$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/602/OFzl_5rieovSmLcK2s0qZ8vLq_s.roa File: OFzl_5rieovSmLcK2s0qZ8vLq_s.roa (raw, json) Hash identifier: rcaPkbdE2Y0be0hCmkTiYMRHD6rHqAiblv0hBv+zl0Q= Subject key identifier: 38:5C:E5:FF:9A:E2:7A:8B:D2:98:B7:0A:DA:CD:2A:67:CB:CB:AB:FB Certificate issuer: /CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542 Certificate serial: A6 Authority key identifier: 4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/OFzl_5rieovSmLcK2s0qZ8vLq_s.roa Signing time: Tue 31 Mar 2026 07:37:34 +0000 ROA not before: Tue 31 Mar 2026 07:37:34 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 32787 IP address blocks: 210.193.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 03:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542 Validity Not Before: Mar 31 07:37:34 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=385CE5FF9AE27A8BD298B70ADACD2A67CBCBABFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:52:d9:a1:8b:27:4d:c1:f3:d6:21:4f:65:3d: c0:77:2a:5a:cb:19:e7:54:14:c1:56:c1:bf:a8:f7: be:00:08:11:32:64:fc:34:52:61:d9:3b:4b:74:7a: d0:50:65:0e:6e:c2:56:d0:e7:89:a0:08:a4:7b:3a: 89:78:0d:2a:5b:46:33:65:d2:30:45:60:3e:90:76: 28:b1:7d:83:21:0b:c2:95:f4:f8:e4:13:dc:68:89: 3b:58:58:9c:a9:db:7a:1b:28:3b:a6:5a:27:2a:b5: a7:7f:69:f3:49:25:9e:e2:f3:bb:68:4a:da:e3:59: 35:ef:f6:81:f5:a3:14:b2:25:d8:93:73:11:a6:32: 55:57:eb:d1:63:19:e0:a9:14:4b:73:47:ad:b0:b7: 29:3e:22:c8:89:ef:0f:13:fe:f2:43:2b:b0:ce:30: 10:7b:80:b0:c8:58:e2:a5:26:02:5f:2e:4a:ee:8b: eb:37:0e:03:e4:e2:92:e5:b3:4e:5a:5a:4e:a0:35: 22:30:0a:30:28:61:88:3d:20:1a:ce:88:6a:87:33: ce:3c:6d:04:f4:54:4b:0e:94:2b:c5:e8:01:f2:1c: a5:03:08:cb:13:49:08:40:32:2a:37:18:fd:41:d1: ed:7d:0f:3f:02:77:1c:62:f6:41:4f:c1:6e:84:d1: 42:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:5C:E5:FF:9A:E2:7A:8B:D2:98:B7:0A:DA:CD:2A:67:CB:CB:AB:FB X509v3 Authority Key Identifier: keyid:4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/OFzl_5rieovSmLcK2s0qZ8vLq_s.roa sbgp-ipAddrBlock: critical IPv4: 210.193.97.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:c0:44:07:cc:a6:b6:4f:13:a2:96:36:a5:78:e2:45:0d:ec: 68:88:4c:a9:b7:06:a5:94:69:a2:3f:ca:56:3b:ff:01:8f:3b: 5b:d2:54:a3:a3:46:2e:60:8b:2e:63:e7:a7:09:ee:67:1a:be: 79:da:61:ee:be:d4:aa:ca:e9:f9:2d:f3:8e:63:d0:3d:a0:7e: e0:92:d0:e5:e9:26:30:8b:d4:aa:83:b7:cd:0e:38:fb:55:f7: 74:41:b5:a1:a1:cf:a3:66:0a:6c:28:89:02:c7:55:da:e1:47: 99:dd:fa:80:02:21:73:b2:98:cd:e0:bc:1d:15:8e:33:dc:0f: b8:32:1d:8f:56:38:5b:a3:40:d1:ed:e8:9f:a4:e6:2f:41:5a: 58:60:e3:c3:dc:bd:55:0a:14:f7:1e:c7:09:97:18:26:6b:9b: 06:34:2a:24:d2:ae:fb:10:98:18:94:4a:cf:51:3f:f2:2e:00: d8:57:5d:b7:28:04:0e:66:ca:b5:1e:c0:1c:73:fc:e0:40:4f: 35:0f:56:40:d0:43:be:77:fe:b8:e2:e6:dd:6b:c5:41:87:b7: 1d:f7:c4:9d:2d:f9:68:e1:7f:84:0d:db:e8:91:f5:f0:78:9d: 23:a0:77:a7:28:98:2e:1e:1b:e7:b2:ff:b8:40:1a:c7:ff:62: 93:3b:2a:7c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEVG RjFBQjZFQURBMjczQkEwNjZEQjBGNzdCNzlENkEwRDkwMTU0MjAeFw0yNjAzMzEw NzM3MzRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM4NUNFNUZGOUFFMjdB OEJEMjk4QjcwQURBQ0QyQTY3Q0JDQkFCRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnUtmhiydNwfPWIU9lPcB3KlrLGedUFMFWwb+o974ACBEyZPw0 UmHZO0t0etBQZQ5uwlbQ54mgCKR7Ool4DSpbRjNl0jBFYD6QdiixfYMhC8KV9Pjk E9xoiTtYWJyp23obKDumWicqtad/afNJJZ7i87toStrjWTXv9oH1oxSyJdiTcxGm MlVX69FjGeCpFEtzR62wtyk+IsiJ7w8T/vJDK7DOMBB7gLDIWOKlJgJfLkrui+s3 DgPk4pLls05aWk6gNSIwCjAoYYg9IBrOiGqHM848bQT0VEsOlCvF6AHyHKUDCMsT SQhAMio3GP1B0e19Dz8Cdxxi9kFPwW6E0UL5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUOFzl/5rieovSmLcK2s0qZ8vLq/swHwYDVR0jBBgwFoAUTv8aturaJzugZtsP d7edag2QFUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYwMi9UdjhhdHVyYUp6dWdadHNQZDdlZGFnMlFGVUkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9UdjhhdHVyYUp6dWdadHNQZDdlZGFn MlFGVUkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjAyL09GemxfNXJpZW92U21MY0syczBxWjh2THFfcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSwWEwDQYJKoZIhvcNAQELBQADggEB ADzARAfMprZPE6KWNqV44kUN7GiITKm3BqWUaaI/ylY7/wGPO1vSVKOjRi5giy5j 56cJ7mcavnnaYe6+1KrK6fkt845j0D2gfuCS0OXpJjCL1KqDt80OOPtV93RBtaGh z6NmCmwoiQLHVdrhR5nd+oACIXOymM3gvB0VjjPcD7gyHY9WOFujQNHt6J+k5i9B Wlhg48PcvVUKFPcexwmXGCZrmwY0KiTSrvsQmBiUSs9RP/IuANhXXbcoBA5myrUe wBxz/OBATzUPVkDQQ753/rji5t1rxUGHtx33xJ0t+Wjhf4QN2+iR9fB4nSOgd6co mC4eG+ey/7hAGsf/YpM7Knw= -----END CERTIFICATE-----Generated at Mon Apr 13 05:10:57 2026 by rpki-client