$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/PhmfQevVT8fJOneBUPbPW2RhrVc.roa File: PhmfQevVT8fJOneBUPbPW2RhrVc.roa (raw, json) Hash identifier: XPIio0c1h9ossQ5YEOT4vjq0lRi8/O0DPW1ysk91Y6c= Subject key identifier: 3E:19:9F:41:EB:D5:4F:C7:C9:3A:77:81:50:F6:CF:5B:64:61:AD:57 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: F5 Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/PhmfQevVT8fJOneBUPbPW2RhrVc.roa Signing time: Tue 31 Mar 2026 07:31:11 +0000 ROA not before: Tue 31 Mar 2026 07:31:11 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18126 IP address blocks: 203.129.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Mar 31 07:31:11 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3E199F41EBD54FC7C93A778150F6CF5B6461AD57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:b2:50:e5:fe:7c:da:bd:54:4a:8c:32:d3: f8:0c:74:b7:00:de:86:93:7c:cb:43:c1:12:6b:80: 98:df:f7:dc:f0:95:ba:01:15:14:2f:3b:d8:30:03: ca:ac:4f:ac:5e:97:dc:62:5a:55:c8:15:4e:f7:66: 8e:67:79:2f:73:04:33:d0:da:f0:f0:7c:15:f3:c3: 18:0e:89:a4:07:94:30:47:3b:b1:cd:b2:10:86:b2: c2:c3:cf:34:6c:79:eb:a0:3e:bb:60:42:34:3c:70: cc:8b:11:69:c6:ef:23:e6:78:90:05:0a:3f:12:ac: 02:fa:d7:83:77:c7:d6:f8:b7:3a:dc:86:fe:9f:b0: dd:17:08:bd:86:79:a8:89:23:94:77:16:99:e0:97: ba:33:f4:61:c8:9d:a7:58:73:ea:3d:95:26:ce:95: 73:a2:c6:dc:81:f2:67:ff:c2:1b:0d:58:b6:34:f1: e5:2d:67:f2:e8:9d:df:f7:2f:96:be:6d:6d:ff:0f: e4:a6:cc:87:e9:22:f1:9a:01:2c:75:39:00:e1:ae: d6:8d:2c:d0:a8:5f:b8:4b:6d:7b:03:9c:ab:39:80: 63:f8:5e:80:ca:1d:3f:be:cf:77:fe:31:9f:5a:90: b7:10:5d:93:77:18:80:16:14:0a:16:75:46:9e:b4: f0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:19:9F:41:EB:D5:4F:C7:C9:3A:77:81:50:F6:CF:5B:64:61:AD:57 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/PhmfQevVT8fJOneBUPbPW2RhrVc.roa sbgp-ipAddrBlock: critical IPv4: 203.129.112.0/20 Signature Algorithm: sha256WithRSAEncryption b1:ba:2f:3b:fa:8e:8f:dc:85:ec:57:2e:93:2e:9f:dd:49:e1: d9:9a:e7:c8:f5:65:1a:23:8b:be:56:a0:56:d9:ef:bb:69:42: 91:ff:86:38:00:38:11:b0:cc:11:b5:e0:a9:ed:70:e7:cc:e7: 05:34:b6:f3:f1:f0:67:0a:9b:f8:3b:20:56:f1:35:2a:c8:3b: 72:83:74:ad:f9:7d:52:2d:b1:fc:14:45:71:50:5a:09:51:b2: 0e:df:f7:9a:2a:8b:9b:47:6d:02:e0:8d:fe:38:fb:52:68:f4: 23:aa:fa:10:a5:a9:ca:04:65:d1:b1:f5:05:56:d1:dd:9d:a0: 9c:e1:ed:10:15:d5:69:20:02:a1:54:0c:b1:05:c9:67:54:f8: a9:db:53:e0:e3:23:5d:75:44:4d:ad:8c:20:4b:ed:07:bc:85: eb:ed:f2:00:74:2b:b8:e4:c4:42:e9:02:10:7d:51:51:eb:06: e6:5a:ff:20:f2:9d:60:28:67:1c:4c:22:d5:d9:22:0e:07:cc: 9c:93:25:c5:0f:5d:b2:24:ea:bb:c8:52:d0:c5:31:92:05:41: 3f:0b:97:a6:7c:34:a6:c1:ee:5d:30:00:7f:86:bb:80:46:cc: a8:06:aa:8f:6d:3e:1f:69:a6:09:96:01:e0:a0:ec:91:48:30: 57:48:45:c1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNjAzMzEw NzMxMTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNFMTk5RjQxRUJENTRG QzdDOTNBNzc4MTUwRjZDRjVCNjQ2MUFENTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKcLJQ5f582r1USowy0/gMdLcA3oaTfMtDwRJrgJjf99zwlboB FRQvO9gwA8qsT6xel9xiWlXIFU73Zo5neS9zBDPQ2vDwfBXzwxgOiaQHlDBHO7HN shCGssLDzzRseeugPrtgQjQ8cMyLEWnG7yPmeJAFCj8SrAL614N3x9b4tzrchv6f sN0XCL2GeaiJI5R3Fpngl7oz9GHInadYc+o9lSbOlXOixtyB8mf/whsNWLY08eUt Z/Lond/3L5a+bW3/D+SmzIfpIvGaASx1OQDhrtaNLNCoX7hLbXsDnKs5gGP4XoDK HT++z3f+MZ9akLcQXZN3GIAWFAoWdUaetPDPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUPhmfQevVT8fJOneBUPbPW2RhrVcwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTczL1BobWZRZXZWVDhmSk9uZUJVUGJQVzJSaHJWYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATLgXAwDQYJKoZIhvcNAQELBQADggEB ALG6Lzv6jo/chexXLpMun91J4dma58j1ZRoji75WoFbZ77tpQpH/hjgAOBGwzBG1 4KntcOfM5wU0tvPx8GcKm/g7IFbxNSrIO3KDdK35fVItsfwURXFQWglRsg7f95oq i5tHbQLgjf44+1Jo9COq+hClqcoEZdGx9QVW0d2doJzh7RAV1WkgAqFUDLEFyWdU +KnbU+DjI111RE2tjCBL7Qe8hevt8gB0K7jkxELpAhB9UVHrBuZa/yDynWAoZxxM ItXZIg4HzJyTJcUPXbIk6rvIUtDFMZIFQT8Ll6Z8NKbB7l0wAH+Gu4BGzKgGqo9t Ph9ppgmWAeCg7JFIMFdIRcE= -----END CERTIFICATE-----Generated at Fri Apr 17 23:22:23 2026 by rpki-client