$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/cH-HhBsTeMhWTfgVgYyyFHlLPNI.roa File: cH-HhBsTeMhWTfgVgYyyFHlLPNI.roa (raw, json) Hash identifier: P4ciK4/+6N2i8/UcdXmC0fnj/B1yQF2Av4ZMKvDtvtY= Subject key identifier: 70:7F:87:84:1B:13:78:C8:56:4D:F8:15:81:8C:B2:14:79:4B:3C:D2 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 013B Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/cH-HhBsTeMhWTfgVgYyyFHlLPNI.roa Signing time: Tue 31 Mar 2026 07:47:46 +0000 ROA not before: Tue 31 Mar 2026 07:47:46 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23918 IP address blocks: 153.254.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Mar 31 07:47:46 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=707F87841B1378C8564DF815818CB214794B3CD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:dd:cb:6a:0e:43:32:79:a4:b4:6f:a3:58:e6: d2:34:b9:50:d8:6e:02:c9:c5:55:ea:3d:a5:33:1b: 9c:a5:c1:19:b9:cd:b4:8c:1e:19:3e:cd:f0:e3:0b: e1:21:a6:cb:1d:ce:7e:56:7f:e0:3d:90:9f:b3:1b: c3:e8:6f:b2:72:2b:2d:a3:62:cc:11:e2:e7:a1:80: 8e:65:22:ca:7a:21:82:fe:6f:77:06:36:04:8b:6c: f6:79:ee:76:67:92:10:cf:04:c7:53:98:ab:61:c4: f8:64:1c:d2:ab:a1:ee:2e:61:9a:ac:f3:3a:c3:f4: 1d:56:27:f7:9f:3e:2a:7a:19:59:5d:4c:6b:05:20: 89:0c:27:3d:6a:c3:d9:3d:49:1f:8a:6e:fb:09:81: 12:55:6a:f2:ef:2d:28:70:08:88:be:60:55:4e:0b: 7d:3b:36:04:62:3d:6e:fa:47:d2:75:f4:98:52:1e: 8c:79:67:be:93:65:80:43:23:21:05:e7:06:2c:5b: d6:bd:41:ac:59:31:b4:a1:cf:3f:8a:b0:53:29:1e: 33:92:79:18:f7:b6:a2:7c:98:06:ef:91:05:a0:57: 5c:26:8c:4e:bc:b9:90:6c:f1:bc:91:f7:13:4f:41: 2f:ec:54:32:e9:85:75:08:5c:54:6b:06:31:48:17: 68:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:7F:87:84:1B:13:78:C8:56:4D:F8:15:81:8C:B2:14:79:4B:3C:D2 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/cH-HhBsTeMhWTfgVgYyyFHlLPNI.roa sbgp-ipAddrBlock: critical IPv4: 153.254.94.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:61:1d:64:f7:ba:a4:77:28:17:84:81:aa:48:26:09:7e:e4: cf:6c:c0:35:fe:0b:a9:c2:84:d3:3f:8c:33:07:1b:a7:ff:4e: d6:59:71:d8:80:3a:d7:ae:36:ff:a8:5e:82:9f:95:b0:9c:38: 05:51:6c:f0:a0:b1:b9:37:fd:e4:4c:52:50:72:99:41:ba:e9: 30:6a:92:b2:e1:1b:e8:15:40:69:c1:db:4b:de:e8:f2:0d:35: f0:e3:74:a4:32:88:0e:28:85:ae:ab:85:8b:7f:53:e9:cd:32: 38:3d:4f:bb:67:9d:cc:65:4a:93:59:11:4f:d3:cd:ae:2b:7f: 0c:3c:42:20:e3:4d:d1:96:96:6c:51:ea:aa:26:55:96:d5:c7: 68:9c:0b:d7:20:bb:82:0b:0d:09:46:d8:2f:df:5d:89:64:15: a1:2a:e8:64:84:0a:62:05:96:9f:37:c3:3e:9d:60:36:1e:94: 1b:38:c1:94:8c:a8:b0:12:f6:d8:b6:92:ca:9a:34:df:02:03: 4f:fc:f8:ef:10:4e:e8:d1:db:6a:07:3b:10:d3:7b:fb:3c:16: be:2e:29:7d:ee:84:96:aa:ec:d6:1b:8d:bc:40:25:88:94:e7: da:ca:b4:11:3d:6f:49:84:f1:d0:b3:8e:eb:8d:35:12:a9:30: ee:b0:55:79 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICATswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNjAzMzEw NzQ3NDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcwN0Y4Nzg0MUIxMzc4 Qzg1NjRERjgxNTgxOENCMjE0Nzk0QjNDRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCp3ctqDkMyeaS0b6NY5tI0uVDYbgLJxVXqPaUzG5ylwRm5zbSM Hhk+zfDjC+Ehpssdzn5Wf+A9kJ+zG8Pob7JyKy2jYswR4uehgI5lIsp6IYL+b3cG NgSLbPZ57nZnkhDPBMdTmKthxPhkHNKroe4uYZqs8zrD9B1WJ/efPip6GVldTGsF IIkMJz1qw9k9SR+KbvsJgRJVavLvLShwCIi+YFVOC307NgRiPW76R9J19JhSHox5 Z76TZYBDIyEF5wYsW9a9QaxZMbShzz+KsFMpHjOSeRj3tqJ8mAbvkQWgV1wmjE68 uZBs8byR9xNPQS/sVDLphXUIXFRrBjFIF2gzAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUcH+HhBsTeMhWTfgVgYyyFHlLPNIwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDEyOC9jSC1IaEJzVGVNaFdUZmdWZ1l5eUZIbExQTkkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmf5eMA0GCSqGSIb3DQEBCwUA A4IBAQB/YR1k97qkdygXhIGqSCYJfuTPbMA1/gupwoTTP4wzBxun/07WWXHYgDrX rjb/qF6Cn5WwnDgFUWzwoLG5N/3kTFJQcplBuukwapKy4RvoFUBpwdtL3ujyDTXw 43SkMogOKIWuq4WLf1PpzTI4PU+7Z53MZUqTWRFP082uK38MPEIg403RlpZsUeqq JlWW1cdonAvXILuCCw0JRtgv312JZBWhKuhkhApiBZafN8M+nWA2HpQbOMGUjKiw EvbYtpLKmjTfAgNP/PjvEE7o0dtqBzsQ03v7PBa+Lil97oSWquzWG428QCWIlOfa yrQRPW9JhPHQs47rjTUSqTDusFV5 -----END CERTIFICATE-----Generated at Fri Apr 17 06:51:51 2026 by rpki-client