$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/CQx50VvVwHo3LFm8z9BScTFtRys.roa File: CQx50VvVwHo3LFm8z9BScTFtRys.roa (raw, json) Hash identifier: V4LkoLEhMTdmx5Bs1Snsz0BmlUNCgp2ad1MZRQ4zYDg= Subject key identifier: 09:0C:79:D1:5B:D5:C0:7A:37:2C:59:BC:CF:D0:52:71:31:6D:47:2B Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0433 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/CQx50VvVwHo3LFm8z9BScTFtRys.roa Signing time: Tue 31 Mar 2026 08:11:59 +0000 ROA not before: Tue 31 Mar 2026 08:11:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9824 IP address blocks: 202.57.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 08:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:11:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=090C79D15BD5C07A372C59BCCFD05271316D472B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:80:27:db:3f:f0:4d:91:ca:df:d7:85:e3:52: 14:c3:f3:6d:88:43:ad:90:23:95:aa:d7:63:e2:88: c3:17:79:79:23:88:a7:48:94:0c:84:f7:41:a0:34: ca:b4:46:c3:d8:67:35:42:56:40:40:6d:fb:e5:51: 43:a2:30:99:01:a1:a2:9f:9d:59:1e:85:3c:d6:16: 46:e1:b6:c5:33:46:e8:b5:4c:1e:d6:84:99:1a:4b: c8:8c:0e:73:de:95:7c:4e:74:df:90:0f:8d:60:28: 44:4a:d6:2e:44:ad:58:ec:af:fb:e3:52:5f:fe:e8: 60:28:f4:7c:f9:9c:30:b4:51:4d:5c:9c:bd:18:e1: f8:3d:17:e1:47:58:0c:f0:f8:d4:25:fd:2a:ae:62: 55:9c:22:6f:ab:ab:05:56:d4:de:7e:3f:00:0e:ff: a8:d2:69:a9:51:34:3b:69:06:7f:bc:c1:16:61:31: a1:55:0a:4c:22:98:b9:af:a3:51:8e:6d:c7:fe:9e: 64:ea:85:a2:8f:20:83:44:2f:c6:7b:e8:cf:d6:f5: 60:12:0c:ac:c5:22:ef:50:94:86:7d:99:aa:31:c7: 32:a2:b6:d6:27:6d:a9:70:03:54:4c:70:73:6c:c6: 67:72:7b:73:ca:a1:0e:6a:a4:93:75:93:3e:a6:96: 46:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0C:79:D1:5B:D5:C0:7A:37:2C:59:BC:CF:D0:52:71:31:6D:47:2B X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/CQx50VvVwHo3LFm8z9BScTFtRys.roa sbgp-ipAddrBlock: critical IPv4: 202.57.224.0/20 Signature Algorithm: sha256WithRSAEncryption 73:31:72:4c:34:c9:e4:d1:81:d3:1c:82:ef:6f:2f:46:18:45: a9:ba:48:c2:10:fe:9a:3c:9a:6d:d8:0a:26:2b:c8:12:1f:2e: 7d:2d:a5:33:49:1b:6d:35:f1:97:3e:12:00:c7:58:9d:21:90: c5:69:04:b2:71:91:12:46:bf:f4:de:a1:4d:9b:5a:2e:0e:70: ed:89:fe:de:2c:59:2e:72:65:50:19:fd:5b:d5:93:03:c2:ca: 32:ed:e3:74:9c:c5:82:0f:51:f0:3a:69:03:46:e8:a7:39:f6: 4f:c4:ca:3c:aa:87:28:3c:f0:1c:20:3b:36:a2:bf:c8:47:29: 12:3a:59:95:df:e7:1f:27:be:22:5a:ea:4f:77:fd:6c:30:85: d1:4c:9e:ba:e9:fb:5d:cd:67:e5:88:c6:ed:c7:1e:cf:b3:2d: 34:1b:72:57:09:37:ea:5d:ba:a8:b8:d8:0f:67:32:31:27:c6: 62:59:55:5f:93:ed:f3:7b:1c:c6:02:5c:7d:8e:39:5b:4d:eb: ef:7a:a5:cf:f9:64:78:1f:e6:4a:69:ba:3e:f0:ae:97:d6:d6: 3f:4f:06:23:8c:cf:26:7c:93:7d:96:25:ff:22:f1:48:04:dd: 3a:99:b4:6a:e7:84:e8:89:d7:46:5a:4d:12:50:58:6d:01:ac: 40:a6:f1:38 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODExNTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA5MEM3OUQxNUJENUMw N0EzNzJDNTlCQ0NGRDA1MjcxMzE2RDQ3MkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPgCfbP/BNkcrf14XjUhTD822IQ62QI5Wq12PiiMMXeXkjiKdI lAyE90GgNMq0RsPYZzVCVkBAbfvlUUOiMJkBoaKfnVkehTzWFkbhtsUzRui1TB7W hJkaS8iMDnPelXxOdN+QD41gKERK1i5ErVjsr/vjUl/+6GAo9Hz5nDC0UU1cnL0Y 4fg9F+FHWAzw+NQl/SquYlWcIm+rqwVW1N5+PwAO/6jSaalRNDtpBn+8wRZhMaFV CkwimLmvo1GObcf+nmTqhaKPIINEL8Z76M/W9WASDKzFIu9QlIZ9maoxxzKittYn balwA1RMcHNsxmdye3PKoQ5qpJN1kz6mlkZlAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUCQx50VvVwHo3LFm8z9BScTFtRyswHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL0NReDUwVnZWd0hvM0xGbTh6OUJTY1RGdFJ5cy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKOeAwDQYJKoZIhvcNAQELBQADggEB AHMxckw0yeTRgdMcgu9vL0YYRam6SMIQ/po8mm3YCiYryBIfLn0tpTNJG2018Zc+ EgDHWJ0hkMVpBLJxkRJGv/TeoU2bWi4OcO2J/t4sWS5yZVAZ/VvVkwPCyjLt43Sc xYIPUfA6aQNG6Kc59k/Eyjyqhyg88BwgOzaiv8hHKRI6WZXf5x8nviJa6k93/Www hdFMnrrp+13NZ+WIxu3HHs+zLTQbclcJN+pduqi42A9nMjEnxmJZVV+T7fN7HMYC XH2OOVtN6+96pc/5ZHgf5kppuj7wrpfW1j9PBiOMzyZ8k32WJf8i8UgE3TqZtGrn hOiJ10ZaTRJQWG0BrECm8Tg= -----END CERTIFICATE-----Generated at Mon Apr 6 12:56:45 2026 by rpki-client