$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/221/hPDs-1pVJCvJepoXUsNNCpB1rw0.roa File: hPDs-1pVJCvJepoXUsNNCpB1rw0.roa (raw, json) Hash identifier: soVfhki3mD1q0lQzacvpEuA0hzDj9ffDL8Roqw+Y9+o= Subject key identifier: 84:F0:EC:FB:5A:55:24:2B:C9:7A:9A:17:52:C3:4D:0A:90:75:AF:0D Certificate issuer: /CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Certificate serial: 24 Authority key identifier: 1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/hPDs-1pVJCvJepoXUsNNCpB1rw0.roa Signing time: Tue 31 Mar 2026 08:43:59 +0000 ROA not before: Tue 31 Mar 2026 08:43:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7677 IP address blocks: 157.101.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Validity Not Before: Mar 31 08:43:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=84F0ECFB5A55242BC97A9A1752C34D0A9075AF0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:47:5d:44:e2:26:c0:a4:d3:93:ef:3c:4b: ef:34:76:1d:58:fe:d5:66:ce:e3:da:94:30:d8:4a: 49:72:b4:7a:8b:78:f7:4c:ed:d0:65:b7:c8:f6:e4: a7:3b:91:c8:87:14:52:0a:5a:1e:ce:65:65:80:c5: b3:05:a8:cf:46:e8:6b:d6:d0:be:57:88:5b:8c:76: f7:b4:c8:fb:7e:07:07:9d:38:0e:ff:67:3f:5e:d9: fb:cb:f1:19:63:76:9a:c7:8d:ad:b1:a8:fb:eb:c3: 8b:00:b0:e2:81:8a:05:b8:92:07:10:5f:06:c2:db: 08:fa:17:3b:13:3a:64:9d:d2:b1:da:12:ad:f4:cb: e7:19:4e:75:15:09:98:68:56:16:88:d2:c7:d1:e3: 42:fa:f2:13:b7:1e:2e:cd:02:5a:46:22:70:1a:fd: db:99:fe:00:f6:55:79:56:35:28:4c:3b:f4:ba:78: d5:be:09:75:f6:b0:95:bd:1f:13:a7:0a:a8:20:3a: 79:55:29:f6:f6:50:1c:71:32:74:4a:f2:f5:37:fe: 33:ed:91:eb:40:cf:27:65:48:87:54:68:3f:e3:e7: 4c:27:c6:39:79:63:d5:0e:32:2b:c0:8a:24:47:e9: 5f:d7:a1:d3:d9:35:30:9a:97:d1:7d:e9:e4:93:ba: bd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F0:EC:FB:5A:55:24:2B:C9:7A:9A:17:52:C3:4D:0A:90:75:AF:0D X509v3 Authority Key Identifier: keyid:1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/hPDs-1pVJCvJepoXUsNNCpB1rw0.roa sbgp-ipAddrBlock: critical IPv4: 157.101.244.0/24 Signature Algorithm: sha256WithRSAEncryption 23:c8:94:b5:c9:50:75:4e:1d:a4:ac:4d:72:73:c6:12:a9:3b: 29:15:1b:63:8f:b2:4d:22:35:2a:5e:50:5c:03:c5:26:a5:2f: 24:70:18:e4:e5:2f:05:0a:ae:f9:ff:1a:97:0c:98:2e:79:c8: c3:26:ea:c8:fb:c1:2c:e8:37:a9:40:b3:60:5e:d3:8f:43:a9: 57:a2:59:54:da:a7:39:ea:ff:fc:85:4d:96:f0:1a:b9:74:bc: 94:27:a3:f9:88:b6:45:27:cc:38:1a:45:39:72:37:77:68:1a: 5c:34:96:c7:c3:04:51:75:44:41:73:00:e3:21:0d:e9:05:f7: 52:d8:84:b9:19:e8:07:65:98:09:bd:45:3f:e6:88:b1:af:d8: 8b:2c:b5:2c:38:05:f7:be:64:48:a1:85:e5:25:d0:5e:ab:02: 44:d6:3a:6a:4b:d2:2d:24:c4:70:35:68:9d:9d:a5:a1:15:6d: a6:ba:40:3b:b4:f8:07:39:70:46:00:19:d8:d0:3c:41:9a:72: 90:dd:0f:d4:df:f1:cc:50:c6:f6:7a:16:14:d8:c0:9b:4d:1b: 8a:e6:06:aa:8f:16:c6:4a:0e:30:5d:6e:77:4d:3d:a6:19:99: 50:30:19:53:24:d8:53:36:18:04:a0:6f:72:34:f0:e9:12:37: 26:af:68:49 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkNG QjRGQUI5NDVDREQxNDg0NzNFQ0I3NUIxMUUzQUQxNjlFNzFEMB4XDTI2MDMzMTA4 NDM1OVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODRGMEVDRkI1QTU1MjQy QkM5N0E5QTE3NTJDMzREMEE5MDc1QUYwRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMtYR11E4ibApNOT7zxL7zR2HVj+1WbO49qUMNhKSXK0eot490zt 0GW3yPbkpzuRyIcUUgpaHs5lZYDFswWoz0boa9bQvleIW4x297TI+34HB504Dv9n P17Z+8vxGWN2mseNrbGo++vDiwCw4oGKBbiSBxBfBsLbCPoXOxM6ZJ3SsdoSrfTL 5xlOdRUJmGhWFojSx9HjQvryE7ceLs0CWkYicBr925n+APZVeVY1KEw79Lp41b4J dfawlb0fE6cKqCA6eVUp9vZQHHEydEry9Tf+M+2R60DPJ2VIh1RoP+PnTCfGOXlj 1Q4yK8CKJEfpX9eh09k1MJqX0X3p5JO6vV8CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSE8Oz7WlUkK8l6mhdSw00KkHWvDTAfBgNVHSMEGDAWgBQbz7T6uUXN0UhHPst1 sR460WnnHTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjIxL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RGcDV4MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RG cDV4MC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yMjEvaFBEcy0xcFZKQ3ZKZXBvWFVzTk5DcEIxcncwLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1l9DANBgkqhkiG9w0BAQsFAAOCAQEA I8iUtclQdU4dpKxNcnPGEqk7KRUbY4+yTSI1Kl5QXAPFJqUvJHAY5OUvBQqu+f8a lwyYLnnIwybqyPvBLOg3qUCzYF7Tj0OpV6JZVNqnOer//IVNlvAauXS8lCej+Yi2 RSfMOBpFOXI3d2gaXDSWx8MEUXVEQXMA4yEN6QX3UtiEuRnoB2WYCb1FP+aIsa/Y iyy1LDgF975kSKGF5SXQXqsCRNY6akvSLSTEcDVonZ2loRVtprpAO7T4BzlwRgAZ 2NA8QZpykN0P1N/xzFDG9noWFNjAm00biuYGqo8WxkoOMF1ud009phmZUDAZUyTY UzYYBKBvcjTw6RI3Jq9oSQ== -----END CERTIFICATE-----Generated at Sun Apr 19 08:29:25 2026 by rpki-client