$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/o9xPanQHvfuCudF8RCvQuQ0nZeo.roa File: o9xPanQHvfuCudF8RCvQuQ0nZeo.roa (raw, json) Hash identifier: R9yj54F5Vjxst2E8M8FSZLYgOsT0L03rjtxZ9dw+KEo= Subject key identifier: A3:DC:4F:6A:74:07:BD:FB:82:B9:D1:7C:44:2B:D0:B9:0D:27:65:EA Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 38 Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/o9xPanQHvfuCudF8RCvQuQ0nZeo.roa Signing time: Tue 31 Mar 2026 08:43:18 +0000 ROA not before: Tue 31 Mar 2026 08:43:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2907 IP address blocks: 192.58.18.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Mar 31 08:43:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A3DC4F6A7407BDFB82B9D17C442BD0B90D2765EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:eb:98:56:5c:f6:8a:cb:73:75:60:f9:19:45: ae:9a:93:da:69:b2:a6:2b:02:23:f8:37:e6:72:6c: 37:d5:a8:16:c0:db:d8:6f:0a:32:df:6a:48:41:f1: e0:ba:a2:7b:8f:bc:ad:65:a1:42:8a:a7:a4:e0:81: 58:bc:b5:50:69:87:d8:c2:16:46:32:9d:b8:d1:1f: e4:c5:1f:a2:10:c8:b4:00:ab:50:ef:e5:7c:bd:cf: a4:6e:49:8a:ae:ae:0d:60:70:40:01:9d:4e:f2:b8: 7f:01:ec:63:c1:f4:8d:a2:54:16:2b:9f:f9:ee:e8: cc:7a:d5:59:bc:a1:e6:fd:bb:1c:24:c1:08:d1:7d: 3d:b4:18:48:ee:e2:50:86:fd:9a:af:7c:a8:84:84: 05:c6:9e:ac:28:c5:ea:da:9e:b0:c9:0a:7f:db:11: 54:1d:42:a5:da:3f:3d:e2:5b:1c:f2:9f:26:81:71: 75:90:c0:46:cd:53:ca:47:6a:84:bd:6e:8a:68:be: 9a:0d:8e:6b:9c:ba:3e:33:29:46:4d:c6:37:99:28: 9c:94:a6:61:07:97:c1:f8:55:f8:87:3b:98:eb:99: 63:ce:76:4e:69:a6:9c:a8:68:5e:ac:85:c5:ec:4d: 10:d8:3b:41:4c:cb:94:87:f4:ed:ef:01:97:1a:df: b2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:DC:4F:6A:74:07:BD:FB:82:B9:D1:7C:44:2B:D0:B9:0D:27:65:EA X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/o9xPanQHvfuCudF8RCvQuQ0nZeo.roa sbgp-ipAddrBlock: critical IPv4: 192.58.18.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:13:fa:47:ab:3c:3f:63:0f:ff:98:c4:33:12:1d:7c:7a:3c: 2d:0c:e6:3a:93:0b:08:95:f8:1d:30:9b:4f:0a:17:e5:63:60: aa:3a:66:c3:46:02:77:d7:a1:ce:33:0b:70:9c:3c:d0:50:37: 0a:3e:4f:21:57:ae:6a:d2:26:e0:d1:88:cb:cc:d9:63:ce:11: 3f:d7:3a:3b:52:88:f6:4b:b0:e5:1d:43:68:2d:51:2c:9b:63: 2d:f2:6b:6c:c3:5c:73:86:62:52:fe:86:69:c0:53:56:fa:03: c7:25:e2:55:89:24:55:09:80:85:6b:25:89:6e:43:60:20:e3: 73:f1:56:4e:6c:8b:38:e6:85:80:f5:bb:06:81:c9:8d:60:d3: 7c:53:5c:9d:6e:b5:6b:75:f6:a9:ed:98:72:2f:77:6b:d8:ac: 5b:65:e2:a5:30:83:3e:e7:a0:24:bd:e6:57:bf:31:c1:33:3a: 53:af:40:77:5c:9c:01:0c:89:ec:e9:3d:79:20:84:b2:50:7c: 75:f2:62:cf:98:79:1a:4c:cd:c4:72:e2:b3:73:19:17:dc:7c: 9f:51:d4:3d:c7:cb:b9:4f:30:11:0f:ba:54:63:05:e9:d2:86: be:d7:6a:28:73:88:82:6c:69:2c:91:18:da:55:37:89:82:8e: 54:1f:17:04 -----BEGIN CERTIFICATE----- MIIEvjCCA6agAwIBAgIBODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI2MDMzMTA4 NDMxOFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTNEQzRGNkE3NDA3QkRG QjgyQjlEMTdDNDQyQkQwQjkwRDI3NjVFQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANjrmFZc9orLc3Vg+RlFrpqT2mmypisCI/g35nJsN9WoFsDb2G8K Mt9qSEHx4Lqie4+8rWWhQoqnpOCBWLy1UGmH2MIWRjKduNEf5MUfohDItACrUO/l fL3PpG5Jiq6uDWBwQAGdTvK4fwHsY8H0jaJUFiuf+e7ozHrVWbyh5v27HCTBCNF9 PbQYSO7iUIb9mq98qISEBcaerCjF6tqesMkKf9sRVB1Cpdo/PeJbHPKfJoFxdZDA Rs1TykdqhL1uimi+mg2Oa5y6PjMpRk3GN5konJSmYQeXwfhV+Ic7mOuZY852Tmmm nKhoXqyFxexNENg7QUzLlIf07e8BlxrfsrkCAwEAAaOCAdswggHXMB0GA1UdDgQW BBSj3E9qdAe9+4K50XxEK9C5DSdl6jAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDByBggrBgEFBQcBCwRmMGQwYgYIKwYB BQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMjE2Ni9vOXhQYW5RSHZmdUN1ZEY4UkN2UXVRMG5aZW8ucm9hMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwDoSMA0GCSqGSIb3DQEBCwUAA4IB AQAdE/pHqzw/Yw//mMQzEh18ejwtDOY6kwsIlfgdMJtPChflY2CqOmbDRgJ316HO MwtwnDzQUDcKPk8hV65q0ibg0YjLzNljzhE/1zo7Uoj2S7DlHUNoLVEsm2Mt8mts w1xzhmJS/oZpwFNW+gPHJeJViSRVCYCFayWJbkNgIONz8VZObIs45oWA9bsGgcmN YNN8U1ydbrVrdfap7ZhyL3dr2KxbZeKlMIM+56AkveZXvzHBMzpTr0B3XJwBDIns 6T15IISyUHx18mLPmHkaTM3EcuKzcxkX3HyfUdQ9x8u5TzARD7pUYwXp0oa+12oo c4iCbGkskRjaVTeJgo5UHxcE -----END CERTIFICATE-----Generated at Fri Apr 17 21:19:41 2026 by rpki-client