$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10966/1hDWKAZ1pwa6f6yxjNP2WwFr8u0.roa File: 1hDWKAZ1pwa6f6yxjNP2WwFr8u0.roa (raw, json) Hash identifier: gvQdyeJ7sCZzndyi/nCi+xNoHjGWAoQtsip4j2SQ7b0= Subject key identifier: D6:10:D6:28:06:75:A7:06:BA:7F:AC:B1:8C:D3:F6:5B:01:6B:F2:ED Certificate issuer: /CN=FB72FAA523BA6526855D99065E21B4B958C5F016 Certificate serial: 5E Authority key identifier: FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/1hDWKAZ1pwa6f6yxjNP2WwFr8u0.roa Signing time: Tue 31 Mar 2026 07:52:13 +0000 ROA not before: Tue 31 Mar 2026 07:52:13 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 146987 IP address blocks: 157.120.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB72FAA523BA6526855D99065E21B4B958C5F016 Validity Not Before: Mar 31 07:52:13 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D610D6280675A706BA7FACB18CD3F65B016BF2ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c7:5f:12:1f:65:4c:59:51:bc:43:d0:7d:4f: 8c:d7:26:e3:d1:65:7a:cb:d6:32:31:ae:0a:8f:39: 48:be:c0:0f:25:85:8a:21:d9:ac:eb:a4:ed:b7:a4: 88:20:4f:f3:a1:cf:af:7f:bb:bb:ea:64:ea:0c:3b: da:23:7c:74:2c:4d:79:65:c8:d8:a2:82:12:69:73: 36:08:61:4f:63:e7:f6:be:e4:12:15:7c:61:a4:2f: 4d:6f:55:d0:eb:80:8e:ea:86:00:39:12:8e:70:ff: 90:1a:40:b3:2b:c9:6a:ef:c0:d5:94:75:8e:1d:a2: e8:e0:04:38:93:6e:92:c1:1a:56:ef:ea:c0:8c:c3: 06:22:8c:1c:f9:53:c6:a6:e4:57:93:82:18:2f:30: eb:1c:8a:37:a2:08:bf:3d:32:ba:6d:3c:48:02:9e: 9e:81:aa:d1:14:2b:0b:2f:99:a2:40:73:3d:01:f3: b1:9a:24:76:b6:05:09:3d:76:75:58:d5:2c:f5:7c: da:06:01:6c:7e:66:76:c2:a9:bc:cf:02:5e:bc:ad: e5:d9:44:f5:88:2c:75:ff:98:2f:96:fe:bf:a9:4b: 1c:9e:11:d6:81:d9:05:6e:29:f8:62:bf:29:32:dc: 41:2f:4a:e6:c7:25:c8:93:db:51:92:22:04:a1:61: a9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:10:D6:28:06:75:A7:06:BA:7F:AC:B1:8C:D3:F6:5B:01:6B:F2:ED X509v3 Authority Key Identifier: keyid:FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/1hDWKAZ1pwa6f6yxjNP2WwFr8u0.roa sbgp-ipAddrBlock: critical IPv4: 157.120.114.0/24 Signature Algorithm: sha256WithRSAEncryption 55:ea:bd:c0:f0:20:c1:1d:11:39:08:86:2d:dc:08:50:76:6b: ee:e9:8a:0e:64:4d:ec:4f:89:26:4e:c9:ff:3d:b2:4e:26:6f: 12:f1:47:71:f2:a9:7e:7a:18:32:5f:32:53:88:ff:7c:77:37: d5:6d:9e:47:8d:08:85:84:d3:79:14:f4:43:4c:28:da:8f:52: 07:ba:01:b5:58:fe:22:89:61:ed:f0:5b:4c:80:94:f1:98:5b: 28:c2:16:31:ed:5b:f1:fe:b6:e8:46:70:44:bb:bf:09:8f:8b: 0c:e2:3a:76:0a:5d:6a:0c:ba:8e:f8:c9:51:49:08:85:03:f0: fd:2b:d2:41:ff:51:1f:3b:75:81:d1:e5:22:78:73:19:d6:8d: d4:71:f4:1d:4b:fa:4d:ed:67:67:e3:31:e4:46:b9:c6:61:e1: 63:58:5f:08:17:b2:c3:1a:90:b9:d4:fa:d7:5d:2a:9d:98:4b: 0f:85:6d:4c:b8:75:99:76:1a:3a:f4:42:e5:a4:74:01:cb:03: ba:a6:f5:4a:96:ce:84:78:00:e9:35:6d:6d:01:0b:45:2b:b0: f3:4d:9f:e3:34:c2:3c:62:d0:6c:fb:94:af:0a:01:a3:b8:00: 73:77:41:e1:51:41:da:4e:ed:e8:4a:6a:43:44:e6:52:a9:13: d8:05:17:6b -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQjcy RkFBNTIzQkE2NTI2ODU1RDk5MDY1RTIxQjRCOTU4QzVGMDE2MB4XDTI2MDMzMTA3 NTIxM1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRDYxMEQ2MjgwNjc1QTcw NkJBN0ZBQ0IxOENEM0Y2NUIwMTZCRjJFRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANvHXxIfZUxZUbxD0H1PjNcm49FlesvWMjGuCo85SL7ADyWFiiHZ rOuk7bekiCBP86HPr3+7u+pk6gw72iN8dCxNeWXI2KKCEmlzNghhT2Pn9r7kEhV8 YaQvTW9V0OuAjuqGADkSjnD/kBpAsyvJau/A1ZR1jh2i6OAEOJNuksEaVu/qwIzD BiKMHPlTxqbkV5OCGC8w6xyKN6IIvz0yum08SAKenoGq0RQrCy+ZokBzPQHzsZok drYFCT12dVjVLPV82gYBbH5mdsKpvM8CXryt5dlE9Ygsdf+YL5b+v6lLHJ4R1oHZ BW4p+GK/KTLcQS9K5sclyJPbUZIiBKFhqe8CAwEAAaOCAd0wggHZMB0GA1UdDgQW BBTWENYoBnWnBrp/rLGM0/ZbAWvy7TAfBgNVHSMEGDAWgBT7cvqlI7plJoVdmQZe IbS5WMXwFjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA5NjYvLTNMNnBTTzZaU2FGWFprR1hpRzB1VmpGOEJZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLTNMNnBTTzZaU2FGWFprR1hpRzB1 VmpGOEJZLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzEwOTY2LzFoRFdLQVoxcHdhNmY2eXhqTlAyV3dGcjh1MC5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdeHIwDQYJKoZIhvcNAQELBQAD ggEBAFXqvcDwIMEdETkIhi3cCFB2a+7pig5kTexPiSZOyf89sk4mbxLxR3HyqX56 GDJfMlOI/3x3N9VtnkeNCIWE03kU9ENMKNqPUge6AbVY/iKJYe3wW0yAlPGYWyjC FjHtW/H+tuhGcES7vwmPiwziOnYKXWoMuo74yVFJCIUD8P0r0kH/UR87dYHR5SJ4 cxnWjdRx9B1L+k3tZ2fjMeRGucZh4WNYXwgXssMakLnU+tddKp2YSw+FbUy4dZl2 Gjr0QuWkdAHLA7qm9UqWzoR4AOk1bW0BC0UrsPNNn+M0wjxi0Gz7lK8KAaO4AHN3 QeFRQdpO7ehKakNE5lKpE9gFF2s= -----END CERTIFICATE-----Generated at Fri Apr 17 13:28:50 2026 by rpki-client