$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/KHiIM311YgtsLFYoqk--neMGNEE.roa File: KHiIM311YgtsLFYoqk--neMGNEE.roa (raw, json) Hash identifier: 4GBcyGtW3ygGOc/QRaKdnrISbGiqa5cBvHKsZBvuOAc= Subject key identifier: 28:78:88:33:7D:75:62:0B:6C:2C:56:28:AA:4F:BE:9D:E3:06:34:41 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 05AF Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KHiIM311YgtsLFYoqk--neMGNEE.roa Signing time: Tue 31 Mar 2026 08:20:38 +0000 ROA not before: Tue 31 Mar 2026 08:20:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 27.133.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:20:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=287888337D75620B6C2C5628AA4FBE9DE3063441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6f:74:76:79:2c:8e:1c:09:57:d0:3f:a9:cd: 4f:ce:fd:92:1c:dd:37:ab:b1:a0:3a:32:eb:02:22: 60:72:ad:55:93:f3:25:6c:d3:4d:49:3d:e4:6e:e8: c4:c2:2d:77:3c:88:61:00:73:a9:f5:b6:4b:90:97: 95:59:69:83:99:cc:dd:8e:59:24:fe:3f:f4:35:65: d8:64:99:47:ec:e7:59:3d:7e:a8:64:17:e3:1e:e5: dc:cd:bf:b8:c0:0a:a0:fd:6e:d6:20:f2:52:e2:b4: fa:1f:0c:6b:1c:bc:93:d5:5f:e9:a8:c0:3f:09:61: e1:98:b8:d6:8c:14:33:fb:a0:77:47:77:7e:a7:90: a2:5a:1b:ad:df:1c:b5:bf:f3:33:94:ce:79:a5:34: a8:b9:c8:e4:83:ba:5b:37:0e:f8:13:7e:51:b2:9c: 69:26:c1:b3:94:f8:bb:0f:51:97:41:e8:31:c6:11: e8:5e:5d:fe:91:57:b7:5b:7a:50:95:2f:b8:b1:4c: 72:14:40:24:97:67:3d:c1:b5:d1:53:4e:f8:69:4d: cd:1a:77:d3:0b:0d:6b:96:19:88:ff:49:64:2e:19: 5e:d5:b8:16:1c:2a:fb:91:a0:ed:df:8f:4b:61:95: 87:d6:05:cc:a8:10:9a:d2:fa:bb:d7:93:22:7e:ae: 94:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:78:88:33:7D:75:62:0B:6C:2C:56:28:AA:4F:BE:9D:E3:06:34:41 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KHiIM311YgtsLFYoqk--neMGNEE.roa sbgp-ipAddrBlock: critical IPv4: 27.133.0.0/21 Signature Algorithm: sha256WithRSAEncryption 41:03:25:bf:ff:f3:cd:7d:bb:8c:4d:52:9f:3f:e4:ca:4a:b4: 94:46:cb:26:f7:84:b1:82:bd:80:d9:ec:6b:83:55:b8:15:d8: 4f:2c:59:c7:20:9a:28:dd:08:1f:1b:77:20:54:b6:74:35:f3: f9:0d:21:3d:75:f1:41:4e:c5:36:bc:a8:d9:16:56:2c:80:b9: 48:e8:60:46:b6:39:ec:ac:ee:23:bb:f3:ce:cb:dd:d4:d0:c1: ea:67:48:fd:93:ab:7d:d1:8f:f7:cf:92:f2:34:6c:de:22:1a: 98:8e:54:2f:53:f8:a7:b5:b3:4e:d9:48:68:3f:e8:ee:b1:d4: b7:83:46:96:20:9d:6f:a4:06:ac:74:62:bf:fb:7f:16:b8:4c: 2a:c7:5f:69:87:bf:4d:57:ec:23:99:a6:f4:27:c7:01:bf:e9: f8:dd:fc:fd:69:c6:54:8c:2f:a2:ef:ed:f5:24:a1:2b:d0:20: b3:32:ab:53:f0:e8:ed:c5:48:07:5c:84:ce:dd:5e:36:e9:bd: 32:77:08:01:3a:8c:9a:48:96:9c:ab:7e:95:88:50:d8:12:04: 37:a6:06:fc:04:e1:4d:c9:a5:b5:af:8b:ca:c7:71:66:57:45: 5d:e5:da:d1:d4:eb:08:9c:c7:d6:c7:72:08:2e:dc:59:69:9f: 4e:e9:b5:3b -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODIwMzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI4Nzg4ODMzN0Q3NTYy MEI2QzJDNTYyOEFBNEZCRTlERTMwNjM0NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWb3R2eSyOHAlX0D+pzU/O/ZIc3TersaA6MusCImByrVWT8yVs 001JPeRu6MTCLXc8iGEAc6n1tkuQl5VZaYOZzN2OWST+P/Q1ZdhkmUfs51k9fqhk F+Me5dzNv7jACqD9btYg8lLitPofDGscvJPVX+mowD8JYeGYuNaMFDP7oHdHd36n kKJaG63fHLW/8zOUznmlNKi5yOSDuls3DvgTflGynGkmwbOU+LsPUZdB6DHGEehe Xf6RV7dbelCVL7ixTHIUQCSXZz3BtdFTTvhpTc0ad9MLDWuWGYj/SWQuGV7VuBYc KvuRoO3fj0thlYfWBcyoEJrS+rvXkyJ+rpTNAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKHiIM311YgtsLFYoqk++neMGNEEwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L0tIaUlNMzExWWd0c0xGWW9xay0tbmVNR05FRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMbhQAwDQYJKoZIhvcNAQELBQADggEB AEEDJb//8819u4xNUp8/5MpKtJRGyyb3hLGCvYDZ7GuDVbgV2E8sWccgmijdCB8b dyBUtnQ18/kNIT118UFOxTa8qNkWViyAuUjoYEa2Oeys7iO7887L3dTQwepnSP2T q33Rj/fPkvI0bN4iGpiOVC9T+Ke1s07ZSGg/6O6x1LeDRpYgnW+kBqx0Yr/7fxa4 TCrHX2mHv01X7COZpvQnxwG/6fjd/P1pxlSML6Lv7fUkoSvQILMyq1Pw6O3FSAdc hM7dXjbpvTJ3CAE6jJpIlpyrfpWIUNgSBDemBvwE4U3JpbWvi8rHcWZXRV3l2tHU 6wicx9bHcggu3Flpn07ptTs= -----END CERTIFICATE-----Generated at Fri Apr 17 02:19:35 2026 by rpki-client