$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/8EM4BR2oXMjT4MyBSAMmHs364eo.roa File: 8EM4BR2oXMjT4MyBSAMmHs364eo.roa (raw, json) Hash identifier: 6zo+KrEdVhrXzo0OGAQYAdM2+k+6UjEF0MNNSXGuh2Q= Subject key identifier: F0:43:38:05:1D:A8:5C:C8:D3:E0:CC:81:48:03:26:1E:CD:FA:E1:EA Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 044F Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/8EM4BR2oXMjT4MyBSAMmHs364eo.roa Signing time: Tue 31 Mar 2026 08:12:17 +0000 ROA not before: Tue 31 Mar 2026 08:12:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9824 IP address blocks: 202.157.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 10:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:12:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=F04338051DA85CC8D3E0CC814803261ECDFAE1EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:79:8b:43:32:e7:11:b5:e6:e0:05:bb:a2:97: ec:38:03:a7:d4:75:2f:ba:90:32:93:0b:cb:1c:50: 6e:23:48:7f:76:dc:e8:57:2e:6a:34:8d:23:d1:87: 35:96:9f:bb:a4:15:28:36:ab:b8:e7:df:d7:f7:97: 2c:33:1d:4a:56:c6:61:dd:ba:91:b6:fd:7b:02:87: 82:09:c9:50:f0:1e:a0:be:3c:39:5c:5c:e4:5f:f7: b1:95:39:2a:e0:8e:9e:80:a8:2e:62:25:e1:1a:4f: bc:82:ca:99:e2:d9:bc:2f:c6:4e:d5:b2:d8:a5:95: a1:02:56:dd:aa:62:2e:e7:d9:89:c3:41:f9:a8:f2: ab:33:ce:9e:a9:d3:4d:ba:3a:4d:c6:0c:00:10:8a: 01:7e:73:e5:fe:fa:7a:24:cf:71:50:98:c2:15:79: 13:32:b1:c6:4c:3c:4d:a1:6c:7d:87:aa:a3:70:6f: 8d:d6:25:30:27:74:1b:b0:b6:4a:e0:63:4c:f0:13: 24:82:22:5a:a5:ba:7d:de:ad:4c:23:8f:f8:db:89: fc:57:3a:25:3c:f1:53:eb:b5:df:43:57:5f:ce:42: 41:77:74:52:0e:29:8c:00:4f:49:61:79:a3:80:fd: 25:bc:c1:49:8d:57:2d:66:55:e2:df:fb:dd:ab:e8: 61:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:43:38:05:1D:A8:5C:C8:D3:E0:CC:81:48:03:26:1E:CD:FA:E1:EA X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/8EM4BR2oXMjT4MyBSAMmHs364eo.roa sbgp-ipAddrBlock: critical IPv4: 202.157.0.0/18 Signature Algorithm: sha256WithRSAEncryption 86:0b:99:a5:bc:0d:9a:c8:56:74:5b:75:72:ba:f3:b1:09:20: 75:9d:2a:fd:b5:20:4c:74:7a:84:8d:df:0a:a2:51:7e:4e:4a: b9:aa:8d:49:a2:52:2b:f4:74:9e:29:e3:04:af:cd:73:c5:c2: 21:ba:da:61:9c:01:f4:26:8f:90:a2:49:7e:48:b8:e1:7c:35: 62:81:35:37:77:d6:78:44:58:d6:65:fb:7a:fd:e6:4c:58:2d: 64:92:31:fc:1d:ba:56:ec:0b:2e:48:63:cd:85:87:22:5b:bf: 94:17:f8:cf:c0:8c:48:d6:ce:35:cd:23:ef:c7:7e:b4:7c:cc: 1f:7e:49:73:85:06:ca:1e:16:03:c3:a9:93:e2:92:0a:4f:4c: 9c:8e:64:a1:19:b9:56:6f:27:11:82:d2:06:a2:5b:6c:91:00: 70:25:5b:ad:92:dd:f0:92:1c:02:e8:29:cc:51:3d:89:80:9d: 61:34:65:79:41:f0:1f:f8:74:7c:09:5e:b5:38:72:69:21:e4: 33:90:27:e3:47:73:9b:92:51:e8:c5:61:07:41:44:5c:d0:a4: 97:30:f7:d1:fd:c0:9b:fb:e0:c5:62:c9:12:6c:c3:20:75:51: 83:a4:6b:4d:1d:6f:03:3e:02:86:36:f6:3b:ff:1e:08:bf:a6: b3:d5:a4:64 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEyMTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEYwNDMzODA1MURBODVD QzhEM0UwQ0M4MTQ4MDMyNjFFQ0RGQUUxRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/eYtDMucRtebgBbuil+w4A6fUdS+6kDKTC8scUG4jSH923OhX Lmo0jSPRhzWWn7ukFSg2q7jn39f3lywzHUpWxmHdupG2/XsCh4IJyVDwHqC+PDlc XORf97GVOSrgjp6AqC5iJeEaT7yCypni2bwvxk7VstillaECVt2qYi7n2YnDQfmo 8qszzp6p0026Ok3GDAAQigF+c+X++nokz3FQmMIVeRMyscZMPE2hbH2HqqNwb43W JTAndBuwtkrgY0zwEySCIlqlun3erUwjj/jbifxXOiU88VPrtd9DV1/OQkF3dFIO KYwAT0lheaOA/SW8wUmNVy1mVeLf+92r6GFFAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU8EM4BR2oXMjT4MyBSAMmHs364eowHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxLzhFTTRCUjJvWE1qVDRNeUJTQU1tSHMzNjRlby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbKnQAwDQYJKoZIhvcNAQELBQADggEB AIYLmaW8DZrIVnRbdXK687EJIHWdKv21IEx0eoSN3wqiUX5OSrmqjUmiUiv0dJ4p 4wSvzXPFwiG62mGcAfQmj5CiSX5IuOF8NWKBNTd31nhEWNZl+3r95kxYLWSSMfwd ulbsCy5IY82FhyJbv5QX+M/AjEjWzjXNI+/HfrR8zB9+SXOFBsoeFgPDqZPikgpP TJyOZKEZuVZvJxGC0gaiW2yRAHAlW62S3fCSHALoKcxRPYmAnWE0ZXlB8B/4dHwJ XrU4cmkh5DOQJ+NHc5uSUejFYQdBRFzQpJcw99H9wJv74MViyRJswyB1UYOka00d bwM+AoY29jv/Hgi/prPVpGQ= -----END CERTIFICATE-----Generated at Mon Apr 6 12:54:18 2026 by rpki-client