$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/4591FKnltqlV9A256xbVVLJ0dB0.roa File: 4591FKnltqlV9A256xbVVLJ0dB0.roa (raw, json) Hash identifier: He/5eZ2l9BBou0bvkPB9bDRUxRmLSC2t5irUaqfD8Yc= Subject key identifier: E3:9F:75:14:A9:E5:B6:A9:55:F4:0D:B9:EB:16:D5:54:B2:74:74:1D Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 010C Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4591FKnltqlV9A256xbVVLJ0dB0.roa Signing time: Tue 31 Mar 2026 08:17:16 +0000 ROA not before: Tue 31 Mar 2026 08:17:16 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:16 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E39F7514A9E5B6A955F40DB9EB16D554B274741D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:89:7a:31:5c:25:f0:86:00:38:28:47:c8:c7: 55:0d:ee:4f:9d:44:8e:4e:53:55:85:52:31:5a:01: 6a:bb:e2:dd:3f:97:a4:b4:36:59:06:c5:18:b5:a6: 37:a8:93:d4:cf:6e:b9:1c:b5:31:2d:30:99:48:6d: 24:26:ba:ec:4c:ac:e9:e2:49:3c:ca:7d:f2:5d:8c: c4:07:5e:5d:ba:ad:8f:a2:f6:dc:ee:9a:28:04:0d: ea:3d:6d:b8:eb:43:2b:95:ab:ca:b3:7c:33:2c:4d: 60:5e:97:4c:53:02:28:57:33:1c:94:a2:78:9f:a2: 38:dc:b7:b5:ec:af:3e:64:a2:b0:c8:1e:46:4a:26: fe:ef:e2:fc:93:34:bd:da:0c:9f:80:6f:30:9a:dc: 3d:97:a8:d0:49:dc:b9:52:37:84:02:fa:79:d6:ab: 1e:b9:4c:ae:4d:01:0c:fa:cc:e8:36:5d:c2:a4:78: 40:43:4c:ae:3a:17:27:a9:af:d4:67:f9:81:63:cf: 38:e8:9c:16:91:ac:3e:18:bb:89:c4:12:ef:6d:48: 5d:c4:3c:e2:08:08:3a:df:8c:58:b5:af:ac:6c:75: 69:de:ab:31:db:80:0e:32:f2:b7:9a:1f:ee:47:a3: 00:33:b8:9b:4f:b5:66:7e:e3:96:89:1b:11:4d:8f: a4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:9F:75:14:A9:E5:B6:A9:55:F4:0D:B9:EB:16:D5:54:B2:74:74:1D X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4591FKnltqlV9A256xbVVLJ0dB0.roa sbgp-ipAddrBlock: critical IPv4: 160.248.128.0/19 Signature Algorithm: sha256WithRSAEncryption bb:04:f2:46:2c:3a:48:93:c2:88:7b:da:1d:c6:ac:b5:fe:b6: 76:85:17:92:f3:54:59:5b:fc:f9:44:3d:bb:22:11:70:ae:8b: 39:29:ef:77:1d:8f:14:df:79:60:97:ee:61:a3:41:f4:cc:0f: b1:ed:9b:13:b5:cd:5e:57:fb:f9:e2:0c:77:d8:f7:0b:53:9e: b4:93:28:bb:5e:95:c2:23:4a:07:02:7d:d9:29:59:ae:3e:cb: 2f:0d:cc:06:c1:60:03:5f:5e:1e:0c:54:45:0a:4a:32:be:b8: ea:1f:bd:45:18:ca:6f:ba:61:09:0c:bc:d3:20:86:33:e4:ba: 2e:58:19:36:da:74:00:3e:30:a5:71:9d:c9:70:e7:d9:05:6c: 47:50:ea:55:c4:54:27:80:6d:21:0d:59:15:31:cb:2d:3a:cf: 70:17:21:33:ac:50:b0:ad:0c:3c:a8:8f:e8:56:4c:52:af:2a: 75:43:9e:be:0f:3d:3b:fd:30:40:4e:9d:46:36:2f:6a:82:69: 56:78:1f:f9:ab:69:67:49:39:63:8d:6b:3c:b5:40:67:26:c7: 7f:56:88:14:04:92:12:9a:3c:5d:7d:34:21:2d:f8:1c:b3:d9: 72:75:89:93:7c:41:19:ad:25:69:7e:b1:68:5c:23:56:6a:b0: 0c:0b:96:f8 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUzOUY3NTE0QTlFNUI2 QTk1NUY0MERCOUVCMTZENTU0QjI3NDc0MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSiXoxXCXwhgA4KEfIx1UN7k+dRI5OU1WFUjFaAWq74t0/l6S0 NlkGxRi1pjeok9TPbrkctTEtMJlIbSQmuuxMrOniSTzKffJdjMQHXl26rY+i9tzu migEDeo9bbjrQyuVq8qzfDMsTWBel0xTAihXMxyUonifojjct7Xsrz5korDIHkZK Jv7v4vyTNL3aDJ+AbzCa3D2XqNBJ3LlSN4QC+nnWqx65TK5NAQz6zOg2XcKkeEBD TK46Fyepr9Rn+YFjzzjonBaRrD4Yu4nEEu9tSF3EPOIICDrfjFi1r6xsdWneqzHb gA4y8reaH+5HowAzuJtPtWZ+45aJGxFNj6SjAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQU4591FKnltqlV9A256xbVVLJ0dB0wHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS80NTkxRktubHRxbFY5QTI1NnhiVlZMSjBkQjAucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFoPiAMA0GCSqGSIb3DQEBCwUAA4IBAQC7 BPJGLDpIk8KIe9odxqy1/rZ2hReS81RZW/z5RD27IhFwros5Ke93HY8U33lgl+5h o0H0zA+x7ZsTtc1eV/v54gx32PcLU560kyi7XpXCI0oHAn3ZKVmuPssvDcwGwWAD X14eDFRFCkoyvrjqH71FGMpvumEJDLzTIIYz5LouWBk22nQAPjClcZ3JcOfZBWxH UOpVxFQngG0hDVkVMcstOs9wFyEzrFCwrQw8qI/oVkxSryp1Q56+Dz07/TBATp1G Ni9qgmlWeB/5q2lnSTljjWs8tUBnJsd/VogUBJISmjxdfTQhLfgcs9lydYmTfEEZ rSVpfrFoXCNWarAMC5b4 -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:27 2026 by rpki-client