$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/8gKizuTlBC5aI6gtWXXUBVG8jPo.roa File: 8gKizuTlBC5aI6gtWXXUBVG8jPo.roa (raw, json) Hash identifier: onXv+XbjW5XekEIZEQNt4hPXLBsBHa9IX9VIUtgWOx0= Subject key identifier: F2:02:A2:CE:E4:E5:04:2E:5A:23:A8:2D:59:75:D4:05:51:BC:8C:FA Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: F4 Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/8gKizuTlBC5aI6gtWXXUBVG8jPo.roa Signing time: Tue 31 Mar 2026 07:31:10 +0000 ROA not before: Tue 31 Mar 2026 07:31:10 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18126 IP address blocks: 223.29.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Mar 31 07:31:10 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=F202A2CEE4E5042E5A23A82D5975D40551BC8CFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0c:92:9e:d2:b2:bd:be:c5:e9:dc:e3:44:90: 7c:59:7d:8a:29:35:68:08:ae:1a:3b:0c:41:21:97: db:d1:99:a0:8f:09:70:37:90:db:02:a4:2c:21:4e: ed:9c:c9:a1:a9:cb:51:81:73:76:9a:6d:95:f6:23: 09:7c:1b:9e:86:7d:1c:c1:38:55:2f:60:0f:3f:26: b3:0f:46:d4:c9:e3:fc:b5:49:63:c4:d7:cf:05:6b: 74:07:26:7d:aa:35:6f:7a:76:18:15:9f:cd:d3:50: e0:d7:c1:09:02:a2:fe:03:98:05:15:bb:19:b7:c0: 5e:1e:b9:d7:06:25:49:52:4f:dc:56:dd:96:fc:12: b1:17:7e:42:0d:9e:38:22:6b:03:e4:8e:fc:a5:6b: 7a:fa:10:d8:6f:30:18:a9:18:dc:1b:82:1a:10:31: 39:08:b6:fc:98:63:7e:e3:d8:7a:50:0e:03:42:da: a8:b2:54:50:e0:26:25:92:b6:65:b9:18:8b:b6:a9: 81:51:2c:87:9e:4e:39:7e:e8:2b:a0:23:7e:74:5f: 06:d4:ec:65:e4:02:41:ec:48:f8:eb:9f:1a:af:92: 55:24:f7:74:fe:81:a5:f2:4c:d2:57:7b:98:80:c8: cb:dc:84:d9:74:a4:3e:de:57:64:ae:93:9e:d8:8e: 36:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:02:A2:CE:E4:E5:04:2E:5A:23:A8:2D:59:75:D4:05:51:BC:8C:FA X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/8gKizuTlBC5aI6gtWXXUBVG8jPo.roa sbgp-ipAddrBlock: critical IPv4: 223.29.0.0/17 Signature Algorithm: sha256WithRSAEncryption 3d:4c:ee:13:9a:aa:01:ef:5d:e9:f1:33:d3:17:05:1c:d4:79: 1b:93:89:1c:e2:fe:2e:43:78:26:67:df:a1:83:35:1c:e2:36: 9f:e0:6b:c6:43:4a:c1:a6:71:f4:28:da:18:37:e3:11:cc:44: 70:dd:41:b3:8c:30:c1:3f:bc:ca:ba:79:ff:d0:1b:f3:a5:b9: a2:06:2a:78:a4:91:f6:f7:47:8a:cd:e1:9d:47:42:3e:45:b1: b3:1b:e3:f4:c0:0f:a9:23:55:a3:a7:9b:06:b2:94:df:2d:ef: dc:6d:5f:d2:4f:c1:82:d4:15:2b:9c:61:0b:90:95:7a:52:6c: 0c:ec:08:9b:9b:3e:bc:3e:8a:ce:f8:2d:ef:9f:30:1d:30:76: cd:fc:21:b8:ec:40:7c:4b:ca:ac:97:64:1e:2e:c6:2e:35:27: 2d:c1:5d:32:a6:fb:d3:1a:65:cc:0f:6a:83:ef:94:61:16:bc: 36:c2:eb:3b:06:5b:02:e1:52:40:6c:a7:12:07:e1:41:75:01: 7f:f1:97:60:a5:35:82:9f:48:ee:25:be:d9:65:55:0a:d8:cb: 43:82:e5:19:5d:d1:d4:78:dd:98:a9:bc:88:c1:6d:95:36:87: 63:8f:4b:2c:6d:27:b0:1b:c7:98:37:d7:1d:9c:46:d9:23:d3: 11:0f:1e:7f -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNjAzMzEw NzMxMTBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEYyMDJBMkNFRTRFNTA0 MkU1QTIzQTgyRDU5NzVENDA1NTFCQzhDRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChDJKe0rK9vsXp3ONEkHxZfYopNWgIrho7DEEhl9vRmaCPCXA3 kNsCpCwhTu2cyaGpy1GBc3aabZX2Iwl8G56GfRzBOFUvYA8/JrMPRtTJ4/y1SWPE 188Fa3QHJn2qNW96dhgVn83TUODXwQkCov4DmAUVuxm3wF4eudcGJUlST9xW3Zb8 ErEXfkINnjgiawPkjvyla3r6ENhvMBipGNwbghoQMTkItvyYY37j2HpQDgNC2qiy VFDgJiWStmW5GIu2qYFRLIeeTjl+6CugI350XwbU7GXkAkHsSPjrnxqvklUk93T+ gaXyTNJXe5iAyMvchNl0pD7eV2Suk57YjjadAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU8gKizuTlBC5aI6gtWXXUBVG8jPowHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTczLzhnS2l6dVRsQkM1YUk2Z3RXWFhVQlZHOGpQby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAffHQAwDQYJKoZIhvcNAQELBQADggEB AD1M7hOaqgHvXenxM9MXBRzUeRuTiRzi/i5DeCZn36GDNRziNp/ga8ZDSsGmcfQo 2hg34xHMRHDdQbOMMME/vMq6ef/QG/OluaIGKnikkfb3R4rN4Z1HQj5FsbMb4/TA D6kjVaOnmwaylN8t79xtX9JPwYLUFSucYQuQlXpSbAzsCJubPrw+is74Le+fMB0w ds38IbjsQHxLyqyXZB4uxi41Jy3BXTKm+9MaZcwPaoPvlGEWvDbC6zsGWwLhUkBs pxIH4UF1AX/xl2ClNYKfSO4lvtllVQrYy0OC5Rld0dR43ZipvIjBbZU2h2OPSyxt J7Abx5g31x2cRtkj0xEPHn8= -----END CERTIFICATE-----Generated at Fri Apr 17 17:43:10 2026 by rpki-client