$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/oUHZhNB3Us0haElKSKMqgHW61Io.roa File: oUHZhNB3Us0haElKSKMqgHW61Io.roa (raw, json) Hash identifier: DJZupV5rHPDPZzHITVPtv1eQZfD4gr95SCl6Hzi/oI0= Subject key identifier: A1:41:D9:84:D0:77:52:CD:21:68:49:4A:48:A3:2A:80:75:BA:D4:8A Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 04D1 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/oUHZhNB3Us0haElKSKMqgHW61Io.roa Signing time: Tue 31 Mar 2026 08:13:18 +0000 ROA not before: Tue 31 Mar 2026 08:13:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9824 IP address blocks: 122.255.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 08:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1233 (0x4d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:13:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A141D984D07752CD2168494A48A32A8075BAD48A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:00:29:1d:0c:f4:f3:ae:ce:92:a2:cb:64:ad: 78:35:c0:cf:44:f1:c6:4a:98:27:74:cb:0c:d8:27: d9:f5:62:02:60:5a:cc:e0:a7:a5:cd:ff:9d:54:80: 82:54:8b:06:d7:a2:cc:0b:2c:9f:5e:ad:1e:6b:6c: 3f:2a:26:e9:10:62:8e:ed:47:cc:53:e1:b0:6c:50: e2:62:e3:24:e1:ec:81:f2:37:d3:5e:3f:13:91:c1: be:05:4d:06:5c:1f:bf:97:0f:3b:f6:a8:67:e5:9c: 25:bd:47:a9:70:7c:19:75:41:0d:7a:07:f6:21:00: a5:1a:09:bb:78:3c:28:04:fb:a7:32:e5:94:7f:6c: 8e:e8:e4:6b:20:2d:51:dc:23:2a:88:06:b0:ea:9c: 8f:33:70:63:c6:9d:13:f2:6c:bd:99:8f:16:a3:31: 0c:ff:0f:66:40:09:8a:3f:ed:39:6d:7f:9c:9a:ec: 90:0a:88:1e:d5:6d:eb:ad:9b:83:58:b0:1f:7e:b0: 0a:e7:e2:8c:56:66:8c:16:33:c9:ee:76:85:b0:ff: a4:4b:a5:ca:a7:aa:ce:7d:9f:f0:4d:0a:39:7c:7f: f1:26:17:f7:df:d0:d3:17:ae:55:1e:02:3f:d7:e0: fd:4d:0c:f9:49:10:c6:b8:b5:e2:b9:fe:88:8f:f5: 1d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:41:D9:84:D0:77:52:CD:21:68:49:4A:48:A3:2A:80:75:BA:D4:8A X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/oUHZhNB3Us0haElKSKMqgHW61Io.roa sbgp-ipAddrBlock: critical IPv4: 122.255.128.0/17 Signature Algorithm: sha256WithRSAEncryption 3b:50:48:68:83:02:13:42:d7:bb:98:be:03:b1:a5:e6:fa:0c: 3b:7a:00:cb:12:e4:58:8f:68:be:13:6a:28:ec:a8:9f:da:83: 65:b5:51:18:a0:ac:bd:d8:69:65:bc:8c:1c:1f:58:6f:fe:53: 53:41:67:fe:3e:4d:a4:24:b7:53:4d:1b:7e:c7:2d:61:7a:fe: f8:17:ec:40:9f:1c:88:85:64:bb:f5:81:be:ca:c1:70:95:68: 3a:76:aa:e7:89:d0:6f:cf:64:c5:0b:53:d3:79:60:d2:1d:83: 65:48:6c:da:fa:24:d8:a4:40:ac:53:c6:78:d2:89:64:8a:2a: 6e:a8:50:f3:2f:af:f8:68:eb:b7:57:98:7a:8d:0d:aa:8f:76: f0:ff:b8:12:2e:d4:db:b6:9c:24:1f:36:97:c4:2f:aa:70:e4: 9e:07:20:4a:78:50:87:c7:c3:8b:20:80:15:b5:ae:85:85:04: 6f:45:47:d7:8f:f2:ec:e4:2c:45:2a:8f:e4:63:b6:45:90:84: 8d:04:b1:51:83:d2:29:da:45:3e:d8:68:d3:da:67:bc:31:24: 42:de:c0:aa:d3:e8:9a:15:a8:92:28:17:e5:5e:2b:b1:d3:c6: 2e:ad:7e:1e:31:1a:0a:f7:aa:97:5a:eb:65:e2:44:ab:20:e2: 07:59:21:41 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEzMThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEExNDFEOTg0RDA3NzUy Q0QyMTY4NDk0QTQ4QTMyQTgwNzVCQUQ0OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7ACkdDPTzrs6SostkrXg1wM9E8cZKmCd0ywzYJ9n1YgJgWszg p6XN/51UgIJUiwbXoswLLJ9erR5rbD8qJukQYo7tR8xT4bBsUOJi4yTh7IHyN9Ne PxORwb4FTQZcH7+XDzv2qGflnCW9R6lwfBl1QQ16B/YhAKUaCbt4PCgE+6cy5ZR/ bI7o5GsgLVHcIyqIBrDqnI8zcGPGnRPybL2ZjxajMQz/D2ZACYo/7Tltf5ya7JAK iB7Vbeutm4NYsB9+sArn4oxWZowWM8nudoWw/6RLpcqnqs59n/BNCjl8f/EmF/ff 0NMXrlUeAj/X4P1NDPlJEMa4teK5/oiP9R3vAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUoUHZhNB3Us0haElKSKMqgHW61IowHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL29VSFpoTkIzVXMwaGFFbEtTS01xZ0hXNjFJby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd6/4AwDQYJKoZIhvcNAQELBQADggEB ADtQSGiDAhNC17uYvgOxpeb6DDt6AMsS5FiPaL4TaijsqJ/ag2W1URigrL3YaWW8 jBwfWG/+U1NBZ/4+TaQkt1NNG37HLWF6/vgX7ECfHIiFZLv1gb7KwXCVaDp2queJ 0G/PZMULU9N5YNIdg2VIbNr6JNikQKxTxnjSiWSKKm6oUPMvr/ho67dXmHqNDaqP dvD/uBIu1Nu2nCQfNpfEL6pw5J4HIEp4UIfHw4sggBW1roWFBG9FR9eP8uzkLEUq j+RjtkWQhI0EsVGD0inaRT7YaNPaZ7wxJELewKrT6JoVqJIoF+VeK7HTxi6tfh4x Ggr3qpda62XiRKsg4gdZIUE= -----END CERTIFICATE-----Generated at Mon Apr 6 12:57:26 2026 by rpki-client