$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/cTsVmfwvJPNjz_sm-qy3Z7Ggi0g.roa File: cTsVmfwvJPNjz_sm-qy3Z7Ggi0g.roa (raw, json) Hash identifier: H5OfhrAWxe63YgLg527RsJAGgnc5kr6zLEfRZn5BHDo= Subject key identifier: 71:3B:15:99:FC:2F:24:F3:63:CF:FB:26:FA:AC:B7:67:B1:A0:8B:48 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 05CF Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/cTsVmfwvJPNjz_sm-qy3Z7Ggi0g.roa Signing time: Tue 31 Mar 2026 08:20:51 +0000 ROA not before: Tue 31 Mar 2026 08:20:51 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 111.235.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1487 (0x5cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:20:51 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=713B1599FC2F24F363CFFB26FAACB767B1A08B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:83:bc:24:5f:e3:05:18:c3:3a:eb:7b:d7:93: fc:65:cd:36:82:f2:5f:c9:54:db:96:9f:ce:ef:5c: e5:73:bf:25:9f:93:35:65:3f:74:a5:7f:29:7d:c7: 9b:61:6b:ec:b2:c1:63:ae:e0:a6:5c:f6:f3:b5:2d: ab:82:81:4e:d6:b7:98:cb:01:e3:a4:c5:f8:3d:1d: ab:96:ef:4b:64:35:7e:36:ae:bd:8c:e1:a9:5c:12: 83:9c:a2:20:2a:8c:ec:03:18:fd:ab:8f:4e:54:9f: b4:19:d8:49:66:d8:10:90:61:ed:01:b9:79:d5:4c: 19:5d:d1:e3:a7:ac:d8:62:9c:07:77:30:b8:a7:02: b2:56:7e:c6:0e:54:22:10:76:9e:39:71:52:19:6e: b7:bb:14:7e:26:75:f2:99:ec:40:9b:8b:bf:15:64: e6:90:bc:c2:2d:8d:71:89:7d:dc:00:ea:7d:42:61: f2:ed:af:44:84:4d:7d:41:83:26:ca:8c:74:9c:81: 19:46:61:82:28:f7:61:d2:35:b2:6a:76:e1:06:7d: 50:58:4b:54:76:a6:35:d6:dc:cf:ad:a0:1e:4d:6d: 8e:9f:bd:d8:fc:d8:d7:8a:d3:44:91:24:45:53:a8: d1:93:84:6f:e4:5d:55:76:a3:96:25:64:b3:ed:9d: d4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3B:15:99:FC:2F:24:F3:63:CF:FB:26:FA:AC:B7:67:B1:A0:8B:48 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/cTsVmfwvJPNjz_sm-qy3Z7Ggi0g.roa sbgp-ipAddrBlock: critical IPv4: 111.235.32.0/22 Signature Algorithm: sha256WithRSAEncryption 00:21:5c:cc:ae:88:2d:3a:64:9c:33:8d:e6:aa:e5:35:ed:8c: 34:c8:93:7d:02:7d:c4:5f:1c:b5:d5:1d:77:c2:53:84:c8:35: 18:f1:ec:f0:b5:15:38:be:a3:b4:8d:e1:e7:1e:42:15:34:7b: 2b:8e:25:87:20:10:b6:e7:13:56:9c:78:a0:a6:18:67:2a:f8: 7e:28:4b:48:0c:03:31:84:5f:be:55:6a:29:0f:2b:19:f2:53: f7:c1:f1:b0:c2:92:e1:23:98:ce:26:07:02:79:87:d2:cd:cc: c4:aa:16:e8:07:cb:2d:34:99:ec:10:c5:cd:d9:0c:59:52:39: 5a:29:e8:63:5f:26:7a:23:fe:68:65:b2:eb:3f:10:36:b9:e5: e0:97:fa:6a:99:a8:f3:d2:60:84:87:86:3e:6f:60:a0:73:90: 18:7b:13:00:85:d2:72:31:18:08:db:a9:df:ee:a5:3c:e8:05: 93:5f:1b:b6:85:b4:22:09:ff:0d:c8:73:0a:9f:6c:11:c0:04: 91:4c:8e:f7:ed:ec:aa:f5:42:0e:8a:14:61:62:6b:8f:44:9b: 09:9f:2a:8e:e9:93:38:83:85:99:d5:6c:9c:d4:17:42:c6:10: b6:a8:6c:d7:d9:ff:91:cf:1c:27:49:af:e9:c5:de:cd:7e:d9: 78:67:9c:4c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBc8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODIwNTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxM0IxNTk5RkMyRjI0 RjM2M0NGRkIyNkZBQUNCNzY3QjFBMDhCNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdg7wkX+MFGMM663vXk/xlzTaC8l/JVNuWn87vXOVzvyWfkzVl P3Slfyl9x5tha+yywWOu4KZc9vO1LauCgU7Wt5jLAeOkxfg9HauW70tkNX42rr2M 4alcEoOcoiAqjOwDGP2rj05Un7QZ2Elm2BCQYe0BuXnVTBld0eOnrNhinAd3MLin ArJWfsYOVCIQdp45cVIZbre7FH4mdfKZ7ECbi78VZOaQvMItjXGJfdwA6n1CYfLt r0SETX1BgybKjHScgRlGYYIo92HSNbJqduEGfVBYS1R2pjXW3M+toB5NbY6fvdj8 2NeK00SRJEVTqNGThG/kXVV2o5YlZLPtndQBAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcTsVmfwvJPNjz/sm+qy3Z7Ggi0gwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L2NUc1ZtZnd2SlBOanpfc20tcXkzWjdHZ2kwZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJv6yAwDQYJKoZIhvcNAQELBQADggEB AAAhXMyuiC06ZJwzjeaq5TXtjDTIk30CfcRfHLXVHXfCU4TINRjx7PC1FTi+o7SN 4eceQhU0eyuOJYcgELbnE1aceKCmGGcq+H4oS0gMAzGEX75VaikPKxnyU/fB8bDC kuEjmM4mBwJ5h9LNzMSqFugHyy00mewQxc3ZDFlSOVop6GNfJnoj/mhlsus/EDa5 5eCX+mqZqPPSYISHhj5vYKBzkBh7EwCF0nIxGAjbqd/upTzoBZNfG7aFtCIJ/w3I cwqfbBHABJFMjvft7Kr1Qg6KFGFia49EmwmfKo7pkziDhZnVbJzUF0LGELaobNfZ /5HPHCdJr+nF3s1+2XhnnEw= -----END CERTIFICATE-----Generated at Fri Apr 17 01:18:38 2026 by rpki-client