$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/tK3tyNV5UTt8CxSEr4U02iwVJZM.roa File: tK3tyNV5UTt8CxSEr4U02iwVJZM.roa (raw, json) Hash identifier: gWElLL86K7zQE+AYoTqRQKabIR1gYj/fGL4cC/muuz8= Subject key identifier: B4:AD:ED:C8:D5:79:51:3B:7C:0B:14:84:AF:85:34:DA:2C:15:25:93 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 05FE Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/tK3tyNV5UTt8CxSEr4U02iwVJZM.roa Signing time: Tue 31 Mar 2026 08:21:17 +0000 ROA not before: Tue 31 Mar 2026 08:21:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 61.192.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1534 (0x5fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:21:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B4ADEDC8D579513B7C0B1484AF8534DA2C152593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9f:2c:7b:c7:f0:2c:6a:a9:68:e8:c7:6b:53: b8:ed:9d:06:b0:be:a6:75:e6:18:bb:75:8f:16:e9: cd:9f:92:a5:a7:d2:e4:64:f7:96:8e:51:dd:a7:5f: 04:c5:a4:24:32:07:66:37:28:c2:6e:58:3f:dd:7f: 08:b5:ee:2e:96:6d:a0:ee:32:a3:27:9d:a4:8a:33: 8e:ee:7c:5d:05:42:4a:71:8d:7f:8d:69:2c:a7:c5: 6c:41:90:b3:9d:a5:8b:00:30:a2:42:9f:01:74:c8: ae:1a:43:e3:fd:a7:39:a2:18:c7:29:f0:f4:8d:75: 1d:1a:a0:89:b9:a5:e1:7f:06:f5:30:3c:db:55:c0: 99:48:0d:2f:0c:8d:45:97:a0:67:5d:7c:79:63:66: c3:f1:a2:9b:c8:bd:9c:58:92:8a:81:db:d2:35:fe: 4f:76:f5:28:c2:ce:17:99:7e:29:d1:7a:88:78:42: 85:80:d1:d2:39:56:3a:0d:74:69:0b:17:75:03:fe: 9e:b7:da:b9:5d:31:47:c3:2c:e4:6b:e2:4d:c8:f1: 1a:d2:5a:1a:1c:64:1f:48:70:fd:67:77:c7:10:19: 16:45:40:aa:49:e3:41:d2:1a:91:a2:59:3a:64:86: dd:59:ca:c6:11:74:44:5b:c4:86:59:53:38:d5:91: 93:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AD:ED:C8:D5:79:51:3B:7C:0B:14:84:AF:85:34:DA:2C:15:25:93 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/tK3tyNV5UTt8CxSEr4U02iwVJZM.roa sbgp-ipAddrBlock: critical IPv4: 61.192.208.0/21 Signature Algorithm: sha256WithRSAEncryption 35:54:20:8b:11:cf:a0:1d:3f:f2:a0:bf:24:ac:2c:b6:0c:4d: 3d:f3:0a:7b:fa:e3:93:be:6c:95:1a:9e:8e:3c:1f:b7:b6:0f: 84:84:88:ea:43:45:4e:0c:f9:e1:3f:9d:45:7a:99:a0:2f:e9: f8:b1:35:ea:af:66:4c:72:32:76:78:6f:9f:23:2d:42:47:63: e8:bf:e1:10:bf:80:56:c7:cc:1f:b5:a6:19:92:0f:6c:97:e3: 85:b0:ee:ff:62:d8:65:18:61:61:8f:e4:ee:c9:ed:7c:f6:a4: 47:7e:13:63:09:ba:65:65:2a:7d:b8:c2:03:b1:da:3a:2b:6b: 3b:3d:45:3f:33:e0:19:44:c6:61:b3:fc:0f:f8:5c:c1:fb:e6: a9:fc:10:29:c1:8b:33:00:c5:d0:6c:16:8f:13:a5:39:5b:1f: dd:b5:ad:9d:77:35:53:d2:68:b4:7e:4d:31:1c:42:f0:d2:ff: 96:91:81:33:18:81:02:08:79:c7:9e:d6:a7:0e:20:5a:d1:32: 4c:ef:66:45:2a:54:19:c1:2b:fc:a4:81:be:54:19:c4:17:6c: fc:19:4a:6e:ce:85:8f:3b:f7:04:4c:18:2b:52:34:4a:3e:aa: 2d:ad:9a:7a:bd:81:32:53:f0:c7:74:37:34:24:9f:a0:11:aa: 0a:14:93:ac -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBf4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODIxMTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI0QURFREM4RDU3OTUx M0I3QzBCMTQ4NEFGODUzNERBMkMxNTI1OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpnyx7x/Asaqlo6MdrU7jtnQawvqZ15hi7dY8W6c2fkqWn0uRk 95aOUd2nXwTFpCQyB2Y3KMJuWD/dfwi17i6WbaDuMqMnnaSKM47ufF0FQkpxjX+N aSynxWxBkLOdpYsAMKJCnwF0yK4aQ+P9pzmiGMcp8PSNdR0aoIm5peF/BvUwPNtV wJlIDS8MjUWXoGddfHljZsPxopvIvZxYkoqB29I1/k929SjCzheZfinReoh4QoWA 0dI5VjoNdGkLF3UD/p632rldMUfDLORr4k3I8RrSWhocZB9IcP1nd8cQGRZFQKpJ 40HSGpGiWTpkht1ZysYRdERbxIZZUzjVkZN5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUtK3tyNV5UTt8CxSEr4U02iwVJZMwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L3RLM3R5TlY1VVR0OEN4U0VyNFUwMml3VkpaTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9wNAwDQYJKoZIhvcNAQELBQADggEB ADVUIIsRz6AdP/KgvySsLLYMTT3zCnv645O+bJUano48H7e2D4SEiOpDRU4M+eE/ nUV6maAv6fixNeqvZkxyMnZ4b58jLUJHY+i/4RC/gFbHzB+1phmSD2yX44Ww7v9i 2GUYYWGP5O7J7Xz2pEd+E2MJumVlKn24wgOx2jorazs9RT8z4BlExmGz/A/4XMH7 5qn8ECnBizMAxdBsFo8TpTlbH921rZ13NVPSaLR+TTEcQvDS/5aRgTMYgQIIecee 1qcOIFrRMkzvZkUqVBnBK/ykgb5UGcQXbPwZSm7OhY879wRMGCtSNEo+qi2tmnq9 gTJT8Md0NzQkn6ARqgoUk6w= -----END CERTIFICATE-----Generated at Sun Apr 19 09:04:02 2026 by rpki-client