$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/207/zEYmsduImGvKuYbGcewwgEi_EeI.roa File: zEYmsduImGvKuYbGcewwgEi_EeI.roa (raw, json) Hash identifier: TYu4RxbEULbAQVIHzplxwHBMwzF1e70nY4XjH8royIs= Subject key identifier: CC:46:26:B1:DB:88:98:6B:CA:B9:86:C6:71:EC:30:80:48:BF:11:E2 Certificate issuer: /CN=67018B4DFE54BD644E000641A234B471DB20B892 Certificate serial: C0 Authority key identifier: 67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/zEYmsduImGvKuYbGcewwgEi_EeI.roa Signing time: Tue 31 Mar 2026 07:27:17 +0000 ROA not before: Tue 31 Mar 2026 07:27:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7521 IP address blocks: 210.173.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67018B4DFE54BD644E000641A234B471DB20B892 Validity Not Before: Mar 31 07:27:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CC4626B1DB88986BCAB986C671EC308048BF11E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:ac:f1:7a:41:21:e5:75:b3:20:2c:4b:bd: 39:5a:5d:55:9b:d9:4b:1e:e0:8a:cc:9a:47:6e:c6: d8:73:ca:75:8d:39:e6:f5:3a:7e:60:3a:4e:56:e1: fc:80:e2:15:68:8e:d6:33:ce:63:73:3d:f0:25:e5: 7f:9e:e9:d2:ca:e6:93:99:8a:59:d7:da:c9:e9:d0: b2:98:fb:38:87:21:b5:37:45:63:65:1a:83:7d:b9: 42:b7:f2:b8:af:80:4a:8f:12:6d:c5:cf:ca:61:24: 49:2a:9f:20:cf:46:fb:a3:06:df:de:74:46:44:7d: 3c:6a:0c:99:75:c2:02:5b:bb:1c:3d:80:9c:f8:a8: be:4e:da:70:b6:2d:d2:ee:ef:05:0e:f9:78:fa:4a: 96:42:d3:9c:72:1d:04:5f:65:2a:9b:08:1e:14:4a: b6:9c:e8:3f:54:b9:ca:fe:48:4d:af:8f:a3:6e:8f: 3b:bc:40:6a:2a:1f:1f:c6:90:b1:13:a8:b7:0b:0b: 9f:71:87:1d:2b:77:4e:6e:b3:42:68:8a:2d:84:27: b1:47:10:48:e8:64:47:e4:e0:70:26:a2:d3:e9:fc: f1:cf:ed:48:f8:a3:ab:67:93:4e:53:ae:63:b5:2a: 54:ea:85:f4:67:cf:40:83:0f:87:90:dc:14:e5:10: 00:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:46:26:B1:DB:88:98:6B:CA:B9:86:C6:71:EC:30:80:48:BF:11:E2 X509v3 Authority Key Identifier: keyid:67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/zEYmsduImGvKuYbGcewwgEi_EeI.roa sbgp-ipAddrBlock: critical IPv4: 210.173.160.0/21 Signature Algorithm: sha256WithRSAEncryption a7:f8:b6:33:01:c4:7b:ce:d0:5b:19:da:64:18:31:75:63:13: a8:47:be:e4:1f:d6:42:f6:5c:f0:08:12:db:ed:78:a5:b6:0a: 7c:4c:d3:5c:b0:f7:7a:33:c4:52:ef:9d:38:4a:d8:34:be:d3: 15:29:54:30:54:bb:0d:71:9f:1e:4e:90:58:dd:e2:3a:bd:00: 2b:22:f8:0b:09:61:b6:aa:4e:2a:2c:69:62:1d:d0:7d:25:90: e5:61:75:4e:c6:18:da:d3:08:3e:8f:52:88:89:4b:56:49:12: 41:c7:c8:b5:7d:d0:93:13:07:1a:11:1c:53:f6:10:e1:f1:3f: 93:90:fb:c8:33:6d:d9:f7:19:62:ed:78:3f:c6:23:f8:ac:43: 9d:1a:9f:0d:f3:28:0a:1d:e1:e4:44:6d:84:bc:16:4f:54:72: 14:22:65:1b:d0:bb:d1:b0:4c:28:75:92:1d:72:8e:c1:7e:36: 2b:aa:ba:b0:4c:da:19:57:6f:82:ff:33:81:87:c2:65:ba:94: 1d:5d:de:c1:9e:bd:92:0a:4c:72:85:ec:df:1d:1e:b8:99:0e: ae:a3:a9:c8:72:62:66:c0:41:26:19:a3:a4:f0:95:53:79:d5: 39:4d:b3:29:6f:06:1d:21:1e:b5:07:5d:e5:1c:a3:92:5a:13: 0f:71:b9:5a -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjcw MThCNERGRTU0QkQ2NDRFMDAwNjQxQTIzNEI0NzFEQjIwQjg5MjAeFw0yNjAzMzEw NzI3MTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKENDNDYyNkIxREI4ODk4 NkJDQUI5ODZDNjcxRUMzMDgwNDhCRjExRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRKqzxekEh5XWzICxLvTlaXVWb2Use4IrMmkduxthzynWNOeb1 On5gOk5W4fyA4hVojtYzzmNzPfAl5X+e6dLK5pOZilnX2snp0LKY+ziHIbU3RWNl GoN9uUK38rivgEqPEm3Fz8phJEkqnyDPRvujBt/edEZEfTxqDJl1wgJbuxw9gJz4 qL5O2nC2LdLu7wUO+Xj6SpZC05xyHQRfZSqbCB4USrac6D9Uucr+SE2vj6Nujzu8 QGoqHx/GkLETqLcLC59xhx0rd05us0Joii2EJ7FHEEjoZEfk4HAmotPp/PHP7Uj4 o6tnk05TrmO1KlTqhfRnz0CDD4eQ3BTlEADhAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUzEYmsduImGvKuYbGcewwgEi/EeIwHwYDVR0jBBgwFoAUZwGLTf5UvWROAAZB ojS0cdsguJIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwNy9ad0dMVGY1VXZXUk9BQVpCb2pTMGNkc2d1SkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9ad0dMVGY1VXZXUk9BQVpCb2pTMGNk c2d1SkkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMjA3L3pFWW1zZHVJbUd2S3VZYkdjZXd3Z0VpX0VlSS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSraAwDQYJKoZIhvcNAQELBQADggEB AKf4tjMBxHvO0FsZ2mQYMXVjE6hHvuQf1kL2XPAIEtvteKW2CnxM01yw93ozxFLv nThK2DS+0xUpVDBUuw1xnx5OkFjd4jq9ACsi+AsJYbaqTiosaWId0H0lkOVhdU7G GNrTCD6PUoiJS1ZJEkHHyLV90JMTBxoRHFP2EOHxP5OQ+8gzbdn3GWLteD/GI/is Q50anw3zKAod4eREbYS8Fk9UchQiZRvQu9GwTCh1kh1yjsF+NiuqurBM2hlXb4L/ M4GHwmW6lB1d3sGevZIKTHKF7N8dHriZDq6jqchyYmbAQSYZo6TwlVN51TlNsylv Bh0hHrUHXeUco5JaEw9xuVo= -----END CERTIFICATE-----Generated at Sun Apr 19 09:26:39 2026 by rpki-client