$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/cXw3LwiBGkt2rg2b6sM3zBjQTZg.roa File: cXw3LwiBGkt2rg2b6sM3zBjQTZg.roa (raw, json) Hash identifier: HieED3iR3d5/hcGwuJ+sH1opCqYb4sdfGslJ35l2hJ4= Subject key identifier: 71:7C:37:2F:08:81:1A:4B:76:AE:0D:9B:EA:C3:37:CC:18:D0:4D:98 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 03F9 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cXw3LwiBGkt2rg2b6sM3zBjQTZg.roa Signing time: Tue 31 Mar 2026 08:11:32 +0000 ROA not before: Tue 31 Mar 2026 08:11:32 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9824 IP address blocks: 114.142.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 08:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:11:32 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=717C372F08811A4B76AE0D9BEAC337CC18D04D98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8f:fc:3d:cf:c4:3a:79:d2:4d:0c:f2:cb:88: de:0b:06:fb:a6:bf:3e:dd:8a:3c:11:b2:d9:c5:98: 12:34:36:31:d4:4f:a5:70:f1:ca:af:86:4a:2c:8e: 1d:a6:3b:44:ef:88:0e:67:82:52:61:2a:da:d7:dc: ea:e3:94:30:4e:31:57:cb:9f:ca:1d:ab:62:39:9a: 20:a1:ea:90:02:9d:94:74:e6:eb:99:c0:ee:9e:99: 84:c8:29:f1:b2:d6:21:d3:69:e3:b4:b5:14:f9:54: ea:69:60:43:56:6a:74:e2:86:e0:19:ac:e3:c6:3f: 88:a6:a6:ec:e4:10:94:6b:b4:3c:70:f3:c0:f8:ac: fa:9d:4a:2d:99:fe:28:bd:18:76:cb:d4:c2:56:c8: 6d:c9:a6:75:af:f6:21:fd:04:92:ab:0f:8a:45:4d: 02:51:c3:f0:78:2a:eb:6e:16:36:a5:d5:23:77:54: 36:7d:86:54:0e:a7:0d:eb:46:b9:1e:9f:54:90:96: 10:3c:c3:28:ac:ce:73:bc:df:7f:b3:b1:7e:bd:86: b1:d1:d6:83:40:3d:b0:f2:e4:30:30:17:79:cc:39: b1:9e:6f:6c:75:00:82:bb:08:fb:d8:f5:b4:70:19: c1:cf:00:a9:0c:e6:99:ac:12:7a:a3:85:67:19:61: e4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7C:37:2F:08:81:1A:4B:76:AE:0D:9B:EA:C3:37:CC:18:D0:4D:98 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cXw3LwiBGkt2rg2b6sM3zBjQTZg.roa sbgp-ipAddrBlock: critical IPv4: 114.142.128.0/21 Signature Algorithm: sha256WithRSAEncryption 75:41:bc:3d:09:8d:99:3d:ab:f0:cd:6a:be:6f:14:a6:0b:39: 34:52:70:39:20:c3:d8:a8:63:69:20:c1:53:b9:52:55:b1:98: be:75:24:3e:a4:98:15:4c:e5:7b:97:ad:02:0b:77:6b:43:c7: a9:71:a8:fb:87:64:10:92:30:99:97:0a:95:ec:21:32:87:ff: 09:8d:12:92:1b:15:6e:68:e9:a4:e3:09:d9:15:09:c5:68:fd: 65:a0:e5:49:af:38:31:2d:9c:87:e8:72:1b:5e:e6:0d:c6:e9: 3d:b3:b1:88:c8:23:8f:f7:ee:98:b6:5c:e3:84:15:e5:ec:ef: 31:7f:9b:ce:3c:f7:92:c3:59:46:41:fb:a5:5b:90:ce:07:98: 65:2b:21:21:33:88:84:ca:7c:ff:66:0c:6a:06:05:92:fc:69: e2:a8:18:c8:84:e1:46:d1:00:0d:b5:94:07:86:7b:18:16:53: bd:38:8d:24:4a:46:cd:e0:fe:f4:66:2a:c5:10:5e:03:3a:ad: e6:98:fd:34:93:31:c1:7f:25:43:e3:28:52:b4:ad:e8:13:c1: 78:f7:36:28:18:ab:8b:23:e5:7b:76:f2:17:f4:86:d4:98:f2: 4d:03:ed:ad:c8:7c:ee:72:b9:03:cd:38:cf:75:67:2a:98:ff: 5c:fa:2c:78 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODExMzJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxN0MzNzJGMDg4MTFB NEI3NkFFMEQ5QkVBQzMzN0NDMThEMDREOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyj/w9z8Q6edJNDPLLiN4LBvumvz7dijwRstnFmBI0NjHUT6Vw 8cqvhkosjh2mO0TviA5nglJhKtrX3OrjlDBOMVfLn8odq2I5miCh6pACnZR05uuZ wO6emYTIKfGy1iHTaeO0tRT5VOppYENWanTihuAZrOPGP4impuzkEJRrtDxw88D4 rPqdSi2Z/ii9GHbL1MJWyG3JpnWv9iH9BJKrD4pFTQJRw/B4KutuFjal1SN3VDZ9 hlQOpw3rRrken1SQlhA8wyisznO833+zsX69hrHR1oNAPbDy5DAwF3nMObGeb2x1 AIK7CPvY9bRwGcHPAKkM5pmsEnqjhWcZYeRjAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcXw3LwiBGkt2rg2b6sM3zBjQTZgwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL2NYdzNMd2lCR2t0MnJnMmI2c00zekJqUVRaZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANyjoAwDQYJKoZIhvcNAQELBQADggEB AHVBvD0JjZk9q/DNar5vFKYLOTRScDkgw9ioY2kgwVO5UlWxmL51JD6kmBVM5XuX rQILd2tDx6lxqPuHZBCSMJmXCpXsITKH/wmNEpIbFW5o6aTjCdkVCcVo/WWg5Umv ODEtnIfochte5g3G6T2zsYjII4/37pi2XOOEFeXs7zF/m84895LDWUZB+6VbkM4H mGUrISEziITKfP9mDGoGBZL8aeKoGMiE4UbRAA21lAeGexgWU704jSRKRs3g/vRm KsUQXgM6reaY/TSTMcF/JUPjKFK0regTwXj3NigYq4sj5Xt28hf0htSY8k0D7a3I fO5yuQPNOM91ZyqY/1z6LHg= -----END CERTIFICATE-----Generated at Mon Apr 6 12:56:39 2026 by rpki-client