$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/TCvrYCdwgI5h38LVORrxl0J8EtI.roa File: TCvrYCdwgI5h38LVORrxl0J8EtI.roa (raw, json) Hash identifier: hS883u2m0kb3DmqaD9edj+YGeUhk0kdSn+ZCQC0JZTU= Subject key identifier: 4C:2B:EB:60:27:70:80:8E:61:DF:C2:D5:39:1A:F1:97:42:7C:12:D2 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 03F4 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/TCvrYCdwgI5h38LVORrxl0J8EtI.roa Signing time: Tue 31 Mar 2026 08:11:31 +0000 ROA not before: Tue 31 Mar 2026 08:11:31 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4721 IP address blocks: 202.43.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 13:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:11:31 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4C2BEB602770808E61DFC2D5391AF197427C12D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:ec:e5:16:07:86:52:20:1c:2e:fd:00:51:ed: a1:93:d5:ef:03:6a:de:ff:e8:b3:ce:7a:78:a9:dd: a3:13:f9:a9:e8:c0:a3:5c:0c:b3:2a:8c:d7:d3:a8: cb:82:e2:86:c2:b9:b0:18:6e:35:33:55:08:4b:6d: 35:a2:b8:fe:87:d1:ca:fb:45:e4:2a:c9:47:64:5d: e0:09:9e:0f:38:c3:e6:1a:14:5c:78:38:a0:01:40: 32:5c:6d:7d:83:09:23:67:2b:2b:d8:c7:e1:50:e7: 2a:5a:41:c5:3a:b4:77:2e:7a:ce:d1:37:57:90:6a: 30:c5:5f:8d:1b:97:e6:44:17:f0:6b:ed:d3:eb:cc: 31:c7:cc:4f:cb:f5:fa:6c:93:23:58:39:28:64:77: c5:e8:bb:96:ba:ae:e7:b5:a6:89:b1:18:e9:fb:66: 91:e1:72:06:b0:0f:4c:53:bd:9c:53:13:cb:30:f9: 8c:2f:9e:98:60:c6:1c:88:38:b6:1b:a3:d7:38:79: 4f:26:d6:19:15:79:06:37:96:31:f2:5f:7c:c4:14: 26:4c:3d:10:22:67:0e:03:fc:c5:72:7e:f8:dc:ab: dc:bc:1a:d8:26:ad:09:75:08:81:5c:e1:b6:ac:33: b5:31:26:5d:9f:97:ff:88:0d:9d:82:1b:90:06:1c: d9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2B:EB:60:27:70:80:8E:61:DF:C2:D5:39:1A:F1:97:42:7C:12:D2 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/TCvrYCdwgI5h38LVORrxl0J8EtI.roa sbgp-ipAddrBlock: critical IPv4: 202.43.68.0/22 Signature Algorithm: sha256WithRSAEncryption 77:78:64:e6:a4:5a:52:c5:e5:d0:7f:7a:b7:a0:5d:af:bc:a9: 7d:29:01:25:4b:d2:d8:c7:74:fc:30:94:d1:50:4b:bc:b6:72: f6:87:49:d3:44:e1:94:81:4e:cf:76:e0:19:bf:7a:39:3e:88: 19:32:39:9a:48:7e:c6:98:f7:6e:a3:4c:e8:fb:83:6a:ea:48: 8b:84:2f:30:74:b7:2e:c3:77:98:89:a1:c1:23:f6:fd:62:05: ed:73:ea:db:29:39:a8:b9:9b:0d:1b:2e:69:87:76:08:9a:2e: 74:79:56:5f:5b:76:f9:ed:81:9b:a0:98:ce:42:29:00:48:fc: ee:c0:be:3a:70:3f:79:66:f7:fe:6f:1d:b2:80:3c:1b:4d:d8: e3:9c:05:bd:d7:8a:4c:38:e0:c6:ba:4f:fc:a4:a2:80:ce:72: c5:40:fd:b0:40:e0:89:9f:d8:93:92:a8:a7:38:1a:fb:ee:6f: 89:e7:f9:d2:74:2a:6c:fa:60:70:d1:77:a7:b6:f3:ff:99:e4: 05:cd:c5:9a:43:2f:09:06:e9:b3:cd:23:6a:cc:d3:eb:0e:bd: 84:7c:99:7c:b5:10:32:42:96:18:f0:0c:27:d7:9b:67:48:95: 38:45:df:d6:14:e2:49:1f:01:ab:02:d3:25:62:71:9d:0e:af: ce:1a:78:47 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODExMzFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRDMkJFQjYwMjc3MDgw OEU2MURGQzJENTM5MUFGMTk3NDI3QzEyRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD47OUWB4ZSIBwu/QBR7aGT1e8Dat7/6LPOenip3aMT+anowKNc DLMqjNfTqMuC4obCubAYbjUzVQhLbTWiuP6H0cr7ReQqyUdkXeAJng84w+YaFFx4 OKABQDJcbX2DCSNnKyvYx+FQ5ypaQcU6tHcues7RN1eQajDFX40bl+ZEF/Br7dPr zDHHzE/L9fpskyNYOShkd8Xou5a6rue1pomxGOn7ZpHhcgawD0xTvZxTE8sw+Ywv nphgxhyIOLYbo9c4eU8m1hkVeQY3ljHyX3zEFCZMPRAiZw4D/MVyfvjcq9y8Gtgm rQl1CIFc4basM7UxJl2fl/+IDZ2CG5AGHNkzAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUTCvrYCdwgI5h38LVORrxl0J8EtIwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL1RDdnJZQ2R3Z0k1aDM4TFZPUnJ4bDBKOEV0SS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKK0QwDQYJKoZIhvcNAQELBQADggEB AHd4ZOakWlLF5dB/eregXa+8qX0pASVL0tjHdPwwlNFQS7y2cvaHSdNE4ZSBTs92 4Bm/ejk+iBkyOZpIfsaY926jTOj7g2rqSIuELzB0ty7Dd5iJocEj9v1iBe1z6tsp Oai5mw0bLmmHdgiaLnR5Vl9bdvntgZugmM5CKQBI/O7AvjpwP3lm9/5vHbKAPBtN 2OOcBb3Xikw44Ma6T/ykooDOcsVA/bBA4Imf2JOSqKc4Gvvub4nn+dJ0Kmz6YHDR d6e28/+Z5AXNxZpDLwkG6bPNI2rM0+sOvYR8mXy1EDJClhjwDCfXm2dIlThF39YU 4kkfAasC0yVicZ0Or84aeEc= -----END CERTIFICATE-----Generated at Mon Apr 6 15:41:15 2026 by rpki-client