$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30001/duTgXDASpaxC8pv0_9FPJw4MeLI.roa File: duTgXDASpaxC8pv0_9FPJw4MeLI.roa (raw, json) Hash identifier: Olb+2ruSk8BDhDzpFe7zIxaZZzEpaClEq4gEqGXAh7M= Subject key identifier: 76:E4:E0:5C:30:12:A5:AC:42:F2:9B:F4:FF:D1:4F:27:0E:0C:78:B2 Certificate issuer: /CN=D7FF1377DB901B1695A7AEF05DDDE1885E6AD8C6 Certificate serial: 0D Authority key identifier: D7:FF:13:77:DB:90:1B:16:95:A7:AE:F0:5D:DD:E1:88:5E:6A:D8:C6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1_8Td9uQGxaVp67wXd3hiF5q2MY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30001/duTgXDASpaxC8pv0_9FPJw4MeLI.roa Signing time: Tue 31 Mar 2026 08:46:45 +0000 ROA not before: Tue 31 Mar 2026 08:46:45 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4675 IP address blocks: 2001:338::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30001/1_8Td9uQGxaVp67wXd3hiF5q2MY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30001/1_8Td9uQGxaVp67wXd3hiF5q2MY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1_8Td9uQGxaVp67wXd3hiF5q2MY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 14:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7FF1377DB901B1695A7AEF05DDDE1885E6AD8C6 Validity Not Before: Mar 31 08:46:45 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=76E4E05C3012A5AC42F29BF4FFD14F270E0C78B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:80:e5:b6:d7:29:77:2a:c6:8e:ac:47:10:77: a1:37:38:13:e2:d8:f0:15:d2:74:c1:61:b5:f4:03: b7:ec:b6:34:1c:a9:be:d3:a1:2d:f2:48:00:52:a8: 8b:bb:62:a0:a5:3e:04:94:ed:a5:2b:e8:77:ce:6c: e8:1a:dc:ee:93:26:eb:4e:48:b6:63:6e:42:c0:d3: 5c:61:6b:b5:35:f9:03:39:c2:bb:f2:d5:9e:92:10: a1:02:27:00:bf:31:52:b8:ce:dc:9c:14:c8:8c:0d: 63:9f:d0:78:ba:f8:96:18:d0:79:88:d7:c3:c2:a2: 71:b3:5b:a7:6b:ab:1a:03:dd:ac:ba:6a:ed:36:95: 59:70:bb:db:3d:37:5c:45:dc:4d:ec:9d:99:2d:87: af:9b:42:36:2c:c3:32:7a:04:76:f3:5e:87:ac:23: da:67:0c:d7:45:05:9d:d3:30:b9:53:c0:40:8d:0e: 44:c0:29:b2:83:e3:35:96:51:5d:9f:d9:cb:bc:79: ed:26:83:49:db:17:e1:94:99:9d:39:37:41:2f:d9: 9c:62:d7:7f:c1:8b:0f:a4:c4:4c:e0:56:8f:57:e3: 74:96:5a:2d:fc:f8:fc:f5:37:57:81:e4:1e:b8:72: 8f:18:db:1e:cd:84:20:af:e1:3b:6f:02:d9:6e:ae: 8a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E4:E0:5C:30:12:A5:AC:42:F2:9B:F4:FF:D1:4F:27:0E:0C:78:B2 X509v3 Authority Key Identifier: keyid:D7:FF:13:77:DB:90:1B:16:95:A7:AE:F0:5D:DD:E1:88:5E:6A:D8:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30001/1_8Td9uQGxaVp67wXd3hiF5q2MY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1_8Td9uQGxaVp67wXd3hiF5q2MY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30001/duTgXDASpaxC8pv0_9FPJw4MeLI.roa sbgp-ipAddrBlock: critical IPv6: 2001:338::/32 Signature Algorithm: sha256WithRSAEncryption be:e2:d9:13:e4:83:7a:5d:8a:90:a9:97:cf:e3:e5:bc:03:07: 36:49:82:52:45:37:a3:48:7b:b6:fb:fb:12:9d:ae:47:eb:57: 5d:21:01:26:f2:6e:d0:53:12:11:07:8a:ed:23:e1:f8:a5:46: 6c:91:64:5c:10:dd:05:a8:3b:84:83:60:4f:28:34:60:40:55: ce:6e:93:d0:b1:7d:68:1a:23:42:7c:06:74:81:a3:ae:51:20: 7a:13:c4:22:cf:3b:fe:8e:97:37:2b:e1:31:1a:73:56:b3:b7: 21:c6:40:5e:54:c1:e3:ed:f1:75:56:a7:e8:c9:2a:b0:f7:94: 58:12:05:c6:9a:19:ba:98:2c:6d:60:8b:da:06:ca:90:a0:a1: 2f:22:1a:a2:b3:4e:11:2e:7b:ca:c7:8f:2d:cc:0c:e9:37:d2: fe:76:a8:86:80:f8:e7:2d:ce:7e:f2:d2:9d:54:ac:90:f5:af: 06:35:70:22:5c:a7:d5:49:e7:02:5a:c6:32:a2:7e:23:c6:7a: a7:9c:0f:b9:97:5c:a7:62:f3:e5:2f:d1:e2:28:a4:5f:62:8f: 6d:68:33:de:c8:d0:cf:a5:60:97:06:b5:37:01:ef:a7:d6:a6: b6:64:a6:fa:13:3f:1e:d0:1d:96:28:fd:e9:e9:41:82:8b:ba: 92:6f:d7:5d -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEN0ZG MTM3N0RCOTAxQjE2OTVBN0FFRjA1RERERTE4ODVFNkFEOEM2MB4XDTI2MDMzMTA4 NDY0NVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNzZFNEUwNUMzMDEyQTVB QzQyRjI5QkY0RkZEMTRGMjcwRTBDNzhCMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPyA5bbXKXcqxo6sRxB3oTc4E+LY8BXSdMFhtfQDt+y2NBypvtOh LfJIAFKoi7tioKU+BJTtpSvod85s6Brc7pMm605ItmNuQsDTXGFrtTX5AznCu/LV npIQoQInAL8xUrjO3JwUyIwNY5/QeLr4lhjQeYjXw8KicbNbp2urGgPdrLpq7TaV WXC72z03XEXcTeydmS2Hr5tCNizDMnoEdvNeh6wj2mcM10UFndMwuVPAQI0ORMAp soPjNZZRXZ/Zy7x57SaDSdsX4ZSZnTk3QS/ZnGLXf8GLD6TETOBWj1fjdJZaLfz4 /PU3V4HkHrhyjxjbHs2EIK/hO28C2W6uipsCAwEAAaOCAd4wggHaMB0GA1UdDgQW BBR25OBcMBKlrELym/T/0U8nDgx4sjAfBgNVHSMEGDAWgBTX/xN325AbFpWnrvBd 3eGIXmrYxjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwMDEvMV84VGQ5dVFHeGFWcDY3d1hkM2hpRjVxMk1ZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMV84VGQ5dVFHeGFWcDY3d1hkM2hp RjVxMk1ZLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMwMDAxL2R1VGdYREFTcGF4QzhwdjBfOUZQSnc0TWVMSS5yb2Ew IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAQM4MA0GCSqGSIb3DQEBCwUA A4IBAQC+4tkT5IN6XYqQqZfP4+W8Awc2SYJSRTejSHu2+/sSna5H61ddIQEm8m7Q UxIRB4rtI+H4pUZskWRcEN0FqDuEg2BPKDRgQFXObpPQsX1oGiNCfAZ0gaOuUSB6 E8Qizzv+jpc3K+ExGnNWs7chxkBeVMHj7fF1VqfoySqw95RYEgXGmhm6mCxtYIva BsqQoKEvIhqis04RLnvKx48tzAzpN9L+dqiGgPjnLc5+8tKdVKyQ9a8GNXAiXKfV SecCWsYyon4jxnqnnA+5l1ynYvPlL9HiKKRfYo9taDPeyNDPpWCXBrU3Ae+n1qa2 ZKb6Ez8e0B2WKP3p6UGCi7qSb9dd -----END CERTIFICATE-----Generated at Fri Apr 17 17:11:55 2026 by rpki-client