$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/3i1yR2N-043OiZkL5OS5zIdW3ig.roa File: 3i1yR2N-043OiZkL5OS5zIdW3ig.roa (raw, json) Hash identifier: GtGv2lhbTA5rqw3W3nk90OCcnB9JLYPhH7Uxm8a24bA= Subject key identifier: DE:2D:72:47:63:7E:D3:8D:CE:89:99:0B:E4:E4:B9:CC:87:56:DE:28 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 0121 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/3i1yR2N-043OiZkL5OS5zIdW3ig.roa Signing time: Tue 31 Mar 2026 08:17:25 +0000 ROA not before: Tue 31 Mar 2026 08:17:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 157.65.32.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DE2D7247637ED38DCE89990BE4E4B9CC8756DE28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:55:4d:43:e1:45:da:00:38:74:4c:fe:26:b3: f6:10:8f:3c:82:ee:f0:9c:b1:9a:79:4d:3a:1f:b8: 9c:8b:e9:34:b8:51:fe:8a:1c:9f:25:4f:ad:20:6f: 7f:d0:77:49:49:24:6e:ff:4d:97:7d:52:2d:cf:11: 1f:e8:5d:7a:c0:96:2e:31:8f:c0:00:f4:7f:b3:2a: 94:32:08:cb:b3:57:62:bd:63:3b:9c:4e:22:82:60: 47:30:ab:64:23:73:aa:b9:cf:b2:27:f5:2e:0e:30: f9:17:5a:83:6f:de:63:f4:60:57:a8:d9:11:38:e1: 90:ef:9a:61:93:04:a4:96:0d:e9:5f:8d:75:85:f3: 62:7c:c9:39:4e:47:ef:15:40:5f:66:07:ae:63:01: aa:f5:2d:bf:ae:c3:17:74:db:8a:c3:eb:24:70:de: 0f:cb:17:d3:d9:18:78:76:b5:74:be:8a:d5:b1:7c: 5c:c7:97:91:d7:e9:77:16:09:9a:08:36:88:4b:69: aa:93:42:3d:54:94:38:23:fe:fe:6a:04:e8:48:6b: e7:6d:dd:a4:2e:53:ee:ae:ee:93:0c:a4:2b:db:e5: 7d:69:8d:e6:32:2f:03:0e:bb:30:3f:27:16:cb:04: c7:d4:33:a5:8f:55:c9:4f:66:30:d1:8e:b8:83:31: 31:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2D:72:47:63:7E:D3:8D:CE:89:99:0B:E4:E4:B9:CC:87:56:DE:28 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/3i1yR2N-043OiZkL5OS5zIdW3ig.roa sbgp-ipAddrBlock: critical IPv4: 157.65.32.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:96:ad:ee:b1:e4:e2:9a:da:76:95:36:18:6a:08:8a:cf:84: 46:10:36:ad:cf:45:12:ea:e3:f2:5d:9c:bb:ec:86:ea:c5:15: df:10:e0:10:6b:91:c9:3b:ed:20:c3:c8:55:f4:3f:2b:4e:9a: 69:67:a2:82:99:b5:3c:75:38:8c:11:31:ca:9c:8f:7f:07:bd: 9f:63:0c:59:9b:7a:33:d8:27:19:fe:ef:06:5b:87:f4:cb:25: 3e:f1:47:48:85:e7:00:32:e1:6e:de:66:4f:ec:04:43:f9:a3: ba:49:6d:8f:eb:a0:29:ee:5c:b5:1e:01:84:fb:78:b0:88:dc: 36:b8:0a:84:ac:d4:9f:02:37:1d:00:56:e8:b8:f2:fd:9f:66: 3a:31:ad:4f:c6:23:50:6d:b7:74:dd:e4:00:22:22:db:31:70: a1:8b:f1:c5:5f:93:50:36:5f:89:3a:55:59:45:71:ae:42:41: 47:fb:9a:c1:8c:7e:56:9b:a8:a3:23:4c:0b:89:e8:bd:5b:d4: 34:02:e4:f2:cc:aa:0e:fd:7f:78:ae:75:4a:77:a0:d8:e1:cb: 41:d9:fa:72:64:9b:f8:5c:ec:ab:ee:00:ef:ea:63:86:c5:2b: b9:83:03:40:38:5a:30:e7:5f:a7:c9:8d:be:78:92:0a:9c:9f: 33:b3:73:59 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICASEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERFMkQ3MjQ3NjM3RUQz OERDRTg5OTkwQkU0RTRCOUNDODc1NkRFMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxVU1D4UXaADh0TP4ms/YQjzyC7vCcsZp5TTofuJyL6TS4Uf6K HJ8lT60gb3/Qd0lJJG7/TZd9Ui3PER/oXXrAli4xj8AA9H+zKpQyCMuzV2K9Yzuc TiKCYEcwq2Qjc6q5z7In9S4OMPkXWoNv3mP0YFeo2RE44ZDvmmGTBKSWDelfjXWF 82J8yTlOR+8VQF9mB65jAar1Lb+uwxd024rD6yRw3g/LF9PZGHh2tXS+itWxfFzH l5HX6XcWCZoINohLaaqTQj1UlDgj/v5qBOhIa+dt3aQuU+6u7pMMpCvb5X1pjeYy LwMOuzA/JxbLBMfUM6WPVclPZjDRjriDMTH/AgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQU3i1yR2N+043OiZkL5OS5zIdW3igwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS8zaTF5UjJOLTA0M09pWmtMNU9TNXpJZFczaWcucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnUEgMA0GCSqGSIb3DQEBCwUAA4IBAQBK lq3useTimtp2lTYYagiKz4RGEDatz0US6uPyXZy77IbqxRXfEOAQa5HJO+0gw8hV 9D8rTpppZ6KCmbU8dTiMETHKnI9/B72fYwxZm3oz2CcZ/u8GW4f0yyU+8UdIhecA MuFu3mZP7ARD+aO6SW2P66Ap7ly1HgGE+3iwiNw2uAqErNSfAjcdAFbouPL9n2Y6 Ma1PxiNQbbd03eQAIiLbMXChi/HFX5NQNl+JOlVZRXGuQkFH+5rBjH5Wm6ijI0wL iei9W9Q0AuTyzKoO/X94rnVKd6DY4ctB2fpyZJv4XOyr7gDv6mOGxSu5gwNAOFow 51+nyY2+eJIKnJ8zs3NZ -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:23 2026 by rpki-client