$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/682dA3li-dVKcHzS8PuJTGZNWFQ.roa File: 682dA3li-dVKcHzS8PuJTGZNWFQ.roa (raw, json) Hash identifier: G3qSQBujX7td6IvKfRwPd9EMKUHVa7cZUQen/o80Y7c= Subject key identifier: EB:CD:9D:03:79:62:F9:D5:4A:70:7C:D2:F0:FB:89:4C:66:4D:58:54 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 0123 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/682dA3li-dVKcHzS8PuJTGZNWFQ.roa Signing time: Tue 31 Mar 2026 08:17:26 +0000 ROA not before: Tue 31 Mar 2026 08:17:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 157.65.128.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=EBCD9D037962F9D54A707CD2F0FB894C664D5854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2f:e6:92:af:f1:04:b4:88:36:ed:08:0b:62: fa:81:8e:87:99:c8:43:7c:3c:c7:eb:0b:0e:ca:75: 72:82:d3:3b:f3:fd:3c:ed:d5:3d:1b:31:1b:49:0b: e0:da:e4:9d:6c:c5:f9:7a:c7:a1:b5:ad:8d:5a:13: 1c:3d:1f:5d:3e:19:2c:ac:5c:08:74:f0:04:c7:55: 21:53:c9:1f:59:01:14:6b:cf:f7:79:db:fd:77:bc: 35:95:e5:73:8d:24:4a:cc:f9:d1:61:f6:f8:e7:e4: 67:53:ec:f7:82:e2:5c:17:0a:c6:09:2c:b1:d2:1c: f0:be:81:15:29:39:e4:a6:81:20:04:59:dd:a4:d9: 31:72:ce:76:28:7e:c3:2f:2e:43:9b:16:35:27:6a: ac:5a:6d:05:b4:ec:2e:26:cc:52:f4:cb:52:0e:bd: e4:c1:a1:af:fb:6e:d5:42:fc:c8:7e:c1:79:b3:e6: d1:e3:5a:f6:5e:6a:e1:49:f3:51:30:cf:f8:c4:15: 0f:0b:14:67:e4:1b:73:31:06:60:15:05:50:c1:b5: 1c:b9:c3:cc:f3:fe:3b:a1:c6:25:b8:2d:0e:8a:21: 20:3f:d2:3c:c2:5f:f4:bb:8e:7c:4a:a0:1c:53:e5: d3:e2:c6:c8:fd:72:fa:bb:f8:53:9a:c7:8c:14:f0: a3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:CD:9D:03:79:62:F9:D5:4A:70:7C:D2:F0:FB:89:4C:66:4D:58:54 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/682dA3li-dVKcHzS8PuJTGZNWFQ.roa sbgp-ipAddrBlock: critical IPv4: 157.65.128.0/19 Signature Algorithm: sha256WithRSAEncryption 7d:1c:c3:c2:08:e6:ea:3e:32:c7:92:37:64:77:7b:06:83:b4: fe:d0:26:20:07:29:75:a1:4a:20:89:a5:a1:05:cb:9f:5d:0e: 36:68:a9:22:4e:99:4e:3e:ee:0c:e7:1f:ae:82:55:1a:fd:b6: 75:60:72:c1:f2:c5:63:12:d7:50:85:27:d0:bb:2a:cd:b2:a0: 5d:8e:0e:bc:4c:7b:c3:55:3f:4d:91:24:e8:8c:eb:d6:83:9f: f7:a7:b3:4b:fd:2e:a9:9c:d2:ef:48:f9:50:c5:93:86:17:75: 1a:22:4d:e2:e6:da:eb:93:d2:d8:fe:05:b7:c1:80:c1:6f:4a: 02:2f:47:f1:64:fd:8d:76:53:2e:99:e8:b0:6d:2c:c7:be:89: 70:d3:e7:80:33:7f:b4:e8:1f:c9:84:da:84:96:2c:59:6a:36: 48:d7:45:d7:b8:1b:6a:83:33:56:ae:89:d5:c1:83:f0:3c:ed: 6c:e8:6e:f0:a6:5d:c7:50:59:ca:39:fa:47:fd:99:5e:57:91: 88:35:c5:9a:08:89:7c:b6:1f:2c:30:bf:1b:44:ad:92:5a:ea: 6d:20:2b:64:b2:ef:4a:66:38:32:57:f5:f1:6e:5d:a1:a9:11: 1c:ac:ec:8d:35:f8:d0:65:63:01:9a:f5:11:17:c9:1e:ec:00: 0d:09:60:2d -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICASMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MjZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVCQ0Q5RDAzNzk2MkY5 RDU0QTcwN0NEMkYwRkI4OTRDNjY0RDU4NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9L+aSr/EEtIg27QgLYvqBjoeZyEN8PMfrCw7KdXKC0zvz/Tzt 1T0bMRtJC+Da5J1sxfl6x6G1rY1aExw9H10+GSysXAh08ATHVSFTyR9ZARRrz/d5 2/13vDWV5XONJErM+dFh9vjn5GdT7PeC4lwXCsYJLLHSHPC+gRUpOeSmgSAEWd2k 2TFyznYofsMvLkObFjUnaqxabQW07C4mzFL0y1IOveTBoa/7btVC/Mh+wXmz5tHj WvZeauFJ81Ewz/jEFQ8LFGfkG3MxBmAVBVDBtRy5w8zz/juhxiW4LQ6KISA/0jzC X/S7jnxKoBxT5dPixsj9cvq7+FOax4wU8KNNAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQU682dA3li+dVKcHzS8PuJTGZNWFQwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS82ODJkQTNsaS1kVktjSHpTOFB1SlRHWk5XRlEucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnUGAMA0GCSqGSIb3DQEBCwUAA4IBAQB9 HMPCCObqPjLHkjdkd3sGg7T+0CYgByl1oUogiaWhBcufXQ42aKkiTplOPu4M5x+u glUa/bZ1YHLB8sVjEtdQhSfQuyrNsqBdjg68THvDVT9NkSTojOvWg5/3p7NL/S6p nNLvSPlQxZOGF3UaIk3i5trrk9LY/gW3wYDBb0oCL0fxZP2NdlMumeiwbSzHvolw 0+eAM3+06B/JhNqElixZajZI10XXuBtqgzNWronVwYPwPO1s6G7wpl3HUFnKOfpH /ZleV5GINcWaCIl8th8sML8bRK2SWuptICtksu9KZjgyV/Xxbl2hqREcrOyNNfjQ ZWMBmvURF8ke7AANCWAt -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:25 2026 by rpki-client