$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/OksZPBcB-yv4dERWwj9KNh0hMAk.roa File: OksZPBcB-yv4dERWwj9KNh0hMAk.roa (raw, json) Hash identifier: TxlXj03ImchOM3ytCyNJ/utHk+uL9gscmMdF/dIiF/o= Subject key identifier: 3A:4B:19:3C:17:01:FB:2B:F8:74:44:56:C2:3F:4A:36:1D:21:30:09 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 67 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/OksZPBcB-yv4dERWwj9KNh0hMAk.roa Signing time: Tue 31 Mar 2026 08:16:36 +0000 ROA not before: Tue 31 Mar 2026 08:16:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7672 IP address blocks: 210.166.0.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: Mar 31 08:16:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3A4B193C1701FB2BF8744456C23F4A361D213009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:57:54:5f:77:17:0f:ab:1d:54:0b:1c:e2:0b: 19:48:84:92:fb:19:01:ad:91:69:ce:94:9c:ee:e3: 27:47:b3:50:9f:79:79:42:ff:f9:4f:71:cf:74:61: 07:4f:d1:5e:92:02:ef:8f:c1:bf:82:3d:ae:e5:1d: 8a:ec:07:22:c0:bd:04:ee:05:49:1c:c4:43:ab:08: 54:a5:2d:2c:42:56:4c:51:80:01:ae:c6:14:28:86: 56:04:88:88:63:a4:6a:b2:90:3a:84:88:bd:cf:2b: c4:0b:c6:71:0a:02:b7:34:ff:5c:7d:e8:ed:b0:ee: 3f:d7:85:07:6f:12:22:8f:6d:5b:8a:c8:e7:fd:7f: f1:31:76:be:69:fc:c2:fa:04:54:3f:90:3d:b0:0a: b3:0d:29:8a:67:da:a5:44:77:df:f6:f6:74:7c:13: f8:7c:35:92:9b:f5:e8:df:07:78:94:6a:aa:22:8b: bf:b3:ac:85:81:4a:8c:64:39:c3:04:75:53:74:1c: 1a:12:e6:c7:31:09:a4:eb:e4:8d:89:55:9b:b2:97: 2e:39:22:e7:20:6d:86:93:be:e6:1e:04:6a:01:59: d2:0b:c4:78:ec:23:fd:4a:f1:59:a6:3e:56:31:1a: f1:09:0b:af:55:34:9f:96:db:ba:a5:56:bf:5c:40: 95:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4B:19:3C:17:01:FB:2B:F8:74:44:56:C2:3F:4A:36:1D:21:30:09 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/OksZPBcB-yv4dERWwj9KNh0hMAk.roa sbgp-ipAddrBlock: critical IPv4: 210.166.0.0/19 Signature Algorithm: sha256WithRSAEncryption 32:34:8b:a1:f0:6b:84:41:cd:92:6a:b5:b7:29:8d:42:b1:9a: c3:87:99:ac:b8:93:83:3c:0a:7f:46:b2:bf:a0:38:40:83:ef: 43:0a:f0:41:92:54:e3:39:36:68:c3:79:46:ab:f4:ee:72:d3: f5:53:19:b4:dd:66:1d:06:da:54:33:b0:a7:2c:91:c5:11:61: f4:f7:c3:2b:13:f6:63:4c:ce:cc:1e:43:d4:89:e3:d2:0b:f8: 83:8d:5f:8e:59:43:19:f5:20:95:89:90:62:78:b6:0d:42:13: d1:db:39:b5:4f:19:57:69:b5:c4:9a:79:f2:84:d2:59:bb:6c: 35:c5:dc:01:88:c2:23:a5:ae:0a:d0:29:c9:4e:1d:95:c3:8b: e4:95:94:7c:a6:1d:a5:30:b3:b6:25:61:98:03:f4:df:a4:90: 07:be:90:45:f6:7a:3d:64:84:57:e7:ad:14:d1:b1:b7:92:05: d0:c4:03:70:8d:c2:d5:32:f9:97:f2:47:a2:10:0c:91:7d:5c: 09:3d:e3:05:b2:5a:36:3c:e1:46:cf:2e:2e:29:6f:dc:7d:5a: a4:d3:0b:d7:74:f8:9f:07:22:b2:aa:ed:88:f7:ce:d9:ef:0d: dd:a8:0d:29:52:8b:d0:7e:37:57:4f:22:b2:b1:ad:98:57:65: e7:06:e9:73 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI2MDMzMTA4 MTYzNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoM0E0QjE5M0MxNzAxRkIy QkY4NzQ0NDU2QzIzRjRBMzYxRDIxMzAwOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANRXVF93Fw+rHVQLHOILGUiEkvsZAa2Rac6UnO7jJ0ezUJ95eUL/ +U9xz3RhB0/RXpIC74/Bv4I9ruUdiuwHIsC9BO4FSRzEQ6sIVKUtLEJWTFGAAa7G FCiGVgSIiGOkarKQOoSIvc8rxAvGcQoCtzT/XH3o7bDuP9eFB28SIo9tW4rI5/1/ 8TF2vmn8wvoEVD+QPbAKsw0pimfapUR33/b2dHwT+Hw1kpv16N8HeJRqqiKLv7Os hYFKjGQ5wwR1U3QcGhLmxzEJpOvkjYlVm7KXLjki5yBthpO+5h4EagFZ0gvEeOwj /UrxWaY+VjEa8QkLr1U0n5bbuqVWv1xAlcUCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQ6Sxk8FwH7K/h0RFbCP0o2HSEwCTAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yMzIvT2tzWlBCY0IteXY0ZEVSV3dqOUtOaDBoTUFrLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdKmADANBgkqhkiG9w0BAQsFAAOCAQEA MjSLofBrhEHNkmq1tymNQrGaw4eZrLiTgzwKf0ayv6A4QIPvQwrwQZJU4zk2aMN5 Rqv07nLT9VMZtN1mHQbaVDOwpyyRxRFh9PfDKxP2Y0zOzB5D1Inj0gv4g41fjllD GfUglYmQYni2DUIT0ds5tU8ZV2m1xJp58oTSWbtsNcXcAYjCI6WuCtApyU4dlcOL 5JWUfKYdpTCztiVhmAP036SQB76QRfZ6PWSEV+etFNGxt5IF0MQDcI3C1TL5l/JH ohAMkX1cCT3jBbJaNjzhRs8uLilv3H1apNML13T4nwcisqrtiPfO2e8N3agNKVKL 0H43V08isrGtmFdl5wbpcw== -----END CERTIFICATE-----Generated at Fri Apr 17 23:23:56 2026 by rpki-client