$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/Kd8_0xqlPcFaytqGdXTMPqKbaUM.roa File: Kd8_0xqlPcFaytqGdXTMPqKbaUM.roa (raw, json) Hash identifier: GUWxP2Kfuir7uIVfwVCzlSxTEnRR9dEMYC8ZOhbDSGI= Subject key identifier: 29:DF:3F:D3:1A:A5:3D:C1:5A:CA:DA:86:75:74:CC:3E:A2:9B:69:43 Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Certificate serial: 0134 Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/Kd8_0xqlPcFaytqGdXTMPqKbaUM.roa Signing time: Tue 31 Mar 2026 07:36:45 +0000 ROA not before: Tue 31 Mar 2026 07:36:45 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9370 IP address blocks: 153.121.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Validity Not Before: Mar 31 07:36:45 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=29DF3FD31AA53DC15ACADA867574CC3EA29B6943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a4:79:8e:14:6f:98:4a:8f:b7:70:27:fe:fd: f9:e6:0e:26:86:39:53:d7:13:1f:72:d3:ac:25:47: 46:1b:7c:29:07:28:c8:5b:8c:19:48:34:9d:66:26: c4:33:c1:ae:6a:55:02:7e:de:4c:61:94:19:2b:02: 0c:9a:50:35:c1:53:7d:cb:e5:9f:d9:b9:2d:9c:8c: b2:a1:51:49:5f:8b:d5:6d:bb:fb:31:af:ac:e7:c3: e1:50:60:38:bc:a6:3a:a6:23:64:0c:db:d5:19:87: 61:ad:81:42:27:41:55:a3:b9:0b:ea:97:9a:5c:7c: d2:c0:a0:94:23:ee:04:d6:39:a4:9d:e8:05:c2:5d: 7f:10:eb:4a:cb:17:e0:bb:e9:f8:bb:1a:89:38:a8: 96:3b:1d:f4:a5:8a:b8:fd:d6:74:d6:68:ff:76:b7: 59:7b:fd:88:c4:88:2e:82:35:e2:50:53:88:53:15: 2f:45:39:67:a8:0f:06:20:27:9e:ba:46:99:3e:db: e6:fb:50:ac:96:ad:31:26:f0:5d:ce:cc:18:47:44: 42:c8:be:01:45:5d:18:1d:b2:a9:73:46:77:64:ab: c2:40:ca:c5:a9:d7:85:ee:21:96:6e:66:3b:c7:cc: 85:5d:1f:b9:90:59:b9:e0:8b:08:d9:34:91:a2:49: 65:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:DF:3F:D3:1A:A5:3D:C1:5A:CA:DA:86:75:74:CC:3E:A2:9B:69:43 X509v3 Authority Key Identifier: keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/Kd8_0xqlPcFaytqGdXTMPqKbaUM.roa sbgp-ipAddrBlock: critical IPv4: 153.121.64.0/19 Signature Algorithm: sha256WithRSAEncryption 27:d7:03:05:6a:16:92:41:92:5f:1a:44:c9:c1:09:68:68:6f: b5:3f:95:4f:a6:c9:b8:2d:a3:32:8a:0c:70:a2:45:4d:f7:24: 35:f6:06:18:32:82:73:07:14:07:0e:b1:04:e0:1a:4f:98:ac: f5:2b:7a:fb:cb:41:8c:a1:f2:ee:73:ba:f5:16:a8:fb:ef:d1: 11:2e:aa:31:c8:92:0a:91:36:b4:e8:64:9c:bc:4e:91:63:1c: 2f:7d:8b:a5:40:58:e1:d7:00:7d:f5:d6:23:25:12:50:a9:a1: 00:53:41:e4:88:ee:29:d3:40:0e:9c:bc:b3:bc:cc:87:17:92: 92:89:97:6c:02:22:6d:19:87:ba:49:e4:4a:9d:ed:cc:c7:08: 62:b1:65:88:cd:d7:30:88:22:91:44:f0:1d:c6:11:d2:93:52: a9:39:64:35:0d:a7:37:40:23:10:94:80:de:99:1c:88:aa:d1: 7a:d9:25:38:5b:fd:5c:0a:ff:32:a1:84:49:48:bc:68:be:d6: 99:a4:36:14:c8:8c:b0:97:c5:39:ff:f3:40:9f:31:f6:a1:84: 84:2a:c5:19:05:2c:41:bf:7f:85:7b:46:44:d8:2a:a7:8c:28: 62:73:7b:cd:8a:53:3f:c5:29:79:77:01:30:6b:47:c9:85:1a: 96:67:92:8c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yNjAzMzEw NzM2NDVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI5REYzRkQzMUFBNTNE QzE1QUNBREE4Njc1NzRDQzNFQTI5QjY5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlpHmOFG+YSo+3cCf+/fnmDiaGOVPXEx9y06wlR0YbfCkHKMhb jBlINJ1mJsQzwa5qVQJ+3kxhlBkrAgyaUDXBU33L5Z/ZuS2cjLKhUUlfi9Vtu/sx r6znw+FQYDi8pjqmI2QM29UZh2GtgUInQVWjuQvql5pcfNLAoJQj7gTWOaSd6AXC XX8Q60rLF+C76fi7Gok4qJY7HfSlirj91nTWaP92t1l7/YjEiC6CNeJQU4hTFS9F OWeoDwYgJ566Rpk+2+b7UKyWrTEm8F3OzBhHRELIvgFFXRgdsqlzRndkq8JAysWp 14XuIZZuZjvHzIVdH7mQWbngiwjZNJGiSWWDAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKd8/0xqlPcFaytqGdXTMPqKbaUMwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMjQ3L0tkOF8weHFsUGNGYXl0cUdkWFRNUHFLYmFVTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWZeUAwDQYJKoZIhvcNAQELBQADggEB ACfXAwVqFpJBkl8aRMnBCWhob7U/lU+mybgtozKKDHCiRU33JDX2BhgygnMHFAcO sQTgGk+YrPUrevvLQYyh8u5zuvUWqPvv0REuqjHIkgqRNrToZJy8TpFjHC99i6VA WOHXAH311iMlElCpoQBTQeSI7inTQA6cvLO8zIcXkpKJl2wCIm0Zh7pJ5Eqd7czH CGKxZYjN1zCIIpFE8B3GEdKTUqk5ZDUNpzdAIxCUgN6ZHIiq0XrZJThb/VwK/zKh hElIvGi+1pmkNhTIjLCXxTn/80CfMfahhIQqxRkFLEG/f4V7RkTYKqeMKGJze82K Uz/FKXl3ATBrR8mFGpZnkow= -----END CERTIFICATE-----Generated at Sun Apr 19 08:41:44 2026 by rpki-client