$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/XCUsvd9ZDRTETbBE8fN0xNvN04Y.roa File: XCUsvd9ZDRTETbBE8fN0xNvN04Y.roa (raw, json) Hash identifier: 5OO9pJSkrERiigaKiwtekLVHyYphqTaxs/19Kx0OO88= Subject key identifier: 5C:25:2C:BD:DF:59:0D:14:C4:4D:B0:44:F1:F3:74:C4:DB:CD:D3:86 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 02CE Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/XCUsvd9ZDRTETbBE8fN0xNvN04Y.roa Signing time: Tue 31 Mar 2026 07:34:50 +0000 ROA not before: Tue 31 Mar 2026 07:34:50 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7684 IP address blocks: 49.212.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Mar 31 07:34:50 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5C252CBDDF590D14C44DB044F1F374C4DBCDD386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:de:3e:90:5e:14:75:61:b1:ed:7b:b8:81: ee:6a:90:ba:b7:74:4b:06:e9:87:64:ec:fa:08:c1: 2a:e6:11:78:7f:9e:c7:4e:3f:a6:23:0c:60:ca:e0: 84:95:20:3f:56:88:e3:26:73:6d:cf:31:47:fa:11: ef:5d:c6:19:5b:51:21:66:4b:1e:05:a7:a5:7c:19: da:d3:11:dd:31:c4:2e:ef:93:f0:33:aa:4b:89:1a: 42:97:42:46:0a:38:de:8a:11:1a:98:c2:a3:4a:58: 08:fd:fc:f5:ad:5e:cd:0c:6f:4c:fc:3f:59:44:47: 39:31:40:e0:45:62:3d:5a:15:17:aa:1b:25:dd:dd: 10:9a:5f:bf:de:e9:22:c4:26:4f:49:6f:d4:70:cb: 8e:82:ca:19:b4:d5:c1:4f:e2:75:1f:e5:ee:43:b8: df:43:ef:16:82:c4:25:49:b8:2c:82:b3:d1:f6:46: d3:72:1b:5a:a0:6e:61:d7:1c:15:5c:c9:9e:71:cd: 70:f4:d5:90:77:e1:a4:50:36:db:73:e7:21:d3:e9: 4d:f0:c0:ec:c6:d1:c7:63:80:b1:f3:09:84:89:1d: 06:63:a6:66:c4:c3:8d:fe:b8:b3:c9:8b:ce:7d:af: 07:04:ad:ef:f1:96:d6:8d:2a:43:27:70:bc:15:c8: da:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:25:2C:BD:DF:59:0D:14:C4:4D:B0:44:F1:F3:74:C4:DB:CD:D3:86 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/XCUsvd9ZDRTETbBE8fN0xNvN04Y.roa sbgp-ipAddrBlock: critical IPv4: 49.212.70.0/24 Signature Algorithm: sha256WithRSAEncryption 65:fd:1b:2c:a9:ad:c4:4f:e3:6c:c3:25:b9:da:95:20:6c:e1: 33:9d:3a:da:77:af:e0:aa:6f:d8:ec:dd:af:a6:19:3d:0b:74: 4b:d6:4b:93:6d:89:13:dd:f7:ba:8a:9b:1c:bc:7e:06:80:7b: ab:9c:b1:31:a5:9d:cf:55:d5:38:c6:95:0a:0a:a4:53:cf:e0: da:ad:10:40:21:2b:ed:39:0f:0b:e2:f1:3c:73:98:87:55:f9: 39:ce:f6:2a:16:0b:ea:a1:02:15:47:d2:b6:d0:89:1d:53:5f: d1:f4:ac:f2:7b:00:63:6c:c3:af:5a:fe:35:99:5d:f2:80:6f: ff:1e:75:07:bb:82:97:20:c3:65:36:e0:76:57:40:a2:67:eb: 28:3a:6a:0b:26:41:72:d9:36:d0:3b:8c:f7:4a:07:01:19:d4: 11:f7:9a:48:ef:e5:15:13:3f:e5:4d:6b:c2:c9:8a:74:41:70: 4a:40:7f:cf:90:52:37:4b:e7:ff:a8:fc:b1:86:8a:0b:c7:9f: cf:8f:6b:0c:8e:ec:b8:ad:70:b7:5f:69:28:6e:9a:8e:f1:73: 93:27:36:d6:a9:44:b6:6a:cd:84:84:80:ff:13:f3:1c:67:41: 90:7c:bd:58:f4:3f:20:49:7c:3a:bd:5a:b4:47:d5:fb:60:2c: 47:d8:31:82 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNjAzMzEw NzM0NTBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVDMjUyQ0JEREY1OTBE MTRDNDREQjA0NEYxRjM3NEM0REJDREQzODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+m94+kF4UdWGx7Xu4ge5qkLq3dEsG6Ydk7PoIwSrmEXh/nsdO P6YjDGDK4ISVID9WiOMmc23PMUf6Ee9dxhlbUSFmSx4Fp6V8GdrTEd0xxC7vk/Az qkuJGkKXQkYKON6KERqYwqNKWAj9/PWtXs0Mb0z8P1lERzkxQOBFYj1aFReqGyXd 3RCaX7/e6SLEJk9Jb9Rwy46Cyhm01cFP4nUf5e5DuN9D7xaCxCVJuCyCs9H2RtNy G1qgbmHXHBVcyZ5xzXD01ZB34aRQNttz5yHT6U3wwOzG0cdjgLHzCYSJHQZjpmbE w43+uLPJi859rwcEre/xltaNKkMncLwVyNqhAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUXCUsvd9ZDRTETbBE8fN0xNvN04YwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8xMDI0Ny9YQ1VzdmQ5WkRSVEVUYkJFOGZOMHhOdk4wNFkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAMdRGMA0GCSqGSIb3DQEBCwUA A4IBAQBl/Rssqa3ET+NswyW52pUgbOEznTrad6/gqm/Y7N2vphk9C3RL1kuTbYkT 3fe6ipscvH4GgHurnLExpZ3PVdU4xpUKCqRTz+DarRBAISvtOQ8L4vE8c5iHVfk5 zvYqFgvqoQIVR9K20IkdU1/R9KzyewBjbMOvWv41mV3ygG//HnUHu4KXIMNlNuB2 V0CiZ+soOmoLJkFy2TbQO4z3SgcBGdQR95pI7+UVEz/lTWvCyYp0QXBKQH/PkFI3 S+f/qPyxhooLx5/Pj2sMjuy4rXC3X2kobpqO8XOTJzbWqUS2as2EhID/E/McZ0GQ fL1Y9D8gSXw6vVq0R9X7YCxH2DGC -----END CERTIFICATE-----Generated at Fri Apr 17 07:49:44 2026 by rpki-client