$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/xjBu4vMlGUGY9Ar0AaZQItm1hKs.roa File: xjBu4vMlGUGY9Ar0AaZQItm1hKs.roa (raw, json) Hash identifier: WDn+BDOHibcJJdhhwGPDqYhQltYkrqGcjTZFaRf3L4c= Subject key identifier: C6:30:6E:E2:F3:25:19:41:98:F4:0A:F4:01:A6:50:22:D9:B5:84:AB Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 0125 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/xjBu4vMlGUGY9Ar0AaZQItm1hKs.roa Signing time: Tue 31 Mar 2026 08:17:27 +0000 ROA not before: Tue 31 Mar 2026 08:17:27 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:27 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C6306EE2F325194198F40AF401A65022D9B584AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f4:7c:a5:11:9c:b9:da:1d:60:6e:fd:51:de: 86:0a:2c:a1:4b:cb:97:ab:35:96:fd:4b:3a:1a:28: f9:83:f3:cc:5a:d1:21:86:0d:c6:34:74:6f:ac:4f: a1:1b:67:9a:19:50:1c:f1:0a:44:51:c2:f5:9b:9e: 85:c3:ec:91:ea:a3:04:cd:71:6a:f1:31:86:dd:ca: 0c:9e:5c:c0:26:0b:72:ed:46:d5:78:19:82:fa:9c: bd:73:8f:c4:ce:45:0b:83:01:66:58:ea:c2:b5:e6: a8:2f:1c:a3:6f:ff:84:70:99:9b:e1:cb:b9:7b:4c: ca:46:90:14:a1:86:82:5f:0a:d9:45:2e:2f:23:09: 97:80:d6:fe:79:fc:5b:99:db:47:d2:27:0f:e0:27: 88:1c:e7:7e:39:53:c2:27:10:35:1e:aa:17:0e:16: 02:b8:8b:dd:56:ca:45:34:0c:d0:4c:ac:13:5d:ce: c5:08:62:d4:5e:06:52:90:03:5b:04:c5:9f:a7:39: b8:0c:5e:29:b2:f9:9d:f7:74:db:a1:b3:6f:4e:e7: ec:32:7c:74:88:f5:e4:21:d5:d5:a7:00:e9:25:be: 65:71:e5:87:7c:3c:ad:bd:f7:fe:11:76:66:76:b3: 50:37:1a:90:c9:c8:e5:cb:1f:b8:c4:eb:96:11:89: 88:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:30:6E:E2:F3:25:19:41:98:F4:0A:F4:01:A6:50:22:D9:B5:84:AB X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/xjBu4vMlGUGY9Ar0AaZQItm1hKs.roa sbgp-ipAddrBlock: critical IPv4: 160.248.128.0/19 Signature Algorithm: sha256WithRSAEncryption a4:0e:15:6b:d9:8f:cf:a8:65:88:17:2e:8a:4f:54:40:34:db: 85:c7:c0:f7:47:83:8b:41:13:d5:26:07:a2:d6:c7:c3:59:32: 3d:00:ee:e6:97:55:35:d2:94:0f:33:1c:9d:bf:06:b6:29:44: c8:d4:d1:ce:45:ef:c1:0a:8c:13:6a:63:7c:14:87:6b:97:4c: aa:6f:9c:e8:99:ea:48:12:a9:fc:f4:91:8b:85:7f:3d:48:52: 62:7d:7b:f7:0f:85:39:f2:97:d8:6c:54:39:a0:c2:d2:a3:d9: bd:4a:09:af:41:be:a3:ba:e8:c8:8a:ce:00:d7:ba:e2:5c:a4: 4f:90:71:ec:02:eb:26:a4:2a:e6:90:88:c8:7e:fc:41:ed:13: 49:4b:49:2e:fd:ff:85:c9:73:16:a3:f1:e4:36:b4:c4:ad:12: 76:f4:ef:40:d1:66:3f:98:40:57:01:9f:5d:3a:3a:20:60:d5: 0f:e4:c8:f0:f7:d0:5c:61:e3:41:fb:52:5a:b1:a2:4a:11:dc: fa:dd:78:31:83:21:52:73:7a:f4:ee:98:69:28:ba:81:ca:ec: 3c:4a:de:5f:af:33:9d:ad:27:59:10:eb:25:98:9b:12:88:2f: 34:af:c6:8b:1a:67:b2:3c:75:f9:c5:74:40:a4:39:6c:a0:b2: 77:f4:75:90 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MjdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM2MzA2RUUyRjMyNTE5 NDE5OEY0MEFGNDAxQTY1MDIyRDlCNTg0QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC09HylEZy52h1gbv1R3oYKLKFLy5erNZb9SzoaKPmD88xa0SGG DcY0dG+sT6EbZ5oZUBzxCkRRwvWbnoXD7JHqowTNcWrxMYbdygyeXMAmC3LtRtV4 GYL6nL1zj8TORQuDAWZY6sK15qgvHKNv/4RwmZvhy7l7TMpGkBShhoJfCtlFLi8j CZeA1v55/FuZ20fSJw/gJ4gc5345U8InEDUeqhcOFgK4i91WykU0DNBMrBNdzsUI YtReBlKQA1sExZ+nObgMXimy+Z33dNuhs29O5+wyfHSI9eQh1dWnAOklvmVx5Yd8 PK299/4RdmZ2s1A3GpDJyOXLH7jE65YRiYhlAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUxjBu4vMlGUGY9Ar0AaZQItm1hKswHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS94akJ1NHZNbEdVR1k5QXIwQWFaUUl0bTFoS3Mucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFoPiAMA0GCSqGSIb3DQEBCwUAA4IBAQCk DhVr2Y/PqGWIFy6KT1RANNuFx8D3R4OLQRPVJgei1sfDWTI9AO7ml1U10pQPMxyd vwa2KUTI1NHORe/BCowTamN8FIdrl0yqb5zomepIEqn89JGLhX89SFJifXv3D4U5 8pfYbFQ5oMLSo9m9SgmvQb6juujIis4A17riXKRPkHHsAusmpCrmkIjIfvxB7RNJ S0ku/f+FyXMWo/HkNrTErRJ29O9A0WY/mEBXAZ9dOjogYNUP5Mjw99BcYeNB+1Ja saJKEdz63XgxgyFSc3r07phpKLqByuw8St5frzOdrSdZEOslmJsSiC80r8aLGmey PHX5xXRApDlsoLJ39HWQ -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:21 2026 by rpki-client