$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/240/DdqABEdO2gEkgq1kh2T9lAGbG1I.roa File: DdqABEdO2gEkgq1kh2T9lAGbG1I.roa (raw, json) Hash identifier: zTtjLz91eyVv6OHsU3fQmEOmc6pIe1SpaIdwTwBVACM= Subject key identifier: 0D:DA:80:04:47:4E:DA:01:24:82:AD:64:87:64:FD:94:01:9B:1B:52 Certificate issuer: /CN=9C8669BF18B31012710F48C9A8DE0BB71D7C2F66 Certificate serial: 2F Authority key identifier: 9C:86:69:BF:18:B3:10:12:71:0F:48:C9:A8:DE:0B:B7:1D:7C:2F:66 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nIZpvxizEBJxD0jJqN4Ltx18L2Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/DdqABEdO2gEkgq1kh2T9lAGbG1I.roa Signing time: Tue 31 Mar 2026 08:34:05 +0000 ROA not before: Tue 31 Mar 2026 08:34:05 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9597 IP address blocks: 158.199.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/nIZpvxizEBJxD0jJqN4Ltx18L2Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/nIZpvxizEBJxD0jJqN4Ltx18L2Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nIZpvxizEBJxD0jJqN4Ltx18L2Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8669BF18B31012710F48C9A8DE0BB71D7C2F66 Validity Not Before: Mar 31 08:34:05 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0DDA8004474EDA012482AD648764FD94019B1B52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:63:17:1b:8a:9a:ad:8c:47:68:0a:d2:69:bf: ed:bb:7f:7f:0d:96:f0:bb:9f:75:13:99:47:82:8c: c2:07:27:79:54:17:92:d0:b2:35:40:46:ea:d6:f9: c3:eb:e6:bf:bc:55:44:f0:00:74:29:40:44:61:fd: 3e:91:12:25:c2:79:f4:1f:29:44:6b:40:d3:6b:01: 19:61:6b:e8:a9:a7:fb:fc:a9:2a:5f:7f:f6:2e:20: 32:52:59:b5:23:a1:86:f3:cd:c2:67:6a:74:3b:c6: 81:8d:42:33:d7:8f:40:68:ef:73:95:bb:a8:36:c4: 89:1b:4a:be:c6:61:3d:3c:1e:11:84:1d:fd:f3:e3: 76:1b:5e:d1:c7:ca:fd:ff:33:e5:66:5c:29:da:96: ec:00:f8:b9:bc:fc:43:ec:64:f0:d9:d2:a2:89:81: db:8e:24:d5:c6:2a:4d:e1:71:21:1c:72:2b:27:ba: ce:6e:d7:81:8c:f1:f6:f7:15:03:9b:b4:d4:24:08: 18:2c:12:f6:a6:2e:04:3d:e4:28:3f:8c:0f:98:da: 50:f3:e9:56:78:83:e3:26:2c:a2:1b:58:bc:15:16: 5b:ac:eb:c0:10:07:ad:e5:96:07:4e:f2:98:dc:68: 5c:5a:ef:44:83:c5:82:63:1b:fd:0c:20:d5:2b:75: d0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DA:80:04:47:4E:DA:01:24:82:AD:64:87:64:FD:94:01:9B:1B:52 X509v3 Authority Key Identifier: keyid:9C:86:69:BF:18:B3:10:12:71:0F:48:C9:A8:DE:0B:B7:1D:7C:2F:66 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/nIZpvxizEBJxD0jJqN4Ltx18L2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nIZpvxizEBJxD0jJqN4Ltx18L2Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/DdqABEdO2gEkgq1kh2T9lAGbG1I.roa sbgp-ipAddrBlock: critical IPv4: 158.199.128.0/17 Signature Algorithm: sha256WithRSAEncryption 96:7c:26:92:f6:12:e1:e5:62:36:1f:d2:e8:5e:97:17:d9:f5: 80:69:1a:71:a7:95:3b:27:b9:f0:d4:ef:0f:32:f1:c7:78:3e: f1:85:62:c5:ed:8b:3d:fb:21:be:b0:f8:ae:9a:16:cc:62:11: 7b:e6:2d:25:75:cd:eb:b1:de:f1:8f:4a:29:34:c1:3c:61:8d: f3:6f:db:6d:0e:e7:d9:07:c4:92:26:91:75:f6:40:ec:e6:ae: 2b:79:a8:6e:09:24:6a:7a:7a:85:9b:01:39:5c:78:c3:ab:2a: 5c:d6:82:e1:56:b9:3c:65:06:31:31:31:16:4c:0e:1b:78:cd: c6:d2:d7:70:8b:3e:6e:16:b1:23:7a:09:d1:db:9a:77:ce:c3: 97:e8:ca:c4:75:7e:a7:5a:59:a5:d8:1c:3b:1d:e8:e7:af:94: b3:22:2c:41:6b:d5:90:bb:02:b7:56:bd:70:56:6b:2c:bd:66: 30:29:40:7e:35:cc:0a:2b:5d:a8:5f:a5:0d:b0:42:a7:5a:0c: 75:f1:c3:94:85:9b:48:f2:14:e6:93:29:01:f0:0b:ed:43:c3: 3f:e7:e6:dd:f1:31:3b:27:77:a7:0d:f0:c0:43:72:42:72:e1: 13:50:66:4e:b9:f0:71:30:3d:28:43:39:5e:bf:93:a4:d2:ad: 35:b6:2c:10 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5Qzg2 NjlCRjE4QjMxMDEyNzEwRjQ4QzlBOERFMEJCNzFEN0MyRjY2MB4XDTI2MDMzMTA4 MzQwNVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMEREQTgwMDQ0NzRFREEw MTI0ODJBRDY0ODc2NEZEOTQwMTlCMUI1MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM5jFxuKmq2MR2gK0mm/7bt/fw2W8LufdROZR4KMwgcneVQXktCy NUBG6tb5w+vmv7xVRPAAdClARGH9PpESJcJ59B8pRGtA02sBGWFr6Kmn+/ypKl9/ 9i4gMlJZtSOhhvPNwmdqdDvGgY1CM9ePQGjvc5W7qDbEiRtKvsZhPTweEYQd/fPj dhte0cfK/f8z5WZcKdqW7AD4ubz8Q+xk8NnSoomB244k1cYqTeFxIRxyKye6zm7X gYzx9vcVA5u01CQIGCwS9qYuBD3kKD+MD5jaUPPpVniD4yYsohtYvBUWW6zrwBAH reWWB07ymNxoXFrvRIPFgmMb/Qwg1St10HUCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQN2oAER07aASSCrWSHZP2UAZsbUjAfBgNVHSMEGDAWgBSchmm/GLMQEnEPSMmo 3gu3HXwvZjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQwL25JWnB2eGl6RUJKeEQwakpxTjRMdHgxOEwyWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL25JWnB2eGl6RUJKeEQwakpxTjRMdHgx OEwyWS5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yNDAvRGRxQUJFZE8yZ0VrZ3Exa2gyVDlsQUdiRzFJLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB57HgDANBgkqhkiG9w0BAQsFAAOCAQEA lnwmkvYS4eViNh/S6F6XF9n1gGkacaeVOye58NTvDzLxx3g+8YVixe2LPfshvrD4 rpoWzGIRe+YtJXXN67He8Y9KKTTBPGGN82/bbQ7n2QfEkiaRdfZA7OauK3mobgkk anp6hZsBOVx4w6sqXNaC4Va5PGUGMTExFkwOG3jNxtLXcIs+bhaxI3oJ0duad87D l+jKxHV+p1pZpdgcOx3o56+UsyIsQWvVkLsCt1a9cFZrLL1mMClAfjXMCitdqF+l DbBCp1oMdfHDlIWbSPIU5pMpAfAL7UPDP+fm3fExOyd3pw3wwENyQnLhE1BmTrnw cTA9KEM5Xr+TpNKtNbYsEA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:20:11 2026 by rpki-client