$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/snD1RaPKJeJmw-cT_KlaRr44Xcg.roa File: snD1RaPKJeJmw-cT_KlaRr44Xcg.roa (raw, json) Hash identifier: 1YWTZL4cnKaemMJVLASQz3gc13Q2vXd9ZVHi7jjCbnI= Subject key identifier: B2:70:F5:45:A3:CA:25:E2:66:C3:E7:13:FC:A9:5A:46:BE:38:5D:C8 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 04D8 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/snD1RaPKJeJmw-cT_KlaRr44Xcg.roa Signing time: Tue 31 Mar 2026 08:13:20 +0000 ROA not before: Tue 31 Mar 2026 08:13:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 0 IP address blocks: 210.156.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 12:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1240 (0x4d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:13:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B270F545A3CA25E266C3E713FCA95A46BE385DC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ed:23:d0:8d:1d:20:66:27:e6:b0:16:a8:04: 59:c1:71:24:6b:42:86:e1:9a:46:97:fb:de:d4:39: 82:54:2c:b3:31:df:8a:9c:83:c2:50:c8:99:b6:a9: 50:fb:39:86:d2:5e:2d:85:ff:dd:ce:1a:f2:a9:d8: e9:37:09:aa:b4:76:e1:c2:46:37:01:90:3e:b5:39: a6:1a:2c:ba:9f:c8:33:d9:95:fc:33:b5:60:54:89: 39:7c:6b:83:a3:77:c5:cb:f4:52:fc:bf:46:f0:fe: 09:ba:fd:58:20:1a:76:61:2a:14:4f:00:fb:1c:b8: 95:a9:52:e8:33:66:03:19:d8:de:8f:a4:48:4c:b8: e8:a8:03:66:2c:e8:58:3a:b8:7d:74:a2:41:31:17: 6e:be:de:76:cf:dc:60:b2:27:f7:03:59:32:b0:72: 2d:50:b2:03:27:6d:59:14:a5:9b:47:69:5d:4e:02: 85:5a:b1:38:7e:7a:65:4a:e1:0d:94:4c:53:39:39: 98:58:3d:ad:ee:12:71:16:d4:c4:7a:f2:4b:a7:f6: 40:6e:b3:b0:d2:fb:6e:06:31:ca:d3:18:5a:ba:57: ac:90:ae:b1:0d:aa:37:a0:75:85:b6:c6:44:10:e9: 33:01:f8:fd:63:99:f2:a6:d7:3c:ba:79:33:1c:ff: 94:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:70:F5:45:A3:CA:25:E2:66:C3:E7:13:FC:A9:5A:46:BE:38:5D:C8 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/snD1RaPKJeJmw-cT_KlaRr44Xcg.roa sbgp-ipAddrBlock: critical IPv4: 210.156.64.0/20 Signature Algorithm: sha256WithRSAEncryption bd:26:93:3b:82:b1:06:b6:51:a5:47:7b:b1:2f:e6:e6:50:5d: 0b:5e:1d:d6:ee:a6:cf:20:cd:41:33:ad:64:5e:9c:95:48:76: 2e:4e:06:9c:6d:d4:5d:9d:9d:05:17:86:4b:32:bf:3a:72:d7: eb:1c:e7:8f:5e:28:26:d2:99:4e:55:2e:57:0e:ce:18:65:e9: 58:9f:8d:f8:75:e5:a8:ea:66:72:6f:6b:ff:91:88:54:b1:03: 81:51:aa:36:7e:15:17:a9:14:7b:24:68:53:51:9e:28:1d:af: f0:b8:b3:1f:22:96:e6:ea:f4:fc:f0:65:a5:31:24:43:ae:c9: 35:3d:62:80:b9:0e:46:7f:fb:bc:39:3e:a1:ad:45:ca:c3:1c: 33:51:64:04:4d:a5:e7:47:62:d8:d7:3f:ed:a2:d6:6d:e4:c7: df:fb:1f:59:d3:36:37:55:70:6c:2e:31:93:b0:f4:0a:58:01: 90:03:01:44:cb:78:26:82:0e:04:9e:c3:56:78:42:81:19:1d: ef:7a:53:a2:9f:b6:bf:4d:a8:8f:df:25:fa:7c:f7:1a:45:86: 5b:71:11:3e:81:9b:35:e0:f2:85:8d:61:8f:9c:19:84:bf:9a: 6b:ca:6c:25:ee:73:1a:06:ff:27:96:ef:ee:29:d2:0c:12:2e: 4a:28:36:91 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBNgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEzMjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIyNzBGNTQ1QTNDQTI1 RTI2NkMzRTcxM0ZDQTk1QTQ2QkUzODVEQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC77SPQjR0gZifmsBaoBFnBcSRrQobhmkaX+97UOYJULLMx34qc g8JQyJm2qVD7OYbSXi2F/93OGvKp2Ok3Caq0duHCRjcBkD61OaYaLLqfyDPZlfwz tWBUiTl8a4Ojd8XL9FL8v0bw/gm6/VggGnZhKhRPAPscuJWpUugzZgMZ2N6PpEhM uOioA2Ys6Fg6uH10okExF26+3nbP3GCyJ/cDWTKwci1QsgMnbVkUpZtHaV1OAoVa sTh+emVK4Q2UTFM5OZhYPa3uEnEW1MR68kun9kBus7DS+24GMcrTGFq6V6yQrrEN qjegdYW2xkQQ6TMB+P1jmfKm1zy6eTMc/5SzAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUsnD1RaPKJeJmw+cT/KlaRr44XcgwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL3NuRDFSYVBLSmVKbXctY1RfS2xhUnI0NFhjZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSnEAwDQYJKoZIhvcNAQELBQADggEB AL0mkzuCsQa2UaVHe7Ev5uZQXQteHdbups8gzUEzrWRenJVIdi5OBpxt1F2dnQUX hksyvzpy1+sc549eKCbSmU5VLlcOzhhl6Vifjfh15ajqZnJva/+RiFSxA4FRqjZ+ FRepFHskaFNRnigdr/C4sx8ilubq9PzwZaUxJEOuyTU9YoC5DkZ/+7w5PqGtRcrD HDNRZARNpedHYtjXP+2i1m3kx9/7H1nTNjdVcGwuMZOw9ApYAZADAUTLeCaCDgSe w1Z4QoEZHe96U6Kftr9NqI/fJfp89xpFhltxET6BmzXg8oWNYY+cGYS/mmvKbCXu cxoG/yeW7+4p0gwSLkooNpE= -----END CERTIFICATE-----Generated at Mon Apr 6 15:43:51 2026 by rpki-client