$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/Ek4_UPE6n6LW_8FkfebmnKwUQGM.roa File: Ek4_UPE6n6LW_8FkfebmnKwUQGM.roa (raw, json) Hash identifier: PZDVE+eUk+dSqxrE/Xqq9aLTfvKjS/rqfrYjh8fh3fI= Subject key identifier: 12:4E:3F:50:F1:3A:9F:A2:D6:FF:C1:64:7D:E6:E6:9C:AC:14:40:63 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0489 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/Ek4_UPE6n6LW_8FkfebmnKwUQGM.roa Signing time: Tue 31 Mar 2026 08:12:44 +0000 ROA not before: Tue 31 Mar 2026 08:12:44 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9824 IP address blocks: 203.89.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 08:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:12:44 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=124E3F50F13A9FA2D6FFC1647DE6E69CAC144063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:90:2c:7b:d8:e2:32:3a:a5:98:ed:4a:d7:b7: 98:16:c2:29:db:68:3a:f6:a2:44:67:7a:94:c1:dd: 74:bf:ee:9d:55:9b:1c:08:5a:3c:67:f5:44:c4:90: 99:0c:3d:48:8e:18:a6:58:8c:8a:aa:bf:fa:7d:1f: d5:65:3c:6f:10:29:b6:88:e7:1b:97:41:5a:22:fc: f2:83:f4:03:ad:2a:9a:3c:14:3e:c0:a0:f9:98:38: 56:28:89:07:9b:1a:86:32:a8:31:f9:55:69:bb:95: ac:e9:27:9a:de:f6:68:1e:a7:a0:89:49:b3:cb:47: df:0c:80:0f:3c:b1:66:eb:00:00:aa:c8:23:5c:65: c0:d9:7b:0c:7f:76:c1:2e:a2:a2:5b:4f:20:9f:0e: 81:73:42:d3:18:5a:f0:ab:5e:77:04:f3:9f:89:9d: e8:88:b2:e4:9f:83:8c:cb:c3:24:c0:64:2a:1e:4d: 12:2e:8f:fe:7f:bc:17:6b:41:50:b0:4a:a5:32:e4: 25:2e:52:a6:10:fb:e7:ff:11:da:73:f0:6d:da:47: a6:58:76:d7:52:b1:a0:f0:61:ff:d8:02:42:1e:b8: 27:69:bb:e4:8a:4b:c0:07:2a:1f:72:0a:3f:d4:67: 96:e2:7b:32:5f:4a:25:77:6c:82:a1:fa:06:b1:bf: b2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4E:3F:50:F1:3A:9F:A2:D6:FF:C1:64:7D:E6:E6:9C:AC:14:40:63 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/Ek4_UPE6n6LW_8FkfebmnKwUQGM.roa sbgp-ipAddrBlock: critical IPv4: 203.89.32.0/19 Signature Algorithm: sha256WithRSAEncryption 7c:a3:8a:e4:66:69:85:d2:a3:c0:16:90:8b:a0:45:b2:eb:78: 85:a4:08:e1:86:21:fa:15:98:08:f3:f5:d9:c8:a9:8b:93:62: a1:72:ee:69:b1:be:0a:6c:a6:1e:57:ac:03:d3:3a:2e:9f:01: b3:cd:02:7b:b5:3f:a1:89:6e:04:54:3d:eb:90:22:a6:0a:b8: c6:5a:a9:35:a9:68:ac:d3:ba:81:46:39:82:eb:53:b9:3c:7e: e4:88:c6:b0:ce:ca:61:a3:3e:78:72:6f:37:d3:55:e5:25:db: df:8b:da:5a:f9:3b:75:3c:31:fa:69:50:c4:e8:bd:51:75:4c: c0:9d:76:01:16:3d:3f:05:b6:be:94:90:ae:9b:e5:70:72:84: a9:81:d2:71:32:a9:72:7e:43:79:60:2a:8d:82:4e:bd:6a:ff: c8:2a:d6:0a:9f:8f:0a:fa:f1:26:2e:2a:30:49:a2:78:b4:8f: 30:33:ae:80:46:70:b5:b8:1b:7e:ca:92:06:95:99:fa:9c:b2: 59:a9:40:f9:5f:6e:b3:b0:09:26:f6:4b:e9:77:31:a4:44:08: 71:e5:23:45:82:88:ab:82:19:1a:3b:80:19:17:ec:b4:7b:2c: b3:a2:50:7e:63:85:e7:6c:99:15:8e:01:11:78:2e:69:7e:fa: 08:19:23:27 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEyNDRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDEyNEUzRjUwRjEzQTlG QTJENkZGQzE2NDdERTZFNjlDQUMxNDQwNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIkCx72OIyOqWY7UrXt5gWwinbaDr2okRnepTB3XS/7p1VmxwI Wjxn9UTEkJkMPUiOGKZYjIqqv/p9H9VlPG8QKbaI5xuXQVoi/PKD9AOtKpo8FD7A oPmYOFYoiQebGoYyqDH5VWm7lazpJ5re9mgep6CJSbPLR98MgA88sWbrAACqyCNc ZcDZewx/dsEuoqJbTyCfDoFzQtMYWvCrXncE85+JneiIsuSfg4zLwyTAZCoeTRIu j/5/vBdrQVCwSqUy5CUuUqYQ++f/Edpz8G3aR6ZYdtdSsaDwYf/YAkIeuCdpu+SK S8AHKh9yCj/UZ5biezJfSiV3bIKh+gaxv7LjAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUEk4/UPE6n6LW/8FkfebmnKwUQGMwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL0VrNF9VUEU2bjZMV184RmtmZWJtbkt3VVFHTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXLWSAwDQYJKoZIhvcNAQELBQADggEB AHyjiuRmaYXSo8AWkIugRbLreIWkCOGGIfoVmAjz9dnIqYuTYqFy7mmxvgpsph5X rAPTOi6fAbPNAnu1P6GJbgRUPeuQIqYKuMZaqTWpaKzTuoFGOYLrU7k8fuSIxrDO ymGjPnhybzfTVeUl29+L2lr5O3U8MfppUMTovVF1TMCddgEWPT8Ftr6UkK6b5XBy hKmB0nEyqXJ+Q3lgKo2CTr1q/8gq1gqfjwr68SYuKjBJoni0jzAzroBGcLW4G37K kgaVmfqcslmpQPlfbrOwCSb2S+l3MaRECHHlI0WCiKuCGRo7gBkX7LR7LLOiUH5j hedsmRWOARF4Lml++ggZIyc= -----END CERTIFICATE-----Generated at Mon Apr 6 12:56:40 2026 by rpki-client