$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/KiQtF7Mo0djsin0uNp5uzZO1aDc.roa File: KiQtF7Mo0djsin0uNp5uzZO1aDc.roa (raw, json) Hash identifier: 0gT2F5MXWAGEgva/zPGqTJV5ySzWoThzxxakqBA8QCQ= Subject key identifier: 2A:24:2D:17:B3:28:D1:D8:EC:8A:7D:2E:36:9E:6E:CD:93:B5:68:37 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0458 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/KiQtF7Mo0djsin0uNp5uzZO1aDc.roa Signing time: Tue 31 Mar 2026 08:12:21 +0000 ROA not before: Tue 31 Mar 2026 08:12:21 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9617 IP address blocks: 211.120.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 12:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:12:21 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2A242D17B328D1D8EC8A7D2E369E6ECD93B56837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:c5:53:5b:96:a6:04:4a:5c:94:be:83:5c: 5f:f8:cf:fe:05:67:91:5b:93:8e:b0:30:c0:88:e3: 71:03:1c:b0:bf:27:38:5a:32:4d:6f:b7:61:92:64: da:9a:5a:ae:c7:05:77:55:70:d7:02:aa:ff:44:8f: 14:f1:fc:86:ff:4f:42:38:de:14:a4:02:88:21:81: d4:a4:a7:3c:1e:14:40:b6:63:60:7d:d5:e5:e0:95: 22:ac:2e:51:7a:bc:67:7d:ac:d1:9b:e0:d4:0b:dd: 18:46:6f:e0:0a:31:4d:09:98:20:ac:cf:51:52:de: 07:bc:0a:89:ab:d9:fa:41:e9:fb:68:e7:c8:ae:2b: 52:f7:8b:e3:f0:1c:e1:2b:2e:ec:bc:b9:73:b5:fc: 78:2e:5a:dc:0d:84:16:e1:4a:a6:d5:85:c2:56:0f: 72:67:a4:70:5f:7b:de:b2:c0:f7:0c:b8:56:c2:12: 32:38:c6:72:ba:bc:fd:04:35:72:88:94:95:6d:7a: 64:d7:3e:23:2d:2a:78:e1:34:bc:2f:9e:d3:d8:49: a2:cd:5d:13:a9:db:3a:0b:7c:9c:b1:e5:bf:df:f7: dc:23:b6:aa:61:da:7f:aa:fd:50:e4:d5:40:a9:f9: d3:d1:c8:c5:27:ea:63:d4:f7:f1:31:75:0d:a3:18: e2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:24:2D:17:B3:28:D1:D8:EC:8A:7D:2E:36:9E:6E:CD:93:B5:68:37 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/KiQtF7Mo0djsin0uNp5uzZO1aDc.roa sbgp-ipAddrBlock: critical IPv4: 211.120.128.0/18 Signature Algorithm: sha256WithRSAEncryption 30:10:43:d7:b0:44:09:7a:c3:43:c0:14:14:98:2f:9c:90:c1: 4a:06:0b:04:3e:e7:44:80:5c:93:6e:cd:ef:a2:18:8c:ec:dc: e4:f1:c8:b7:16:8e:bd:18:33:9c:01:25:f5:c4:c0:fa:c8:86: e4:96:9c:09:04:de:7c:44:e5:a4:6d:2d:5d:cc:d0:0c:c4:78: 6c:db:ac:2c:f9:c3:cb:2e:f8:68:99:23:cb:bb:6e:f6:a0:e4: 40:28:e4:f6:ab:42:c8:1a:a9:1f:49:9b:53:fc:60:02:4a:59: 05:f5:eb:b4:2d:ef:06:1c:d4:fb:58:90:4d:c2:07:cd:75:9a: 5d:d1:42:40:cb:6f:22:76:8f:2d:45:4e:6d:a5:fa:53:6a:eb: 30:7f:27:5a:05:95:4e:c5:ce:ae:30:5a:a9:60:fc:d3:7c:54: 90:53:41:ff:5e:cf:fc:4c:da:97:66:8e:b4:65:66:1d:9f:c2: e5:ed:47:36:a3:5d:e5:f6:14:10:ee:f6:12:e5:a2:80:aa:2e: cc:69:67:71:02:58:85:56:ab:26:7b:55:c7:33:7c:f3:73:13: 01:2b:d3:50:e0:43:ee:ad:b8:cb:e1:df:06:5c:f5:15:25:aa: 6d:8c:69:6d:a6:6f:bc:45:1b:bc:1f:a0:65:48:2a:fb:80:0f: e8:3b:b8:d0 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEyMjFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBMjQyRDE3QjMyOEQx RDhFQzhBN0QyRTM2OUU2RUNEOTNCNTY4MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAPcVTW5amBEpclL6DXF/4z/4FZ5Fbk46wMMCI43EDHLC/Jzha Mk1vt2GSZNqaWq7HBXdVcNcCqv9EjxTx/Ib/T0I43hSkAoghgdSkpzweFEC2Y2B9 1eXglSKsLlF6vGd9rNGb4NQL3RhGb+AKMU0JmCCsz1FS3ge8Comr2fpB6fto58iu K1L3i+PwHOErLuy8uXO1/HguWtwNhBbhSqbVhcJWD3JnpHBfe96ywPcMuFbCEjI4 xnK6vP0ENXKIlJVtemTXPiMtKnjhNLwvntPYSaLNXROp2zoLfJyx5b/f99wjtqph 2n+q/VDk1UCp+dPRyMUn6mPU9/ExdQ2jGOKXAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKiQtF7Mo0djsin0uNp5uzZO1aDcwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL0tpUXRGN01vMGRqc2luMHVOcDV1elpPMWFEYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbTeIAwDQYJKoZIhvcNAQELBQADggEB ADAQQ9ewRAl6w0PAFBSYL5yQwUoGCwQ+50SAXJNuze+iGIzs3OTxyLcWjr0YM5wB JfXEwPrIhuSWnAkE3nxE5aRtLV3M0AzEeGzbrCz5w8su+GiZI8u7bvag5EAo5Par QsgaqR9Jm1P8YAJKWQX167Qt7wYc1PtYkE3CB811ml3RQkDLbyJ2jy1FTm2l+lNq 6zB/J1oFlU7Fzq4wWqlg/NN8VJBTQf9ez/xM2pdmjrRlZh2fwuXtRzajXeX2FBDu 9hLlooCqLsxpZ3ECWIVWqyZ7VcczfPNzEwEr01DgQ+6tuMvh3wZc9RUlqm2MaW2m b7xFG7wfoGVIKvuAD+g7uNA= -----END CERTIFICATE-----Generated at Mon Apr 6 15:40:16 2026 by rpki-client