$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/OrqlAkNq0v9-qP4Hs0AVxIffUBw.roa File: OrqlAkNq0v9-qP4Hs0AVxIffUBw.roa (raw, json) Hash identifier: 4oGUSDN+e9Ua68h/lD9kkjF8dwSqlSzUcKW+nAxW+7Y= Subject key identifier: 3A:BA:A5:02:43:6A:D2:FF:7E:A8:FE:07:B3:40:15:C4:87:DF:50:1C Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 04F3 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/OrqlAkNq0v9-qP4Hs0AVxIffUBw.roa Signing time: Tue 31 Mar 2026 08:19:09 +0000 ROA not before: Tue 31 Mar 2026 08:19:09 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 36.52.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:19:09 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3ABAA502436AD2FF7EA8FE07B34015C487DF501C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:61:9c:bc:c0:2c:e4:b8:a3:8b:cb:1d:42:c9: ad:91:14:49:7a:71:b6:01:9b:09:98:e3:3a:71:76: 1f:d8:2c:d1:ce:38:c8:25:34:2b:9e:d4:5d:66:4c: f4:ae:ba:3b:b4:b4:b8:ab:74:94:d3:4b:34:4e:80: 59:63:f5:cd:36:35:ab:27:29:6b:b7:8f:a7:da:81: ba:9b:60:cc:39:fc:bb:10:89:ab:9e:25:ee:e6:eb: 89:ca:57:54:5f:04:f3:2d:f0:5a:ea:68:4a:c6:73: 2b:3d:b2:8f:d8:73:87:5b:8b:bb:bf:2b:96:90:50: 67:5b:e6:6b:55:4d:99:6f:ca:7b:4c:b2:52:99:04: 01:09:29:ae:3f:45:2c:c8:e0:39:c3:ab:70:88:8a: c0:0c:b1:fa:e5:f3:42:6d:36:84:c6:70:c5:f9:21: d4:1c:32:59:80:5b:df:6e:28:94:da:3d:2f:f2:90: 67:a8:89:33:f5:4d:f9:27:dd:d7:ec:a2:a5:d2:37: 14:ec:09:96:de:fe:65:78:dd:2b:26:69:ac:be:af: ae:52:02:0d:fc:da:d3:8b:47:54:89:02:4e:fc:46: da:d3:2a:0a:a3:09:6e:0b:18:18:35:c3:c0:08:95: 10:4b:0e:0b:9f:67:30:c5:98:0c:34:1c:8d:87:a1: 78:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:BA:A5:02:43:6A:D2:FF:7E:A8:FE:07:B3:40:15:C4:87:DF:50:1C X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/OrqlAkNq0v9-qP4Hs0AVxIffUBw.roa sbgp-ipAddrBlock: critical IPv4: 36.52.216.0/22 Signature Algorithm: sha256WithRSAEncryption 66:db:75:89:f9:8e:15:b8:d5:bf:62:02:82:ce:5d:df:98:5a: 56:09:06:da:a6:4a:df:be:e0:0a:ae:5f:cd:92:b4:6a:fe:be: cc:9d:fe:2c:01:16:0a:f7:1d:a8:a8:26:69:b5:9f:dc:2c:b1: 6a:cf:8d:29:9a:9a:59:e8:85:0a:72:7b:e8:0d:d1:3f:94:15: 40:8b:0a:7a:5e:f0:82:55:ac:32:7a:ec:e3:9c:a4:20:ca:09: e8:ae:66:34:64:4f:05:40:45:e5:2a:98:a3:41:c2:5e:cf:fc: cc:9e:c1:5f:93:56:90:0f:fb:2e:7a:71:05:ee:36:30:72:28: 89:c2:43:9c:e4:1a:ec:7b:87:12:66:ea:47:3e:57:14:d7:c8: 30:02:bf:94:f4:06:8d:bf:62:a8:c2:ab:90:05:13:69:74:07: ac:4a:f8:37:d8:7b:01:7f:30:7e:53:c6:dd:05:18:52:1b:ab: 3e:b6:76:8a:5c:6d:33:d9:c1:4b:7e:8a:8d:b2:5c:c8:30:38: a1:59:5e:a3:f2:89:94:50:b4:bf:d6:70:01:e2:43:68:a3:e8: 75:e3:64:18:ec:5f:4f:75:69:f6:ac:fd:ce:2d:3c:e6:3b:1b: a2:e8:d5:d0:19:e4:e6:93:2b:46:b8:c0:cd:08:a1:30:68:e1: c2:92:82:74 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODE5MDlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNBQkFBNTAyNDM2QUQy RkY3RUE4RkUwN0IzNDAxNUM0ODdERjUwMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2YZy8wCzkuKOLyx1Cya2RFEl6cbYBmwmY4zpxdh/YLNHOOMgl NCue1F1mTPSuuju0tLirdJTTSzROgFlj9c02NasnKWu3j6fagbqbYMw5/LsQiaue Je7m64nKV1RfBPMt8FrqaErGcys9so/Yc4dbi7u/K5aQUGdb5mtVTZlvyntMslKZ BAEJKa4/RSzI4DnDq3CIisAMsfrl80JtNoTGcMX5IdQcMlmAW99uKJTaPS/ykGeo iTP1Tfkn3dfsoqXSNxTsCZbe/mV43Ssmaay+r65SAg382tOLR1SJAk78RtrTKgqj CW4LGBg1w8AIlRBLDgufZzDFmAw0HI2HoXglAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUOrqlAkNq0v9+qP4Hs0AVxIffUBwwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L09ycWxBa05xMHY5LXFQNEhzMEFWeElmZlVCdy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIkNNgwDQYJKoZIhvcNAQELBQADggEB AGbbdYn5jhW41b9iAoLOXd+YWlYJBtqmSt++4AquX82StGr+vsyd/iwBFgr3Haio Jmm1n9wssWrPjSmamlnohQpye+gN0T+UFUCLCnpe8IJVrDJ67OOcpCDKCeiuZjRk TwVAReUqmKNBwl7P/MyewV+TVpAP+y56cQXuNjByKInCQ5zkGux7hxJm6kc+VxTX yDACv5T0Bo2/YqjCq5AFE2l0B6xK+DfYewF/MH5Txt0FGFIbqz62dopcbTPZwUt+ io2yXMgwOKFZXqPyiZRQtL/WcAHiQ2ij6HXjZBjsX091afas/c4tPOY7G6Lo1dAZ 5OaTK0a4wM0IoTBo4cKSgnQ= -----END CERTIFICATE-----Generated at Fri Apr 17 02:19:31 2026 by rpki-client