$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20267/IFhA158MctSge1_JT6uZF_sZp9s.roa File: IFhA158MctSge1_JT6uZF_sZp9s.roa (raw, json) Hash identifier: U40Xr+qpbkY3Ml/djbXmCRALNolcQO6JQN5GmAFciGk= Subject key identifier: 20:58:40:D7:9F:0C:72:D4:A0:7B:5F:C9:4F:AB:99:17:FB:19:A7:DB Certificate issuer: /CN=9206913B5F7754B8E1116F135D4A3B8F75959658 Certificate serial: 21 Authority key identifier: 92:06:91:3B:5F:77:54:B8:E1:11:6F:13:5D:4A:3B:8F:75:95:96:58 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kgaRO193VLjhEW8TXUo7j3WVllg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20267/IFhA158MctSge1_JT6uZF_sZp9s.roa Signing time: Tue 31 Mar 2026 08:42:06 +0000 ROA not before: Tue 31 Mar 2026 08:42:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 45691 IP address blocks: 160.25.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20267/kgaRO193VLjhEW8TXUo7j3WVllg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20267/kgaRO193VLjhEW8TXUo7j3WVllg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kgaRO193VLjhEW8TXUo7j3WVllg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9206913B5F7754B8E1116F135D4A3B8F75959658 Validity Not Before: Mar 31 08:42:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=205840D79F0C72D4A07B5FC94FAB9917FB19A7DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:83:c3:9a:7f:37:a2:dd:c0:58:28:88:b9:ce: 6b:0b:54:35:c5:ae:a9:28:bf:82:2a:91:b0:cd:ab: 4d:16:ba:4a:f5:d1:6b:ca:85:03:6c:9e:bd:09:ad: 72:39:e5:94:44:f9:9a:64:d9:0e:64:e4:eb:b4:c0: b5:4d:e4:2c:fe:4a:6b:cd:4e:97:a2:75:d6:8d:79: 56:b8:bf:f9:8f:92:38:f5:93:20:f6:fa:47:56:00: 53:d2:aa:29:f6:8c:6c:5a:d8:93:4c:9e:68:ab:19: 22:bd:59:bf:8f:33:ec:6f:93:4c:08:51:53:6e:16: 54:91:bd:14:1e:1d:24:86:27:97:b3:bf:4d:f1:20: 21:d8:b5:64:17:54:c1:b9:2e:c1:68:0a:28:e0:e6: 74:c9:77:00:32:66:2e:ba:d4:bd:51:81:14:87:98: 88:13:ed:6f:e8:3d:c2:a0:fe:cd:e4:c9:fd:8d:c5: 83:00:0c:99:21:0f:b1:68:5b:d4:a9:7b:e3:fa:6b: db:b7:a0:c8:8c:61:29:66:4a:b8:ca:b1:62:f0:80: 74:45:2b:fc:d8:24:80:19:51:7e:cb:ce:45:a3:22: 5c:10:cf:29:d3:29:ab:f7:17:98:c8:a0:43:7b:85: 15:37:ba:50:5d:fc:c7:4b:a5:fb:02:57:7e:52:73: 5c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:58:40:D7:9F:0C:72:D4:A0:7B:5F:C9:4F:AB:99:17:FB:19:A7:DB X509v3 Authority Key Identifier: keyid:92:06:91:3B:5F:77:54:B8:E1:11:6F:13:5D:4A:3B:8F:75:95:96:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20267/kgaRO193VLjhEW8TXUo7j3WVllg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kgaRO193VLjhEW8TXUo7j3WVllg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20267/IFhA158MctSge1_JT6uZF_sZp9s.roa sbgp-ipAddrBlock: critical IPv4: 160.25.216.0/23 Signature Algorithm: sha256WithRSAEncryption 18:76:27:06:53:b6:e2:bc:2b:1e:c3:61:b8:db:7c:95:8b:c3: 12:97:d5:f2:8f:7b:0a:c5:a3:f7:b3:46:55:e4:da:27:c5:4c: ea:02:80:fc:dc:6e:29:11:0c:e7:a1:27:f3:22:0a:b3:db:07: 8c:22:9e:26:e0:72:06:e2:90:5e:a5:49:47:fb:19:00:9f:22: 67:ea:af:9b:7a:2a:d8:5c:ff:10:09:30:06:37:cc:87:b2:8f: 9d:bc:52:c8:d9:df:69:4f:f7:11:c3:48:e7:79:d9:29:1a:05: 99:7f:cd:0e:54:60:68:93:4e:b4:7f:4d:85:e4:85:52:9b:be: ae:ee:4f:fd:00:b2:5d:39:6d:c1:16:34:c0:bd:fd:08:f7:06: 1e:9b:00:c7:b3:f0:79:71:12:89:e7:1c:c8:e8:f3:0f:95:4c: 86:16:64:cd:3b:a5:4f:6d:93:ce:de:e6:a3:c9:11:54:6e:a5: 20:ab:6f:fa:bf:22:f6:32:cc:b7:58:0a:4d:95:4f:c6:fc:f1: 92:07:62:17:57:b2:89:00:59:60:d4:50:1b:56:e2:9f:d4:a6: c0:d2:a4:3a:c6:c6:1b:e1:46:31:65:bb:cf:e8:8f:0c:f4:44: 89:df:05:40:dc:c3:ba:5b:c1:a2:fc:14:76:b7:eb:ac:77:f8: da:ba:de:74 -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5MjA2 OTEzQjVGNzc1NEI4RTExMTZGMTM1RDRBM0I4Rjc1OTU5NjU4MB4XDTI2MDMzMTA4 NDIwNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMjA1ODQwRDc5RjBDNzJE NEEwN0I1RkM5NEZBQjk5MTdGQjE5QTdEQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANWDw5p/N6LdwFgoiLnOawtUNcWuqSi/giqRsM2rTRa6SvXRa8qF A2yevQmtcjnllET5mmTZDmTk67TAtU3kLP5Ka81Ol6J11o15Vri/+Y+SOPWTIPb6 R1YAU9KqKfaMbFrYk0yeaKsZIr1Zv48z7G+TTAhRU24WVJG9FB4dJIYnl7O/TfEg Idi1ZBdUwbkuwWgKKODmdMl3ADJmLrrUvVGBFIeYiBPtb+g9wqD+zeTJ/Y3FgwAM mSEPsWhb1Kl74/pr27egyIxhKWZKuMqxYvCAdEUr/NgkgBlRfsvORaMiXBDPKdMp q/cXmMigQ3uFFTe6UF38x0ul+wJXflJzXHsCAwEAAaOCAd0wggHZMB0GA1UdDgQW BBQgWEDXnwxy1KB7X8lPq5kX+xmn2zAfBgNVHSMEGDAWgBSSBpE7X3dUuOERbxNd SjuPdZWWWDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyNjcva2dhUk8xOTNWTGpoRVc4VFhVbzdqM1dWbGxnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAva2dhUk8xOTNWTGpoRVc4VFhVbzdq M1dWbGxnLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIwMjY3L0lGaEExNThNY3RTZ2UxX0pUNnVaRl9zWnA5cy5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgGdgwDQYJKoZIhvcNAQELBQAD ggEBABh2JwZTtuK8Kx7DYbjbfJWLwxKX1fKPewrFo/ezRlXk2ifFTOoCgPzcbikR DOehJ/MiCrPbB4winibgcgbikF6lSUf7GQCfImfqr5t6Kthc/xAJMAY3zIeyj528 UsjZ32lP9xHDSOd52SkaBZl/zQ5UYGiTTrR/TYXkhVKbvq7uT/0Asl05bcEWNMC9 /Qj3Bh6bAMez8HlxEonnHMjo8w+VTIYWZM07pU9tk87e5qPJEVRupSCrb/q/IvYy zLdYCk2VT8b88ZIHYhdXsokAWWDUUBtW4p/UpsDSpDrGxhvhRjFlu8/ojwz0RInf BUDcw7pbwaL8FHa366x3+Nq63nQ= -----END CERTIFICATE-----Generated at Fri Apr 17 09:29:25 2026 by rpki-client