgyILiZk63KpN_g.roa File: MBbrh3OByOmAxgyILiZk63KpN_g.roa (raw, json) Hash identifier: /f94oTvxefENrap+SKTNzvBH1E432QeItSFK4hwKr1w= Subject key identifier: 30:16:EB:87:73:81:C8:E9:80:C6:0C:88:2E:26:64:EB:72:A9:37:F8 Certificate issuer: /CN=71F76FA07735F685991FC882C885E21EFBB161BC Certificate serial: 97 Authority key identifier: 71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/MBbrh3OByOmAxgyILiZk63KpN_g.roa Signing time: Tue 31 Mar 2026 08:30:41 +0000 ROA not before: Tue 31 Mar 2026 08:30:41 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 37904 IP address blocks: 218.231.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 10:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71F76FA07735F685991FC882C885E21EFBB161BC Validity Not Before: Mar 31 08:30:41 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3016EB877381C8E980C60C882E2664EB72A937F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fa:60:54:86:6a:6e:46:fa:39:0c:8e:d4:b7: 1d:54:5f:4a:f4:a8:8e:81:5f:92:b7:f6:29:49:d6: ee:17:f1:79:15:6d:c1:ab:74:f7:f9:16:0b:4a:08: 23:5a:f9:8b:f3:4a:e9:7d:90:4e:29:c9:7f:3b:25: 85:87:ed:1d:96:6e:1a:cc:28:2c:23:73:3d:ac:61: 03:58:67:f5:8a:f0:34:7c:e8:c2:41:35:a7:68:76: 3d:fa:ec:47:7c:9f:99:7c:38:7d:39:21:62:e0:80: 9e:5d:54:ea:33:6f:45:55:05:d1:06:10:d5:56:99: 99:46:04:cc:81:a4:ef:ab:6d:64:d5:c6:55:a3:cc: 59:2f:fd:2b:72:28:90:69:95:c9:ba:8e:e0:cf:b3: b6:18:5a:d1:79:d7:60:f0:4c:83:09:20:35:3b:7e: 61:57:93:18:c7:ec:ca:5a:8b:f0:6c:19:b6:37:72: 5e:e6:a4:e0:91:fa:51:09:5b:48:1b:04:5e:b5:5d: ea:aa:d6:19:b3:aa:3a:76:d7:f9:53:0a:62:f4:13: 5d:eb:d8:89:28:b8:ef:b9:ae:78:c4:77:ab:d5:e5: 0a:79:b4:c8:6e:96:57:54:d4:2a:74:0d:aa:73:1a: 02:07:a3:d8:62:9a:f3:fa:47:f0:fa:32:b7:52:6a: 5d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:16:EB:87:73:81:C8:E9:80:C6:0C:88:2E:26:64:EB:72:A9:37:F8 X509v3 Authority Key Identifier: keyid:71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/MBbrh3OByOmAxgyILiZk63KpN_g.roa sbgp-ipAddrBlock: critical IPv4: 218.231.244.0/23 Signature Algorithm: sha256WithRSAEncryption 95:d8:8c:a7:fa:18:22:a0:1b:92:66:a4:81:49:98:df:36:26: 4e:68:2f:0a:de:3a:51:6c:b6:ba:dc:26:b8:d0:3d:06:fb:f2: d1:75:7b:7a:9a:c4:8b:a6:3a:0b:32:84:fb:6d:5c:7d:63:ac: a5:02:de:e7:ee:cd:2f:a5:22:d3:cd:a8:0e:fb:76:ff:b3:d3: 0c:b5:78:df:79:a6:ef:a8:79:10:c2:bd:b7:50:7c:dd:8e:e0: b7:87:8f:94:07:55:d8:bd:9b:8d:89:2d:52:9c:9f:73:e0:ac: ec:77:af:52:58:6e:b2:ba:4e:93:de:45:38:c3:87:21:50:b8: 54:7c:54:68:78:82:e1:ee:60:d4:b3:93:b6:f4:4d:f6:fd:c3: 24:60:ff:07:14:6c:8a:f0:c6:00:61:f1:57:6c:df:8d:73:d7: 27:0d:d6:b6:05:cf:a3:4e:c3:0f:fd:ee:91:f6:e1:25:75:81: 08:27:77:32:d7:d4:17:bd:4d:9e:8f:be:73:2b:7d:1d:85:00: fc:f1:fc:e5:5d:89:25:c0:5d:2c:c3:2a:dd:aa:66:21:c9:c9: 86:56:28:f0:f5:7e:05:c3:93:5c:5f:d1:64:67:eb:e0:08:88: bc:f6:a1:ed:90:98:6e:71:e4:2f:47:bf:1b:dd:6b:99:e0:59: 1c:7b:b0:a2 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFG NzZGQTA3NzM1RjY4NTk5MUZDODgyQzg4NUUyMUVGQkIxNjFCQzAeFw0yNjAzMzEw ODMwNDFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMwMTZFQjg3NzM4MUM4 RTk4MEM2MEM4ODJFMjY2NEVCNzJBOTM3RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr+mBUhmpuRvo5DI7Utx1UX0r0qI6BX5K39ilJ1u4X8XkVbcGr dPf5FgtKCCNa+YvzSul9kE4pyX87JYWH7R2WbhrMKCwjcz2sYQNYZ/WK8DR86MJB Nadodj367Ed8n5l8OH05IWLggJ5dVOozb0VVBdEGENVWmZlGBMyBpO+rbWTVxlWj zFkv/StyKJBplcm6juDPs7YYWtF512DwTIMJIDU7fmFXkxjH7Mpai/BsGbY3cl7m pOCR+lEJW0gbBF61Xeqq1hmzqjp21/lTCmL0E13r2IkouO+5rnjEd6vV5Qp5tMhu lldU1Cp0DapzGgIHo9himvP6R/D6MrdSal3JAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUMBbrh3OByOmAxgyILiZk63KpN/gwHwYDVR0jBBgwFoAUcfdvoHc19oWZH8iC yIXiHvuxYbwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU5Ny9jZmR2b0hjMTlvV1pIOGlDeUlYaUh2dXhZYncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jZmR2b0hjMTlvV1pIOGlDeUlYaUh2 dXhZYncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTk3L01CYnJoM09CeU9tQXhneUlMaVprNjNLcE5fZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHa5/QwDQYJKoZIhvcNAQELBQADggEB AJXYjKf6GCKgG5JmpIFJmN82Jk5oLwreOlFstrrcJrjQPQb78tF1e3qaxIumOgsy hPttXH1jrKUC3ufuzS+lItPNqA77dv+z0wy1eN95pu+oeRDCvbdQfN2O4LeHj5QH Vdi9m42JLVKcn3PgrOx3r1JYbrK6TpPeRTjDhyFQuFR8VGh4guHuYNSzk7b0Tfb9 wyRg/wcUbIrwxgBh8Vds341z1ycN1rYFz6NOww/97pH24SV1gQgndzLX1Be9TZ6P vnMrfR2FAPzx/OVdiSXAXSzDKt2qZiHJyYZWKPD1fgXDk1xf0WRn6+AIiLz2oe2Q mG5x5C9Hvxvda5ngWRx7sKI= -----END CERTIFICATE-----Generated at Mon Apr 6 13:51:59 2026 by rpki-client