$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/Q5K_ycR3TNO2-uEL3kMZpYBruUs.roa File: Q5K_ycR3TNO2-uEL3kMZpYBruUs.roa (raw, json) Hash identifier: G4DQLvVFSYKNTiZRCT5SJqsvXw1UcoJoIioH+RaP4bo= Subject key identifier: 43:92:BF:C9:C4:77:4C:D3:B6:FA:E1:0B:DE:43:19:A5:80:6B:B9:4B Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0536 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/Q5K_ycR3TNO2-uEL3kMZpYBruUs.roa Signing time: Tue 31 Mar 2026 08:19:38 +0000 ROA not before: Tue 31 Mar 2026 08:19:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 61.120.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1334 (0x536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:19:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4392BFC9C4774CD3B6FAE10BDE4319A5806BB94B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ba:81:54:73:45:c7:80:fb:59:df:04:65:1d: 67:dc:70:b8:83:52:6b:fc:e7:4d:1c:7d:9d:2a:34: 7f:f0:37:bc:f9:ab:34:1b:88:e2:30:e5:76:3c:f2: 47:83:55:57:fd:3c:7f:40:99:c7:22:be:2b:e7:d8: b5:de:5f:8e:0a:89:fb:63:51:02:24:f0:45:36:c3: 27:28:92:63:9b:81:97:90:76:d1:5c:85:70:85:13: 70:63:7b:27:e8:14:f8:ea:0a:68:d9:9f:97:c9:35: 97:58:9c:d7:92:18:c2:59:3f:4b:8b:58:ec:92:41: 85:62:e7:09:99:39:69:3f:f7:79:a8:d0:82:ab:22: 19:e7:3a:08:27:f7:0a:d7:f0:f3:d2:74:18:6f:ff: 39:71:b3:36:bc:6c:cd:88:4f:4c:7d:93:fc:26:4b: b4:c2:08:7e:15:56:2e:26:31:7b:40:01:bb:26:99: b8:b6:49:ec:1a:7d:69:34:67:99:ad:7c:67:ce:c3: 71:2d:f6:69:2c:3a:f4:2c:70:b3:b6:f0:38:1c:51: 49:91:a8:31:84:44:5c:12:5a:ef:2a:0c:28:72:e6: e1:5f:45:ec:1c:fe:a6:ab:3c:48:87:6d:c9:ef:8b: 00:b8:6c:a6:50:06:f2:31:43:18:76:1e:05:64:f7: a9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:92:BF:C9:C4:77:4C:D3:B6:FA:E1:0B:DE:43:19:A5:80:6B:B9:4B X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/Q5K_ycR3TNO2-uEL3kMZpYBruUs.roa sbgp-ipAddrBlock: critical IPv4: 61.120.214.0/23 Signature Algorithm: sha256WithRSAEncryption 86:8e:56:a4:bf:40:5f:d3:42:bc:02:76:7a:06:45:f2:5d:19: e3:40:f5:f0:9c:b8:20:b4:5e:68:2a:b0:86:86:23:2d:6a:fd: 63:61:2f:67:81:34:32:5b:5b:18:68:09:06:e9:8b:7e:e2:40: 56:38:7d:95:3e:e6:b1:85:17:8c:b2:d7:d5:a1:88:cd:cd:e8: 25:78:2b:ef:db:8d:18:90:08:39:aa:9c:ff:d6:db:98:47:69: f3:49:f8:33:73:3d:80:2f:a2:4b:d8:d8:e8:49:90:d4:96:3d: 4d:cd:de:6a:c7:1a:53:ed:a8:28:7c:c7:0c:5d:29:33:c8:2f: 44:f8:e1:ca:67:21:62:0d:c3:c1:ab:70:1f:2c:c9:46:cd:ca: b1:24:e9:c6:37:3d:95:72:43:67:5f:ec:8a:08:b2:c9:5c:4f: 80:e5:5c:a7:61:50:17:65:da:ee:5c:1c:ea:6a:a3:be:28:f0: c0:1c:81:0d:ef:3f:aa:41:79:24:48:0a:f0:fb:79:01:cc:8a: 1d:a2:2a:fb:63:f9:bf:36:73:cd:8f:e3:53:9c:a9:91:f8:31: c2:ab:da:06:1e:38:55:0f:16:57:c0:ff:ba:3b:56:74:f0:0f: bd:b3:08:b4:f0:d5:be:34:9b:f9:c5:8a:ed:82:d8:e5:f2:d7: 55:3f:84:07 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBTYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODE5MzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQzOTJCRkM5QzQ3NzRD RDNCNkZBRTEwQkRFNDMxOUE1ODA2QkI5NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBuoFUc0XHgPtZ3wRlHWfccLiDUmv8500cfZ0qNH/wN7z5qzQb iOIw5XY88keDVVf9PH9Amccivivn2LXeX44KiftjUQIk8EU2wycokmObgZeQdtFc hXCFE3BjeyfoFPjqCmjZn5fJNZdYnNeSGMJZP0uLWOySQYVi5wmZOWk/93mo0IKr IhnnOggn9wrX8PPSdBhv/zlxsza8bM2IT0x9k/wmS7TCCH4VVi4mMXtAAbsmmbi2 SewafWk0Z5mtfGfOw3Et9mksOvQscLO28DgcUUmRqDGERFwSWu8qDChy5uFfRewc /qarPEiHbcnviwC4bKZQBvIxQxh2HgVk96mPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUQ5K/ycR3TNO2+uEL3kMZpYBruUswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L1E1S195Y1IzVE5PMi11RUwza01acFlCcnVVcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9eNYwDQYJKoZIhvcNAQELBQADggEB AIaOVqS/QF/TQrwCdnoGRfJdGeNA9fCcuCC0XmgqsIaGIy1q/WNhL2eBNDJbWxho CQbpi37iQFY4fZU+5rGFF4yy19WhiM3N6CV4K+/bjRiQCDmqnP/W25hHafNJ+DNz PYAvokvY2OhJkNSWPU3N3mrHGlPtqCh8xwxdKTPIL0T44cpnIWINw8GrcB8syUbN yrEk6cY3PZVyQ2df7IoIsslcT4DlXKdhUBdl2u5cHOpqo74o8MAcgQ3vP6pBeSRI CvD7eQHMih2iKvtj+b82c82P41OcqZH4McKr2gYeOFUPFlfA/7o7VnTwD72zCLTw 1b40m/nFiu2C2OXy11U/hAc= -----END CERTIFICATE-----Generated at Fri Apr 17 05:25:56 2026 by rpki-client