$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20053/dSz7f0w27MvHomTp9bTHueFK2PY.roa File: dSz7f0w27MvHomTp9bTHueFK2PY.roa (raw, json) Hash identifier: eaBFCcSnjF0WEg2moJv+qeTbut0MdIz1pB0wrxTavsE= Subject key identifier: 75:2C:FB:7F:4C:36:EC:CB:C7:A2:64:E9:F5:B4:C7:B9:E1:4A:D8:F6 Certificate issuer: /CN=DABF6D95DB256816D2942346B9FC2EA0C1AFD803 Certificate serial: 25 Authority key identifier: DA:BF:6D:95:DB:25:68:16:D2:94:23:46:B9:FC:2E:A0:C1:AF:D8:03 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2r9tldslaBbSlCNGufwuoMGv2AM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/dSz7f0w27MvHomTp9bTHueFK2PY.roa Signing time: Sun 01 Mar 2026 01:36:20 +0000 ROA not before: Sun 01 Mar 2026 01:36:20 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 131926 IP address blocks: 104.251.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/2r9tldslaBbSlCNGufwuoMGv2AM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/2r9tldslaBbSlCNGufwuoMGv2AM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2r9tldslaBbSlCNGufwuoMGv2AM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DABF6D95DB256816D2942346B9FC2EA0C1AFD803 Validity Not Before: Mar 1 01:36:20 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=752CFB7F4C36ECCBC7A264E9F5B4C7B9E14AD8F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e3:1f:94:a7:f8:82:9e:77:7c:22:6c:1a:e8: 31:6c:98:a1:8f:01:6b:6c:38:c5:f6:80:79:4e:16: 6a:48:8c:d2:43:e0:2e:1c:a2:fc:e9:6d:4b:a9:22: e2:69:e6:04:54:9d:3a:17:c8:f0:bd:a1:58:5b:cd: 77:40:9a:c1:78:48:a1:12:c9:a4:08:5f:d3:9e:9e: 88:08:d8:fc:d4:be:d5:b1:f4:98:6d:8b:1c:95:44: 6e:ae:65:d3:a4:e3:97:c1:64:6f:ed:bb:67:22:d5: 73:c8:15:0c:5c:fa:71:a6:c3:2c:92:db:50:39:d7: de:e4:de:5c:2e:e9:9a:fb:82:6d:17:9b:78:33:f3: d2:98:ab:91:1b:ea:d8:2b:35:7b:66:f9:d5:a6:ac: d9:2a:a9:69:03:ca:89:e6:aa:69:a8:7e:10:5b:1b: 63:00:f3:87:2a:e7:a3:be:f2:44:31:51:68:b4:f3: a9:22:0f:79:7c:4c:a4:fe:62:e8:5e:26:73:33:1c: 3f:42:ee:87:00:92:c4:61:94:fd:a3:52:f7:85:d3: b9:ca:dc:6b:cd:45:f0:51:38:21:3a:81:39:c9:61: aa:31:e9:99:ee:e6:4f:43:b7:08:fb:e4:47:e7:2c: 12:44:79:05:e3:7b:84:8b:66:d2:48:59:4f:12:79: d0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:2C:FB:7F:4C:36:EC:CB:C7:A2:64:E9:F5:B4:C7:B9:E1:4A:D8:F6 X509v3 Authority Key Identifier: keyid:DA:BF:6D:95:DB:25:68:16:D2:94:23:46:B9:FC:2E:A0:C1:AF:D8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/2r9tldslaBbSlCNGufwuoMGv2AM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2r9tldslaBbSlCNGufwuoMGv2AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/dSz7f0w27MvHomTp9bTHueFK2PY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.251.144.0/20 Signature Algorithm: sha256WithRSAEncryption 9a:a9:97:47:dc:56:4d:d4:ad:88:4c:6d:62:31:cf:1b:98:ac: 98:6a:a0:d2:30:f6:53:7a:2f:fa:6a:59:cb:0c:8a:df:fd:d0: 02:25:20:92:4d:16:99:c2:47:44:ea:ea:79:dd:be:27:e3:2b: 61:2b:37:f6:0b:07:e9:38:d2:97:99:97:84:48:06:74:fe:1a: 8f:38:20:54:6d:49:14:26:77:93:22:5e:61:d7:ad:0a:16:1c: 80:8c:f6:0c:3b:58:a1:be:9d:18:1a:4c:71:ba:f3:5e:e6:c6: 00:78:99:05:f7:11:27:d3:2b:c5:5c:91:ee:73:f7:e2:a5:b1: 93:e7:be:bc:38:32:8e:c1:db:10:e1:1f:7b:8b:33:89:2a:95: 94:1c:15:67:18:df:14:1a:19:35:0c:80:68:1f:7d:e8:5b:cd: e7:60:af:63:11:0f:33:1f:ef:be:e5:75:6d:57:11:a9:06:a7: 52:4c:3f:58:75:d6:f9:0e:77:28:33:07:cc:16:42:6d:39:eb: 85:4b:1a:21:18:64:1e:92:f8:39:e9:d0:2d:81:ea:78:58:ed: 97:1f:07:72:d7:bc:67:40:00:8e:8c:34:5a:6c:e6:3f:bd:1f: 34:14:f7:8a:fd:a4:e0:89:d5:22:2e:f5:da:78:15:99:ff:cd: 94:86:c9:e7 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEQUJG NkQ5NURCMjU2ODE2RDI5NDIzNDZCOUZDMkVBMEMxQUZEODAzMB4XDTI2MDMwMTAx MzYyMFoXDTI3MDIxNTAxMzAwMlowMzExMC8GA1UEAxMoNzUyQ0ZCN0Y0QzM2RUND QkM3QTI2NEU5RjVCNEM3QjlFMTRBRDhGNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALXjH5Sn+IKed3wibBroMWyYoY8Ba2w4xfaAeU4WakiM0kPgLhyi /OltS6ki4mnmBFSdOhfI8L2hWFvNd0CawXhIoRLJpAhf056eiAjY/NS+1bH0mG2L HJVEbq5l06Tjl8Fkb+27ZyLVc8gVDFz6cabDLJLbUDnX3uTeXC7pmvuCbRebeDPz 0pirkRvq2Cs1e2b51aas2SqpaQPKieaqaah+EFsbYwDzhyrno77yRDFRaLTzqSIP eXxMpP5i6F4mczMcP0LuhwCSxGGU/aNS94XTucrca81F8FE4ITqBOclhqjHpme7m T0O3CPvkR+csEkR5BeN7hItm0khZTxJ50F0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBR1LPt/TDbsy8eiZOn1tMe54UrY9jAfBgNVHSMEGDAWgBTav22V2yVoFtKUI0a5 /C6gwa/YAzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNTMvMnI5dGxkc2xhQmJTbENOR3Vmd3VvTUd2MkFNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMnI5dGxkc2xhQmJTbENOR3Vmd3Vv TUd2MkFNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDUzL2RTejdmMHcyN012SG9tVHA5YlRIdWVGSzJQWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBARo+5AwDQYJKoZIhvcNAQELBQADggEBAJqpl0fcVk3UrYhMbWIxzxuY rJhqoNIw9lN6L/pqWcsMit/90AIlIJJNFpnCR0Tq6nndvifjK2ErN/YLB+k40peZ l4RIBnT+Go84IFRtSRQmd5MiXmHXrQoWHICM9gw7WKG+nRgaTHG6817mxgB4mQX3 ESfTK8Vcke5z9+KlsZPnvrw4Mo7B2xDhH3uLM4kqlZQcFWcY3xQaGTUMgGgffehb zedgr2MRDzMf777ldW1XEakGp1JMP1h11vkOdygzB8wWQm0564VLGiEYZB6S+Dnp 0C2B6nhY7ZcfB3LXvGdAAI6MNFps5j+9HzQU94r9pOCJ1SIu9dp4FZn/zZSGyec= -----END CERTIFICATE-----Generated at Mon Mar 2 08:22:46 2026 by rpki-client