$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/S2O_dSH4AWGaLTLX_3mFMYvWfTQ.roa File: S2O_dSH4AWGaLTLX_3mFMYvWfTQ.roa (raw, json) Hash identifier: /31IywQHSim0QPgMANWHseo9XdtYM7bU04VLRBUPOQI= Subject key identifier: 4B:63:BF:75:21:F8:01:61:9A:2D:32:D7:FF:79:85:31:8B:D6:7D:34 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0896 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/S2O_dSH4AWGaLTLX_3mFMYvWfTQ.roa Signing time: Tue 31 Mar 2026 07:43:51 +0000 ROA not before: Tue 31 Mar 2026 07:43:51 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2516 IP address blocks: 210.158.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 13:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2198 (0x896) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 07:43:51 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4B63BF7521F801619A2D32D7FF7985318BD67D34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d2:ef:ba:54:7a:d7:c6:8c:4d:33:1e:ab:50: f7:9a:3c:81:e0:a2:8b:9f:f4:e4:0e:0b:1e:59:23: b1:ff:f2:a1:b8:00:5b:0f:5f:f1:bc:71:e6:c9:bf: a5:c6:2b:e6:7d:27:cd:9f:8b:6b:f0:4f:de:12:ce: 97:7e:95:b6:f0:5b:45:8d:81:ef:26:97:ec:d4:6d: 8d:5e:ef:2d:96:4e:26:9d:07:2e:ef:14:bc:62:01: aa:4a:1f:32:cc:6a:d1:e6:9e:78:d3:a0:d8:de:24: 19:f2:eb:e0:ec:20:b7:4d:7e:b8:c2:5e:e9:02:df: 5f:98:94:c6:b5:14:72:8d:fa:5b:21:60:c4:df:62: a7:0b:63:32:73:c1:d4:10:78:42:30:ae:a4:77:a3: 21:cf:75:6e:2f:00:57:41:ea:31:6b:7e:58:8b:67: 89:77:45:34:76:0f:cc:68:d3:f1:b3:3f:98:55:a2: b3:98:a9:2f:90:c3:ff:5b:6e:3b:86:7d:22:f2:17: 50:cc:1d:3f:27:8b:97:9e:50:3e:5e:eb:71:7a:56: 01:45:14:aa:ba:11:82:76:ee:c5:8c:8b:a9:29:40: a3:50:5c:55:37:3a:3e:6b:3b:c5:24:e9:9f:36:8d: ee:e8:a0:31:f0:ae:23:a1:aa:ab:ff:90:75:a4:2b: 9c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:63:BF:75:21:F8:01:61:9A:2D:32:D7:FF:79:85:31:8B:D6:7D:34 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/S2O_dSH4AWGaLTLX_3mFMYvWfTQ.roa sbgp-ipAddrBlock: critical IPv4: 210.158.0.0/19 Signature Algorithm: sha256WithRSAEncryption 97:e8:a4:5b:63:b3:80:a6:a0:4f:0e:8a:8e:93:51:14:c2:ce: 53:86:65:de:a1:78:9d:26:c9:9a:1a:1e:a6:a6:32:6c:18:ba: d7:68:c8:af:1d:80:12:3a:ff:fe:f7:23:7f:44:10:74:5f:8d: b8:e5:d1:f4:eb:20:41:1f:45:b5:f8:5c:9a:dd:a9:9d:74:ef: 5a:b6:a4:7d:7a:06:28:44:24:b2:76:cb:c0:dc:93:9c:ad:b5: e4:ad:dd:5b:f0:e3:fc:e9:14:d7:aa:27:5f:60:9d:2e:51:de: d8:51:01:58:26:4d:8a:47:fd:4e:cf:1f:bc:90:07:7b:75:ca: fd:04:c8:23:5c:fd:ae:28:88:f4:91:22:86:64:6f:6e:ea:b6: d7:81:9c:f0:f0:63:d7:93:90:e4:54:50:de:37:01:fe:55:37: a1:6a:29:49:28:a6:54:7e:6f:4b:7d:19:df:25:ae:cd:bc:17: a1:ee:1e:21:e4:b3:1a:d7:20:77:d1:b9:84:ce:68:f5:25:65: 2c:0b:71:f1:82:78:49:5b:02:5b:67:da:99:7b:95:cb:8b:f3: ab:5b:c2:99:5b:b8:dd:b4:f4:6b:b2:46:87:f3:dd:ca:d9:86: 46:ce:93:a9:6a:2e:1a:b5:77:c1:f0:65:2b:d4:e2:8c:73:a4: 29:a8:5d:cc -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICCJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNjAzMzEw NzQzNTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRCNjNCRjc1MjFGODAx NjE5QTJEMzJEN0ZGNzk4NTMxOEJENjdEMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC0u+6VHrXxoxNMx6rUPeaPIHgoouf9OQOCx5ZI7H/8qG4AFsP X/G8cebJv6XGK+Z9J82fi2vwT94Szpd+lbbwW0WNge8ml+zUbY1e7y2WTiadBy7v FLxiAapKHzLMatHmnnjToNjeJBny6+DsILdNfrjCXukC31+YlMa1FHKN+lshYMTf YqcLYzJzwdQQeEIwrqR3oyHPdW4vAFdB6jFrfliLZ4l3RTR2D8xo0/GzP5hVorOY qS+Qw/9bbjuGfSLyF1DMHT8ni5eeUD5e63F6VgFFFKq6EYJ27sWMi6kpQKNQXFU3 Oj5rO8Uk6Z82je7ooDHwriOhqqv/kHWkK5yJAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUS2O/dSH4AWGaLTLX/3mFMYvWfTQwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTYxL1MyT19kU0g0QVdHYUxUTFhfM21GTVl2V2ZUUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSngAwDQYJKoZIhvcNAQELBQADggEB AJfopFtjs4CmoE8Oio6TURTCzlOGZd6heJ0myZoaHqamMmwYutdoyK8dgBI6//73 I39EEHRfjbjl0fTrIEEfRbX4XJrdqZ1071q2pH16BihEJLJ2y8Dck5ytteSt3Vvw 4/zpFNeqJ19gnS5R3thRAVgmTYpH/U7PH7yQB3t1yv0EyCNc/a4oiPSRIoZkb27q tteBnPDwY9eTkORUUN43Af5VN6FqKUkoplR+b0t9Gd8lrs28F6HuHiHksxrXIHfR uYTOaPUlZSwLcfGCeElbAltn2pl7lcuL86tbwplbuN209GuyRofz3crZhkbOk6lq Lhq1d8HwZSvU4oxzpCmoXcw= -----END CERTIFICATE-----Generated at Fri Apr 17 16:02:35 2026 by rpki-client