$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/aAJfQK1JmERpd_XXPR6gltImBBk.roa File: aAJfQK1JmERpd_XXPR6gltImBBk.roa (raw, json) Hash identifier: zt61BZZv8y/4W3tsBfa9Ee8zDhcTTBkkjXCMOZUQOdA= Subject key identifier: 68:02:5F:40:AD:49:98:44:69:77:F5:D7:3D:1E:A0:96:D2:26:04:19 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 04C2 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/aAJfQK1JmERpd_XXPR6gltImBBk.roa Signing time: Tue 31 Mar 2026 08:13:11 +0000 ROA not before: Tue 31 Mar 2026 08:13:11 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9824 IP address blocks: 219.114.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 10:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1218 (0x4c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:13:11 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=68025F40AD4998446977F5D73D1EA096D2260419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5b:83:93:a5:12:86:51:ac:03:67:bc:dd:10: ca:85:56:ce:e5:d9:e5:75:f1:8a:4f:58:ae:dd:4a: 73:72:c1:e5:8b:88:7d:70:27:b3:35:c5:f4:d9:18: c6:c2:77:1f:48:2b:c1:6a:35:3e:46:ad:2b:28:eb: e0:6e:a9:42:8d:30:76:85:ee:43:f9:39:f3:2e:70: 2f:23:ec:38:a6:e2:1f:d9:53:9f:35:cd:7f:cf:96: c8:91:d3:1e:ed:ef:26:fe:ee:ef:2f:29:7f:fa:9e: 5f:aa:89:d3:96:ab:ce:2f:e1:0a:58:cd:e8:90:ab: c9:e0:c7:84:20:55:3b:1a:87:81:dc:ef:8e:a4:67: f4:de:fe:aa:17:3b:38:24:12:f3:9b:39:31:21:81: d2:7e:07:e1:2f:a9:ca:e2:ad:e6:c8:51:c1:e0:0a: d0:38:c4:b8:a7:75:c7:36:59:2d:c2:cd:fd:c5:3d: d3:b3:4c:94:88:60:d6:62:4c:4f:93:23:2d:6b:c2: 13:61:ae:47:d1:0f:33:d3:66:96:b0:87:6a:8b:e9: 41:24:d7:63:f1:34:86:74:14:79:87:fa:86:0f:d8: 40:f5:f5:29:91:cc:83:be:e3:36:e4:39:c7:61:6e: 07:e5:2b:0c:9f:67:c1:f4:24:d3:0f:d2:db:15:78: e5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:02:5F:40:AD:49:98:44:69:77:F5:D7:3D:1E:A0:96:D2:26:04:19 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/aAJfQK1JmERpd_XXPR6gltImBBk.roa sbgp-ipAddrBlock: critical IPv4: 219.114.192.0/18 Signature Algorithm: sha256WithRSAEncryption 7b:d6:db:d9:78:79:21:05:f9:ea:a3:c5:aa:2b:ce:bb:1f:a8: 14:89:c2:e3:84:a7:9f:b6:89:c7:50:55:9f:21:bd:29:4f:d2: 6d:5d:d3:35:00:89:80:39:fc:ac:65:d1:22:52:a5:e9:0a:dd: 0d:7a:3e:60:5b:b7:fe:0c:83:38:6d:2c:63:77:c5:9d:8b:65: 73:aa:35:e3:25:db:be:a2:f3:6b:2e:c8:8f:c9:eb:a6:8d:3c: b4:34:38:e5:4b:74:3b:ba:5f:db:54:b9:d0:20:16:4d:2f:e1: f4:a9:ab:1d:3d:1f:71:64:55:94:af:57:4f:8f:6a:40:44:1f: f7:41:ed:60:5b:59:07:c5:86:97:b0:2c:16:58:57:9e:35:3f: e0:4a:66:75:c6:e4:06:10:cd:f3:25:42:08:7c:8c:0b:c8:25: a7:44:a9:35:80:ff:54:2d:b5:61:44:cb:dd:1d:0d:0b:b3:99: 37:95:c9:1d:7c:55:48:88:bb:a8:fc:cb:52:0b:93:6a:28:d8: c8:da:a6:14:f0:56:39:8f:17:6f:30:2d:56:bf:ce:8d:2d:60: 3b:c7:86:2a:ac:7a:4c:2c:9a:d6:9b:74:a9:05:39:f1:42:ca: dc:ac:22:6c:93:70:5b:3b:54:63:17:3d:21:93:c0:9c:5c:f8: c8:2c:2c:75 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEzMTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY4MDI1RjQwQUQ0OTk4 NDQ2OTc3RjVENzNEMUVBMDk2RDIyNjA0MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2W4OTpRKGUawDZ7zdEMqFVs7l2eV18YpPWK7dSnNyweWLiH1w J7M1xfTZGMbCdx9IK8FqNT5GrSso6+BuqUKNMHaF7kP5OfMucC8j7Dim4h/ZU581 zX/PlsiR0x7t7yb+7u8vKX/6nl+qidOWq84v4QpYzeiQq8ngx4QgVTsah4Hc746k Z/Te/qoXOzgkEvObOTEhgdJ+B+EvqcrirebIUcHgCtA4xLindcc2WS3Czf3FPdOz TJSIYNZiTE+TIy1rwhNhrkfRDzPTZpawh2qL6UEk12PxNIZ0FHmH+oYP2ED19SmR zIO+4zbkOcdhbgflKwyfZ8H0JNMP0tsVeOW1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUaAJfQK1JmERpd/XXPR6gltImBBkwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL2FBSmZRSzFKbUVScGRfWFhQUjZnbHRJbUJCay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbbcsAwDQYJKoZIhvcNAQELBQADggEB AHvW29l4eSEF+eqjxaorzrsfqBSJwuOEp5+2icdQVZ8hvSlP0m1d0zUAiYA5/Kxl 0SJSpekK3Q16PmBbt/4MgzhtLGN3xZ2LZXOqNeMl276i82suyI/J66aNPLQ0OOVL dDu6X9tUudAgFk0v4fSpqx09H3FkVZSvV0+PakBEH/dB7WBbWQfFhpewLBZYV541 P+BKZnXG5AYQzfMlQgh8jAvIJadEqTWA/1QttWFEy90dDQuzmTeVyR18VUiIu6j8 y1ILk2oo2MjaphTwVjmPF28wLVa/zo0tYDvHhiqsekwsmtabdKkFOfFCytysImyT cFs7VGMXPSGTwJxc+MgsLHU= -----END CERTIFICATE-----Generated at Mon Apr 6 12:55:59 2026 by rpki-client