$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/CuJyVPBm4A0FfOD0nMOL4YUqqQc.roa File: CuJyVPBm4A0FfOD0nMOL4YUqqQc.roa (raw, json) Hash identifier: EByrnM/2sYpEriwn8jorq9QUwHVPd8iGpnQJhjAJzds= Subject key identifier: 0A:E2:72:54:F0:66:E0:0D:05:7C:E0:F4:9C:C3:8B:E1:85:2A:A9:07 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 01ED Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CuJyVPBm4A0FfOD0nMOL4YUqqQc.roa Signing time: Tue 31 Mar 2026 07:39:57 +0000 ROA not before: Tue 31 Mar 2026 07:39:57 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2527 IP address blocks: 121.2.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Mar 31 07:39:57 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0AE27254F066E00D057CE0F49CC38BE1852AA907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:91:70:0d:a6:1f:5f:89:b2:7e:21:a1:14:6d: 73:e0:ec:1f:f5:93:38:4e:bc:de:6f:32:12:f8:c8: 91:02:ed:3b:de:7d:fa:41:75:58:f8:54:ee:74:f9: b5:c6:f3:cc:e3:19:bb:ee:ee:17:9f:fb:6f:2b:77: f2:86:24:90:32:3d:3c:bf:25:26:44:db:2a:ff:05: 7d:1c:14:7e:79:06:86:ce:82:c5:8a:33:54:74:e7: 20:d9:88:3b:68:d7:42:eb:42:8a:a0:8c:91:35:84: a3:d9:2e:b6:d7:2d:77:b2:44:45:46:86:07:b0:65: 15:4f:79:cd:50:76:5b:2a:7b:51:e1:cf:8a:24:b5: 98:0f:a2:b5:87:1f:78:65:cd:f8:f8:ad:79:73:57: de:0b:83:92:60:72:61:f8:07:9e:dd:0f:7f:d7:72: 56:90:11:27:de:8d:ef:54:ae:51:97:63:0a:36:48: 34:04:b6:61:12:30:ec:20:7c:36:35:ac:70:20:09: f6:51:97:83:3b:ef:a3:e3:20:7a:11:dc:14:8d:fa: f7:31:2e:fb:70:62:ca:c7:2a:74:21:42:7d:54:2d: c2:d4:8e:e5:77:5f:76:4e:81:84:e5:2a:a0:60:ee: 95:20:81:a5:56:ec:2f:fe:68:62:1f:49:06:96:39: e4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E2:72:54:F0:66:E0:0D:05:7C:E0:F4:9C:C3:8B:E1:85:2A:A9:07 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CuJyVPBm4A0FfOD0nMOL4YUqqQc.roa sbgp-ipAddrBlock: critical IPv4: 121.2.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0c:9a:0e:14:35:1d:d2:54:b8:e8:a9:c9:f8:23:e2:36:ef:d4: c9:bc:78:0f:0e:d7:6f:9a:68:37:4e:8a:dd:74:7e:c9:13:40: 8e:ce:7e:a5:66:43:20:b4:d0:ae:51:db:c0:bf:39:9e:ad:02: 63:2c:31:31:63:8d:f5:f1:d1:b4:b6:f0:10:d5:be:68:ef:aa: 0a:2b:86:08:de:c9:34:a0:ba:40:4b:a3:15:da:db:fe:57:85: 98:a9:72:3d:76:cf:f0:4e:6d:cc:96:41:3c:92:e3:58:da:0f: 97:78:b0:46:57:b6:c9:f4:ac:23:1c:13:75:a6:ca:fa:e9:1b: 50:cf:74:4b:87:21:71:13:7e:07:22:d5:e2:c6:a9:07:3e:3b: 9b:61:ab:22:18:7b:16:fb:05:5c:c0:86:82:d1:ed:43:5f:39: 3a:14:54:d7:1f:42:29:ff:0e:ae:c8:8d:e8:f7:7a:f2:51:ee: a6:7f:cb:e1:21:bc:88:a5:d5:79:23:d4:0e:c9:23:45:e7:52: dd:74:8a:63:ff:e8:53:5f:87:8e:6e:47:7e:38:1a:bf:3f:39: d9:a1:77:c8:79:5c:ec:c8:d5:35:c9:55:34:89:90:e3:2f:84: f8:ab:ae:3a:e4:e5:6f:12:ba:a3:36:02:dd:b0:55:98:30:b6: 56:e9:f4:1d -----BEGIN CERTIFICATE----- MIIEujCCA6KgAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNjAzMzEw NzM5NTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBRTI3MjU0RjA2NkUw MEQwNTdDRTBGNDlDQzM4QkUxODUyQUE5MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOkXANph9fibJ+IaEUbXPg7B/1kzhOvN5vMhL4yJEC7TveffpB dVj4VO50+bXG88zjGbvu7hef+28rd/KGJJAyPTy/JSZE2yr/BX0cFH55BobOgsWK M1R05yDZiDto10LrQoqgjJE1hKPZLrbXLXeyREVGhgewZRVPec1Qdlsqe1Hhz4ok tZgPorWHH3hlzfj4rXlzV94Lg5JgcmH4B57dD3/XclaQESfeje9UrlGXYwo2SDQE tmESMOwgfDY1rHAgCfZRl4M776PjIHoR3BSN+vcxLvtwYsrHKnQhQn1ULcLUjuV3 X3ZOgYTlKqBg7pUggaVW7C/+aGIfSQaWOeRHAgMBAAGjggHWMIIB0jAdBgNVHQ4E FgQUCuJyVPBm4A0FfOD0nMOL4YUqqQcwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80My9DdUp5VlBCbTRBMEZmT0Qwbk1PTDRZVXFxUWMucm9hMB4GCCsG AQUFBwEHAQH/BA8wDTALBAIAATAFAwMBeQIwDQYJKoZIhvcNAQELBQADggEBAAya DhQ1HdJUuOipyfgj4jbv1Mm8eA8O12+aaDdOit10fskTQI7OfqVmQyC00K5R28C/ OZ6tAmMsMTFjjfXx0bS28BDVvmjvqgorhgjeyTSgukBLoxXa2/5XhZipcj12z/BO bcyWQTyS41jaD5d4sEZXtsn0rCMcE3WmyvrpG1DPdEuHIXETfgci1eLGqQc+O5th qyIYexb7BVzAhoLR7UNfOToUVNcfQin/Dq7Ijej3evJR7qZ/y+EhvIil1Xkj1A7J I0XnUt10imP/6FNfh45uR344Gr8/Odmhd8h5XOzI1TXJVTSJkOMvhPirrjrk5W8S uqM2At2wVZgwtlbp9B0= -----END CERTIFICATE-----Generated at Sun Apr 19 08:49:19 2026 by rpki-client