$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/zT2QnhwezbXj9c2sA4-shdQO5bU.roa File: zT2QnhwezbXj9c2sA4-shdQO5bU.roa (raw, json) Hash identifier: xkHcAybF4VB7wuvn/zOZLLwiWy72/IG75j8+vZUwphU= Subject key identifier: CD:3D:90:9E:1C:1E:CD:B5:E3:F5:CD:AC:03:8F:AC:85:D4:0E:E5:B5 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 08D7 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/zT2QnhwezbXj9c2sA4-shdQO5bU.roa Signing time: Tue 31 Mar 2026 07:44:22 +0000 ROA not before: Tue 31 Mar 2026 07:44:22 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2516 IP address blocks: 210.253.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 07:44:22 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CD3D909E1C1ECDB5E3F5CDAC038FAC85D40EE5B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:2f:64:82:db:20:46:14:b8:e4:1c:01:aa: c6:3b:bd:a3:37:c3:21:d7:c7:a0:87:02:fb:c1:89: de:e1:37:a2:11:f8:a7:16:9b:f4:16:6b:5c:f9:0f: bb:bf:74:70:49:8a:8c:4e:3f:20:da:a5:96:72:3e: f5:6b:b1:30:c5:c4:70:5c:55:09:17:c5:22:a4:bb: 0f:9c:98:fb:e6:08:8b:e0:f9:c4:99:9b:21:46:93: e5:d8:0e:c8:e8:81:ae:46:43:d3:8d:25:0b:fd:1a: 61:08:c9:3e:d7:e5:d2:63:3a:14:be:b3:f9:56:4b: 3d:fe:7d:c9:17:2f:d7:87:5c:d9:88:5c:fe:f9:36: b1:2c:05:47:43:c3:3b:58:04:2f:cc:a1:4c:4a:c8: 9c:09:f1:36:5e:47:2a:14:d8:3f:05:09:25:c1:61: 01:28:a8:9c:51:57:ea:1e:d9:4f:a0:c7:74:2c:a5: 38:2d:77:20:97:f0:b1:0c:ba:11:c1:4c:7e:e6:bb: 97:ed:7c:a6:7b:07:27:9e:4b:35:f9:f7:c5:09:fe: 52:cc:82:b7:a3:b4:c0:1d:05:61:a8:99:77:e5:4c: 3e:aa:db:6d:c4:5a:43:50:41:a0:7d:29:23:60:1f: ee:a0:c8:e5:eb:b8:17:03:a8:c6:1a:a1:9a:df:d1: 0f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:3D:90:9E:1C:1E:CD:B5:E3:F5:CD:AC:03:8F:AC:85:D4:0E:E5:B5 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/zT2QnhwezbXj9c2sA4-shdQO5bU.roa sbgp-ipAddrBlock: critical IPv4: 210.253.158.0/23 Signature Algorithm: sha256WithRSAEncryption 03:d9:b8:69:7f:41:3f:26:7d:b4:9b:f2:ec:06:fa:6b:18:ca: ea:4b:d5:10:27:eb:f6:44:7e:7b:8b:7e:1e:b6:ad:a2:b4:fb: 0a:ac:56:be:a1:93:65:d0:36:93:00:35:a5:79:83:6a:a2:28: 2a:78:cd:da:90:ea:2a:be:fb:cd:bd:79:0e:eb:c4:85:9f:21: ac:b1:7f:c6:80:43:01:b8:fa:84:30:9b:c9:ac:db:b0:a9:1b: 2e:66:fd:94:25:10:e7:ed:b8:2e:41:04:88:26:ad:a0:d3:da: b4:00:41:f7:45:e0:cd:4b:84:7b:b9:c0:b3:6a:27:ae:b2:fe: 7d:cb:1a:b9:4b:a6:96:34:08:fd:ce:5b:24:a1:71:5e:75:65: c4:61:6d:6c:90:71:7d:4b:02:4c:7d:6c:31:54:4b:00:bd:12: 9b:a9:1f:8a:af:a2:6c:c2:83:f3:b1:16:0a:b4:88:f3:34:e0: 29:69:1a:1c:88:9a:8e:4c:3a:4e:65:11:83:1d:72:03:7f:1b: b5:e6:72:fb:db:24:60:f9:9a:ba:3b:22:2c:8c:02:71:ff:28: 27:ee:30:00:6a:8a:35:cb:be:b9:8b:9b:33:c4:4a:9e:85:91: b1:da:49:58:17:78:51:3d:85:9c:cf:d2:b1:2f:02:12:f8:be: 07:dc:70:ea -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNjAzMzEw NzQ0MjJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKENEM0Q5MDlFMUMxRUNE QjVFM0Y1Q0RBQzAzOEZBQzg1RDQwRUU1QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2Yi9kgtsgRhS45BwBqsY7vaM3wyHXx6CHAvvBid7hN6IR+KcW m/QWa1z5D7u/dHBJioxOPyDapZZyPvVrsTDFxHBcVQkXxSKkuw+cmPvmCIvg+cSZ myFGk+XYDsjoga5GQ9ONJQv9GmEIyT7X5dJjOhS+s/lWSz3+fckXL9eHXNmIXP75 NrEsBUdDwztYBC/MoUxKyJwJ8TZeRyoU2D8FCSXBYQEoqJxRV+oe2U+gx3QspTgt dyCX8LEMuhHBTH7mu5ftfKZ7ByeeSzX598UJ/lLMgrejtMAdBWGomXflTD6q223E WkNQQaB9KSNgH+6gyOXruBcDqMYaoZrf0Q/xAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUzT2QnhwezbXj9c2sA4+shdQO5bUwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTYxL3pUMlFuaHdlemJYajljMnNBNC1zaGRRTzViVS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHS/Z4wDQYJKoZIhvcNAQELBQADggEB AAPZuGl/QT8mfbSb8uwG+msYyupL1RAn6/ZEfnuLfh62raK0+wqsVr6hk2XQNpMA NaV5g2qiKCp4zdqQ6iq++829eQ7rxIWfIayxf8aAQwG4+oQwm8ms27CpGy5m/ZQl EOftuC5BBIgmraDT2rQAQfdF4M1LhHu5wLNqJ66y/n3LGrlLppY0CP3OWyShcV51 ZcRhbWyQcX1LAkx9bDFUSwC9EpupH4qvomzCg/OxFgq0iPM04ClpGhyImo5MOk5l EYMdcgN/G7XmcvvbJGD5mro7IiyMAnH/KCfuMABqijXLvrmLmzPESp6FkbHaSVgX eFE9hZzP0rEvAhL4vgfccOo= -----END CERTIFICATE-----Generated at Sun Apr 19 08:59:46 2026 by rpki-client