$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/Z4iVgUeennRkP0fsgxiUvLeY4-Q.roa File: Z4iVgUeennRkP0fsgxiUvLeY4-Q.roa (raw, json) Hash identifier: lUmOnamYmrPLeKzYAs6VWIrAGJ69XbUOTmEPH3zM1II= Subject key identifier: 67:88:95:81:47:9E:9E:74:64:3F:47:EC:83:18:94:BC:B7:98:E3:E4 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 0128 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Z4iVgUeennRkP0fsgxiUvLeY4-Q.roa Signing time: Tue 31 Mar 2026 08:17:28 +0000 ROA not before: Tue 31 Mar 2026 08:17:28 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.208.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:28 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=67889581479E9E74643F47EC831894BCB798E3E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cc:58:bf:4a:e5:68:d3:cc:27:af:f1:40:04: 71:86:ff:b1:26:a6:a5:8b:f3:72:83:c6:a0:d6:3e: c9:00:ed:f6:0c:49:2d:26:61:2c:b6:da:5f:c2:aa: 36:72:e1:93:55:8b:58:67:d5:c9:d4:68:de:f8:f5: 46:84:56:dc:79:35:dd:6c:1d:1c:3f:82:d3:cd:cf: 14:d4:38:59:61:01:89:77:2f:3c:46:4c:3b:f9:95: 44:1e:c2:c0:a0:70:4f:30:5f:99:93:65:8c:15:b3: 31:e0:5d:03:a4:ea:ba:85:c0:a6:e9:76:f1:6b:69: c3:92:ba:fc:42:a5:91:49:83:4a:af:fc:5e:27:17: 66:23:9c:08:ae:6a:e0:fc:d0:fc:3b:ef:ea:9b:a7: 3f:68:5c:3f:ad:cb:3f:81:46:02:8f:56:07:e9:d6: 2c:a1:5c:45:e5:f9:a9:82:3e:aa:ab:b9:21:d4:82: 2d:c4:f7:13:3b:54:14:2d:7b:44:06:12:1d:76:d4: ee:b4:49:e3:3f:e8:64:c8:6c:52:75:72:8c:db:6a: a4:db:72:02:77:a6:f9:6d:92:e6:1a:88:d2:ea:44: 04:9a:66:25:c3:cf:f6:0f:af:f1:31:da:7c:a9:3a: f0:3e:3e:46:39:36:e7:76:4a:72:84:28:83:f8:25: 06:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:88:95:81:47:9E:9E:74:64:3F:47:EC:83:18:94:BC:B7:98:E3:E4 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Z4iVgUeennRkP0fsgxiUvLeY4-Q.roa sbgp-ipAddrBlock: critical IPv4: 160.248.208.0/20 Signature Algorithm: sha256WithRSAEncryption 28:bb:f2:58:f1:90:d5:d6:4c:d2:61:95:bf:68:ae:1f:95:0f: c1:45:45:27:41:df:c4:71:d0:d9:10:50:5f:25:dd:83:7f:e8: e5:4f:da:c6:50:a0:4b:e5:44:b7:72:d4:9b:73:29:24:23:98: cb:f6:7d:8c:b3:5b:ab:bc:a9:ac:6c:04:42:cf:cf:7a:43:8e: 4c:bd:a3:af:9f:bb:c9:82:5d:b3:9d:f7:9d:73:ba:12:02:ef: a6:eb:8a:08:22:ab:85:65:72:f1:09:69:56:db:eb:9c:e9:c4: ff:8f:a7:a9:65:8e:5a:f6:ff:c7:20:32:d3:63:25:3d:c1:a4: cc:71:f0:8c:1b:30:0d:73:38:05:0a:af:ff:ae:e1:c1:dc:38: 61:a9:39:87:64:e1:2f:cb:72:c2:f4:ee:22:03:41:75:bc:9d: 77:6d:bb:5e:66:2e:90:e9:9c:e6:df:40:94:33:18:93:b6:b2: 81:bc:af:06:44:9e:65:8b:50:21:1d:9a:ae:ff:48:9b:42:e7: 97:bf:b5:47:73:7b:50:f7:77:12:b2:23:05:7e:8a:39:6f:c3: fc:2e:1c:5e:88:5f:43:3a:02:04:c1:4c:2c:af:8e:49:53:4d: 35:52:20:23:36:e3:2a:9b:5e:fb:68:93:23:01:68:36:83:75: 95:7a:6f:6b -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MjhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY3ODg5NTgxNDc5RTlF NzQ2NDNGNDdFQzgzMTg5NEJDQjc5OEUzRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlzFi/SuVo08wnr/FABHGG/7EmpqWL83KDxqDWPskA7fYMSS0m YSy22l/CqjZy4ZNVi1hn1cnUaN749UaEVtx5Nd1sHRw/gtPNzxTUOFlhAYl3LzxG TDv5lUQewsCgcE8wX5mTZYwVszHgXQOk6rqFwKbpdvFracOSuvxCpZFJg0qv/F4n F2YjnAiuauD80Pw77+qbpz9oXD+tyz+BRgKPVgfp1iyhXEXl+amCPqqruSHUgi3E 9xM7VBQte0QGEh121O60SeM/6GTIbFJ1cozbaqTbcgJ3pvltkuYaiNLqRASaZiXD z/YPr/Ex2nypOvA+PkY5Nud2SnKEKIP4JQa5AgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUZ4iVgUeennRkP0fsgxiUvLeY4+QwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9aNGlWZ1VlZW5uUmtQMGZzZ3hpVXZMZVk0LVEucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEoPjQMA0GCSqGSIb3DQEBCwUAA4IBAQAo u/JY8ZDV1kzSYZW/aK4flQ/BRUUnQd/EcdDZEFBfJd2Df+jlT9rGUKBL5US3ctSb cykkI5jL9n2Ms1urvKmsbARCz896Q45MvaOvn7vJgl2znfedc7oSAu+m64oIIquF ZXLxCWlW2+uc6cT/j6epZY5a9v/HIDLTYyU9waTMcfCMGzANczgFCq//ruHB3Dhh qTmHZOEvy3LC9O4iA0F1vJ13bbteZi6Q6Zzm30CUMxiTtrKBvK8GRJ5li1AhHZqu /0ibQueXv7VHc3tQ93cSsiMFfoo5b8P8LhxeiF9DOgIEwUwsr45JU001UiAjNuMq m177aJMjAWg2g3WVem9r -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:20 2026 by rpki-client