$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/ipCdNbR_kxlivLMsUo3vfGODb18.roa File: ipCdNbR_kxlivLMsUo3vfGODb18.roa (raw, json) Hash identifier: JhHGOtBiUrxTLZt4yE3cg9LcKtBSLxlbvOnjY1UWc/g= Subject key identifier: 8A:90:9D:35:B4:7F:93:19:62:BC:B3:2C:52:8D:EF:7C:63:83:6F:5F Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 0129 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/ipCdNbR_kxlivLMsUo3vfGODb18.roa Signing time: Tue 31 Mar 2026 08:17:29 +0000 ROA not before: Tue 31 Mar 2026 08:17:29 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.232.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:29 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8A909D35B47F931962BCB32C528DEF7C63836F5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5b:77:3e:61:34:4c:ee:d3:f3:74:fe:db:dd: 50:ba:82:ed:1a:52:cc:f3:5d:73:6e:21:f2:d3:bb: 4f:ce:a7:04:e0:f9:a2:b8:f8:ef:9f:b8:dc:5e:5d: fa:15:4e:1b:2e:53:99:ec:bb:5c:08:5f:19:5a:b3: 31:c7:34:28:8d:41:21:c4:e9:79:c5:bb:b2:49:9a: 17:40:76:41:45:a8:7d:02:88:36:60:26:b3:65:86: ec:3d:03:96:83:80:1f:f0:3e:07:82:2f:dd:00:fc: 3f:b4:d1:f1:41:3f:02:e4:4c:00:bb:3b:01:e9:0f: d1:57:09:af:a2:26:03:b5:c5:2b:49:45:f0:8b:20: 81:ef:6d:94:06:8c:17:b9:90:8c:34:b1:52:d5:60: 2a:86:25:f5:de:45:79:f4:d5:06:f8:fe:4c:17:35: 55:07:3c:8b:6e:1b:a7:93:3b:a2:18:f0:f2:d3:7a: 61:be:a9:c9:9d:fc:c6:ed:ac:0b:c6:e9:a8:3d:8c: 97:74:0c:6f:7f:70:7b:b1:87:f9:59:50:73:b2:13: 74:e3:20:06:5a:f2:02:1b:18:d2:4e:96:e6:e6:a9: fc:f4:9c:f6:13:85:59:fe:a2:22:2f:f4:66:4b:ed: 21:59:99:e7:13:f9:41:fa:c7:5e:a6:e6:2b:b4:e2: 92:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:90:9D:35:B4:7F:93:19:62:BC:B3:2C:52:8D:EF:7C:63:83:6F:5F X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/ipCdNbR_kxlivLMsUo3vfGODb18.roa sbgp-ipAddrBlock: critical IPv4: 160.248.232.0/22 Signature Algorithm: sha256WithRSAEncryption 64:8b:3c:af:eb:f5:b0:e9:08:3f:22:5a:c3:30:33:22:b6:15: ad:38:d6:9a:bf:ec:e2:7d:4b:a7:e9:1d:c9:73:b7:3a:7a:79: 6f:c6:71:36:c8:bc:52:39:b3:89:6b:bf:a4:41:56:83:ab:92: 78:c5:f6:f2:00:06:ce:4a:34:c8:9e:c7:ff:12:78:88:91:7e: 96:a1:63:81:40:95:de:c7:11:5c:c9:78:07:3a:24:18:2d:07: 7f:71:d6:0a:e7:b1:98:b6:33:ff:74:2f:d8:6a:52:81:5f:5c: fc:a1:eb:78:92:03:6a:c5:69:77:50:ba:df:e9:7f:08:4c:bc: ad:90:4f:73:ae:35:92:d9:6c:11:cc:42:93:c3:36:ab:ee:60: c2:dd:38:73:4a:d0:a6:fc:67:dc:90:70:66:68:a9:b6:f7:fb: 1e:fb:1a:37:a8:c5:8a:a2:19:3b:f2:94:b0:31:27:92:07:6a: d2:51:ca:2a:7a:55:e3:97:6c:b5:ad:6b:cb:69:15:13:33:c4: 90:f6:44:09:cd:a8:1e:e3:20:45:40:b7:44:ef:c6:9c:4e:68: 56:ec:50:ad:cb:fa:96:d3:5b:26:7c:e4:9c:8a:a8:6d:25:46: d7:a6:f8:f1:e0:94:6c:c2:1c:e6:8d:fa:d2:1d:3b:d1:66:71: 29:64:d0:5b -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICASkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MjlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhBOTA5RDM1QjQ3Rjkz MTk2MkJDQjMyQzUyOERFRjdDNjM4MzZGNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtW3c+YTRM7tPzdP7b3VC6gu0aUszzXXNuIfLTu0/OpwTg+aK4 +O+fuNxeXfoVThsuU5nsu1wIXxlaszHHNCiNQSHE6XnFu7JJmhdAdkFFqH0CiDZg JrNlhuw9A5aDgB/wPgeCL90A/D+00fFBPwLkTAC7OwHpD9FXCa+iJgO1xStJRfCL IIHvbZQGjBe5kIw0sVLVYCqGJfXeRXn01Qb4/kwXNVUHPItuG6eTO6IY8PLTemG+ qcmd/MbtrAvG6ag9jJd0DG9/cHuxh/lZUHOyE3TjIAZa8gIbGNJOlubmqfz0nPYT hVn+oiIv9GZL7SFZmecT+UH6x16m5iu04pKTAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUipCdNbR/kxlivLMsUo3vfGODb18wHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9pcENkTmJSX2t4bGl2TE1zVW8zdmZHT0RiMTgucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCoPjoMA0GCSqGSIb3DQEBCwUAA4IBAQBk izyv6/Ww6Qg/IlrDMDMithWtONaav+zifUun6R3Jc7c6enlvxnE2yLxSObOJa7+k QVaDq5J4xfbyAAbOSjTInsf/EniIkX6WoWOBQJXexxFcyXgHOiQYLQd/cdYK57GY tjP/dC/YalKBX1z8oet4kgNqxWl3ULrf6X8ITLytkE9zrjWS2WwRzEKTwzar7mDC 3ThzStCm/GfckHBmaKm29/se+xo3qMWKohk78pSwMSeSB2rSUcoqelXjl2y1rWvL aRUTM8SQ9kQJzage4yBFQLdE78acTmhW7FCty/qW01smfOSciqhtJUbXpvjx4JRs whzmjfrSHTvRZnEpZNBb -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:24 2026 by rpki-client