$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/CQnh16vx9TIKyCr70gj9XYlhNmc.roa File: CQnh16vx9TIKyCr70gj9XYlhNmc.roa (raw, json) Hash identifier: BuWf86oMMbLhpsrw/Zm2ERX+zDZtTGrJVU316wyffZA= Subject key identifier: 09:09:E1:D7:AB:F1:F5:32:0A:C8:2A:FB:D2:08:FD:5D:89:61:36:67 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 061A Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CQnh16vx9TIKyCr70gj9XYlhNmc.roa Signing time: Tue 31 Mar 2026 08:21:29 +0000 ROA not before: Tue 31 Mar 2026 08:21:29 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 203.181.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:21:29 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0909E1D7ABF1F5320AC82AFBD208FD5D89613667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:63:9b:3e:72:73:59:80:36:27:57:dd:3c:bd: 12:bf:65:d2:55:2a:12:55:5f:bd:c4:b9:b5:af:f0: fc:78:ea:97:8d:d1:8e:1d:21:6d:f5:e4:37:7c:31: c3:84:f6:54:49:8e:d6:ec:57:4e:b9:4e:9a:fc:be: 85:07:e4:33:38:ae:60:f8:81:9a:9e:53:a9:2f:ec: f9:88:d2:74:b9:a0:02:30:f0:41:3f:dc:d1:ff:6a: 08:3e:4f:d1:a4:b7:e8:fe:05:72:e1:65:cd:ed:a6: a1:4f:6a:2a:fb:e2:c5:98:06:0a:9b:2f:55:3b:1b: 89:7d:34:35:3a:aa:ae:d0:8b:dd:c0:2c:06:7a:bb: 48:52:f8:0a:89:fa:8e:71:9a:2e:fd:18:2b:fd:8f: a1:45:ab:b7:65:48:3f:39:8a:e7:25:d0:cc:96:7c: ce:29:df:a3:ee:ef:5c:64:35:0c:34:de:86:7c:c8: 8a:b1:26:12:4c:bf:7b:87:c8:cf:ec:10:0e:54:23: ea:e7:3b:1a:0a:12:1f:e6:a2:bf:98:87:ba:06:b7: 61:bc:25:65:31:dc:41:98:90:c6:f7:8b:9e:d6:8a: 37:36:84:21:05:a3:24:e5:a5:d8:c7:82:aa:da:21: ff:93:5c:6f:04:b0:6c:ca:73:99:27:8b:f8:58:c0: 5e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:09:E1:D7:AB:F1:F5:32:0A:C8:2A:FB:D2:08:FD:5D:89:61:36:67 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CQnh16vx9TIKyCr70gj9XYlhNmc.roa sbgp-ipAddrBlock: critical IPv4: 203.181.88.0/21 Signature Algorithm: sha256WithRSAEncryption 05:23:d8:dc:1b:f1:52:f1:46:e6:81:bb:30:93:a6:40:82:64: cb:5b:e8:dd:64:d6:c1:01:0e:c5:da:c3:cf:52:0c:9e:4e:10: 96:06:64:b5:08:8f:e1:fa:b9:09:e8:9b:3b:f1:ee:38:51:b2: 50:2d:b9:92:17:61:80:91:57:53:ee:1a:91:37:43:c0:43:09: 97:1b:b2:33:00:ea:85:10:96:ea:c5:f0:5b:cc:31:6b:a4:e0: b7:2a:1d:cf:84:bf:88:7d:be:1c:57:8f:ad:4a:79:91:9c:b0: be:00:c3:b6:67:2f:fa:f5:cb:8c:5b:1a:be:e1:fa:ea:f7:11: 49:69:38:bb:77:2f:85:40:85:5b:17:1f:b7:5a:a8:8e:4a:19: c3:68:23:95:1d:88:4a:e3:33:ff:04:70:60:74:95:88:bc:ba: 0a:48:fd:64:77:0d:ef:2c:74:12:85:bf:9f:46:ec:f7:a8:f2: 66:6f:69:f4:ff:65:9c:f2:32:6f:75:84:24:e0:3e:ca:86:3d: 47:da:c8:ba:19:33:64:c8:99:a8:d4:13:17:a7:f1:52:70:e6: f6:7b:5a:91:aa:4c:af:1e:ae:82:e1:be:37:3c:99:b3:0f:ec: 02:1d:69:ef:6e:d3:3a:05:e5:97:0a:09:b7:c3:65:9e:4d:25: 98:2d:4c:be -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBhowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODIxMjlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA5MDlFMUQ3QUJGMUY1 MzIwQUM4MkFGQkQyMDhGRDVEODk2MTM2NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLY5s+cnNZgDYnV908vRK/ZdJVKhJVX73EubWv8Px46peN0Y4d IW315Dd8McOE9lRJjtbsV065Tpr8voUH5DM4rmD4gZqeU6kv7PmI0nS5oAIw8EE/ 3NH/agg+T9Gkt+j+BXLhZc3tpqFPair74sWYBgqbL1U7G4l9NDU6qq7Qi93ALAZ6 u0hS+AqJ+o5xmi79GCv9j6FFq7dlSD85iucl0MyWfM4p36Pu71xkNQw03oZ8yIqx JhJMv3uHyM/sEA5UI+rnOxoKEh/mor+Yh7oGt2G8JWUx3EGYkMb3i57Wijc2hCEF oyTlpdjHgqraIf+TXG8EsGzKc5kni/hYwF5zAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUCQnh16vx9TIKyCr70gj9XYlhNmcwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L0NRbmgxNnZ4OVRJS3lDcjcwZ2o5WFlsaE5tYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPLtVgwDQYJKoZIhvcNAQELBQADggEB AAUj2Nwb8VLxRuaBuzCTpkCCZMtb6N1k1sEBDsXaw89SDJ5OEJYGZLUIj+H6uQno mzvx7jhRslAtuZIXYYCRV1PuGpE3Q8BDCZcbsjMA6oUQlurF8FvMMWuk4LcqHc+E v4h9vhxXj61KeZGcsL4Aw7ZnL/r1y4xbGr7h+ur3EUlpOLt3L4VAhVsXH7daqI5K GcNoI5UdiErjM/8EcGB0lYi8ugpI/WR3De8sdBKFv59G7Peo8mZvafT/ZZzyMm91 hCTgPsqGPUfayLoZM2TImajUExen8VJw5vZ7WpGqTK8eroLhvjc8mbMP7AIdae9u 0zoF5ZcKCbfDZZ5NJZgtTL4= -----END CERTIFICATE-----Generated at Fri Apr 17 13:31:31 2026 by rpki-client