$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20081/QdmrEWvXSp6CjRsGACenqrMKbpQ.roa File: QdmrEWvXSp6CjRsGACenqrMKbpQ.roa (raw, json) Hash identifier: 0SsB45KdpkiwpWwTGi5FvBwyukvUZi4VRlvDl0AyoWQ= Subject key identifier: 41:D9:AB:11:6B:D7:4A:9E:82:8D:1B:06:00:27:A7:AA:B3:0A:6E:94 Certificate issuer: /CN=049B35AACA20B630F4AD52CB598F951250FF07FD Certificate serial: 3B Authority key identifier: 04:9B:35:AA:CA:20:B6:30:F4:AD:52:CB:59:8F:95:12:50:FF:07:FD Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/QdmrEWvXSp6CjRsGACenqrMKbpQ.roa Signing time: Tue 31 Mar 2026 08:42:34 +0000 ROA not before: Tue 31 Mar 2026 08:42:34 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17529 IP address blocks: 211.128.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049B35AACA20B630F4AD52CB598F951250FF07FD Validity Not Before: Mar 31 08:42:34 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=41D9AB116BD74A9E828D1B060027A7AAB30A6E94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5c:c2:07:ff:d9:ce:16:8e:df:47:0c:0f:c0: 0d:ac:15:48:48:cd:df:72:ce:a9:1e:c7:12:49:28: ec:2d:58:84:31:31:66:ba:89:44:94:59:b7:64:97: ea:d3:a1:9a:9a:56:06:c4:49:7a:d0:5b:11:74:d3: 85:f7:4b:a3:5c:5e:ae:54:7b:d5:ff:0d:c4:d0:c5: 63:32:c9:1c:6b:90:bd:36:b8:ef:93:df:9a:8d:d3: 07:96:aa:48:d6:9c:11:10:ec:c9:b0:c6:d4:f5:39: 2f:94:8b:4b:4f:a6:4c:c1:89:b0:c8:3d:5f:f4:fd: e2:af:ed:1f:26:f1:5b:1e:c0:84:c7:42:61:87:eb: 22:25:dd:02:60:2f:46:11:5b:b6:e1:34:79:38:60: 56:1e:66:ae:38:81:41:58:b1:b9:2d:6f:3d:9e:0d: 74:a0:7c:3a:3d:6a:e0:c2:cc:cd:0f:58:a7:4b:4e: ee:f9:a0:c8:c8:6a:f5:6f:e5:ad:e8:97:3a:7d:f0: c6:e8:f5:21:5d:b1:fb:e7:93:a2:8b:78:2a:34:45: 43:46:11:56:6f:fb:39:02:32:6a:f6:e5:9d:9f:3f: 8d:30:44:c9:5d:99:06:51:4c:ac:b5:f5:a4:6c:3f: 08:95:57:ce:11:5f:1f:4c:e8:78:44:02:2f:5f:01: 6f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D9:AB:11:6B:D7:4A:9E:82:8D:1B:06:00:27:A7:AA:B3:0A:6E:94 X509v3 Authority Key Identifier: keyid:04:9B:35:AA:CA:20:B6:30:F4:AD:52:CB:59:8F:95:12:50:FF:07:FD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/QdmrEWvXSp6CjRsGACenqrMKbpQ.roa sbgp-ipAddrBlock: critical IPv4: 211.128.16.0/20 Signature Algorithm: sha256WithRSAEncryption a4:8c:fd:62:39:e8:b4:01:04:01:32:a5:b6:47:a2:b7:91:5b: b0:12:44:ed:25:39:c6:6b:17:76:92:98:3a:7b:17:5b:94:c0: bc:ec:a5:99:53:8f:0b:e5:0d:83:f2:b7:7b:ae:2d:d1:2d:56: c5:3b:78:03:d0:e9:1f:63:15:1e:12:c6:e1:08:79:40:6f:2c: f7:0b:79:72:3a:ad:c4:9a:5b:d5:1b:27:00:28:4b:fd:6c:8d: b5:ef:5e:ed:1e:8a:1d:74:9e:e0:f6:3e:d3:97:b9:8f:71:37: 79:df:0c:12:f7:79:c0:82:99:a3:76:d1:95:52:b9:e3:5b:98: 75:ed:5f:89:a9:8d:9b:08:03:4a:ca:74:14:7c:f9:25:0c:62: c8:9d:c5:bf:d0:33:16:b9:6b:52:1e:38:5d:92:9e:aa:ef:bd: 96:24:70:b2:3c:a2:6a:0b:30:62:f4:07:9e:ba:62:34:7b:68: 99:85:29:3c:e7:d1:e0:89:8a:f5:96:f8:bd:3a:60:eb:01:d9: 8e:31:70:48:13:0f:ae:e4:11:1c:70:3f:ac:78:47:6e:79:cb: 7b:76:b4:4d:ee:5d:ff:e4:84:cc:66:a2:ec:69:2a:17:22:03: 56:8c:69:8d:72:56:a1:45:ba:df:6d:79:09:27:f7:32:df:0e: 53:ba:4e:39 -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNDlC MzVBQUNBMjBCNjMwRjRBRDUyQ0I1OThGOTUxMjUwRkYwN0ZEMB4XDTI2MDMzMTA4 NDIzNFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNDFEOUFCMTE2QkQ3NEE5 RTgyOEQxQjA2MDAyN0E3QUFCMzBBNkU5NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJtcwgf/2c4Wjt9HDA/ADawVSEjN33LOqR7HEkko7C1YhDExZrqJ RJRZt2SX6tOhmppWBsRJetBbEXTThfdLo1xerlR71f8NxNDFYzLJHGuQvTa475Pf mo3TB5aqSNacERDsybDG1PU5L5SLS0+mTMGJsMg9X/T94q/tHybxWx7AhMdCYYfr IiXdAmAvRhFbtuE0eThgVh5mrjiBQVixuS1vPZ4NdKB8Oj1q4MLMzQ9Yp0tO7vmg yMhq9W/lreiXOn3wxuj1IV2x++eToot4KjRFQ0YRVm/7OQIyavblnZ8/jTBEyV2Z BlFMrLX1pGw/CJVXzhFfH0zoeEQCL18Bb30CAwEAAaOCAd0wggHZMB0GA1UdDgQW BBRB2asRa9dKnoKNGwYAJ6eqswpulDAfBgNVHSMEGDAWgBQEmzWqyiC2MPStUstZ j5USUP8H/TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwODEvQkpzMXFzb2d0akQwclZMTFdZLVZFbERfQl8wLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQkpzMXFzb2d0akQwclZMTFdZLVZF bERfQl8wLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIwMDgxL1FkbXJFV3ZYU3A2Q2pSc0dBQ2VucXJNS2JwUS5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATTgBAwDQYJKoZIhvcNAQELBQAD ggEBAKSM/WI56LQBBAEypbZHoreRW7ASRO0lOcZrF3aSmDp7F1uUwLzspZlTjwvl DYPyt3uuLdEtVsU7eAPQ6R9jFR4SxuEIeUBvLPcLeXI6rcSaW9UbJwAoS/1sjbXv Xu0eih10nuD2PtOXuY9xN3nfDBL3ecCCmaN20ZVSueNbmHXtX4mpjZsIA0rKdBR8 +SUMYsidxb/QMxa5a1IeOF2SnqrvvZYkcLI8omoLMGL0B566YjR7aJmFKTzn0eCJ ivWW+L06YOsB2Y4xcEgTD67kERxwP6x4R255y3t2tE3uXf/khMxmouxpKhciA1aM aY1yVqFFut9teQkn9zLfDlO6Tjk= -----END CERTIFICATE-----Generated at Fri Apr 17 23:23:47 2026 by rpki-client