$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/cb2s9Nv0WD8u4jdAhbQXrt2fJNQ.roa File: cb2s9Nv0WD8u4jdAhbQXrt2fJNQ.roa (raw, json) Hash identifier: lIIlaVcm1exPNp54xL7t8xC02GaFabkFnOh+SNLahM8= Subject key identifier: 71:BD:AC:F4:DB:F4:58:3F:2E:E2:37:40:85:B4:17:AE:DD:9F:24:D4 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 043F Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cb2s9Nv0WD8u4jdAhbQXrt2fJNQ.roa Signing time: Tue 31 Mar 2026 08:12:07 +0000 ROA not before: Tue 31 Mar 2026 08:12:07 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18136 IP address blocks: 219.105.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 13:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:12:07 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=71BDACF4DBF4583F2EE2374085B417AEDD9F24D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4b:aa:e5:2d:fc:be:99:8d:27:5d:df:a6:d8: de:bb:f1:ec:05:07:c6:ae:7a:0d:87:42:14:25:f3: 97:ae:0f:90:88:20:4b:1b:fc:57:e2:5a:70:e9:e9: fb:89:8c:ce:19:53:ff:69:61:5b:19:52:f6:f1:8c: 39:07:3f:6c:35:81:42:f7:f3:f8:30:67:93:01:27: e9:be:7e:aa:31:40:50:a9:ac:33:cf:2b:a3:ff:ca: e1:c3:e5:ba:52:ed:ae:10:f8:bb:b9:e8:6d:51:ab: 1b:8a:7d:c3:71:2b:44:58:4d:8a:2b:50:e7:7e:5a: 70:1d:c4:6c:85:77:49:4f:40:71:17:ea:c2:d0:90: 7d:6a:c9:b9:bc:8e:a4:03:3b:1c:b5:cd:0d:7d:15: 6e:6b:4e:57:2f:37:5a:ca:9d:e1:c3:4f:b3:ed:50: 93:32:77:3f:a5:68:b4:d0:60:6c:e9:4d:79:ec:d0: 53:fb:de:7c:d3:f2:57:4b:06:7e:6e:3e:78:4e:78: 65:40:96:1d:bb:8f:18:7d:cf:84:2c:8b:5b:e9:77: dc:87:c6:ac:bb:16:31:a4:1f:7c:da:61:12:da:a0: af:a4:35:22:54:bb:86:f4:5e:2e:11:75:bf:b3:7b: ea:01:33:2c:05:2a:79:a9:7c:aa:a1:83:50:5f:18: 10:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BD:AC:F4:DB:F4:58:3F:2E:E2:37:40:85:B4:17:AE:DD:9F:24:D4 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cb2s9Nv0WD8u4jdAhbQXrt2fJNQ.roa sbgp-ipAddrBlock: critical IPv4: 219.105.96.0/19 Signature Algorithm: sha256WithRSAEncryption 65:27:c5:61:5a:c0:7c:70:36:e5:ad:6c:67:1b:00:48:7c:90: fa:89:c7:c5:ea:e3:a8:3a:b9:76:83:ff:a2:09:b6:21:6b:08: f2:dc:be:9e:2c:d0:a3:39:12:73:24:12:77:99:64:ef:aa:b7: 02:64:1a:14:39:ef:f5:16:70:87:95:2a:d0:89:50:52:da:00: 89:5d:1b:b9:f2:45:4d:57:55:f5:bd:29:10:0d:6d:41:37:63: 85:1f:9e:01:fe:5f:63:1f:36:f3:d9:2d:31:73:57:a1:49:bf: 74:a7:cd:08:ef:6b:cf:6e:d8:6b:2c:e6:f7:3e:74:41:a0:ba: 58:74:65:4d:e4:47:b6:ee:c6:2f:99:8d:74:f6:f9:74:8c:cb: b3:35:ae:30:fa:fd:a9:51:ae:a1:dd:56:bc:80:5c:72:48:dd: e5:68:ff:20:98:36:f9:22:d4:54:a8:71:e2:dc:46:df:d2:c4: 77:7b:6d:a4:ff:e0:d1:a3:7a:84:f1:5f:38:8e:f6:ad:c5:5d: 9d:2b:15:d2:f3:ee:72:aa:3a:f4:27:ba:43:5d:f9:3b:3d:72: 4d:10:a4:6c:db:36:e4:94:f6:39:30:a1:32:64:41:8c:9c:f7: 99:4d:3d:ed:6b:94:fb:b4:ba:6d:d7:94:dd:24:d7:bb:88:2c: 50:65:4a:c7 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEyMDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxQkRBQ0Y0REJGNDU4 M0YyRUUyMzc0MDg1QjQxN0FFREQ5RjI0RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvS6rlLfy+mY0nXd+m2N678ewFB8aueg2HQhQl85euD5CIIEsb /FfiWnDp6fuJjM4ZU/9pYVsZUvbxjDkHP2w1gUL38/gwZ5MBJ+m+fqoxQFCprDPP K6P/yuHD5bpS7a4Q+Lu56G1RqxuKfcNxK0RYTYorUOd+WnAdxGyFd0lPQHEX6sLQ kH1qybm8jqQDOxy1zQ19FW5rTlcvN1rKneHDT7PtUJMydz+laLTQYGzpTXns0FP7 3nzT8ldLBn5uPnhOeGVAlh27jxh9z4Qsi1vpd9yHxqy7FjGkH3zaYRLaoK+kNSJU u4b0Xi4Rdb+ze+oBMywFKnmpfKqhg1BfGBC/AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcb2s9Nv0WD8u4jdAhbQXrt2fJNQwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL2NiMnM5TnYwV0Q4dTRqZEFoYlFYcnQyZkpOUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXbaWAwDQYJKoZIhvcNAQELBQADggEB AGUnxWFawHxwNuWtbGcbAEh8kPqJx8Xq46g6uXaD/6IJtiFrCPLcvp4s0KM5EnMk EneZZO+qtwJkGhQ57/UWcIeVKtCJUFLaAIldG7nyRU1XVfW9KRANbUE3Y4UfngH+ X2MfNvPZLTFzV6FJv3SnzQjva89u2Gss5vc+dEGgulh0ZU3kR7buxi+ZjXT2+XSM y7M1rjD6/alRrqHdVryAXHJI3eVo/yCYNvki1FSoceLcRt/SxHd7baT/4NGjeoTx XziO9q3FXZ0rFdLz7nKqOvQnukNd+Ts9ck0QpGzbNuSU9jkwoTJkQYyc95lNPe1r lPu0um3XlN0k17uILFBlSsc= -----END CERTIFICATE-----Generated at Mon Apr 6 15:39:38 2026 by rpki-client