$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/HIFxiVBzWzH8EWhKVy0NXd-F1j4.roa File: HIFxiVBzWzH8EWhKVy0NXd-F1j4.roa (raw, json) Hash identifier: JkJSaWwN9ZMI5eVd1A7Rt3jrDYVSJoWqF/CpBo3dPTY= Subject key identifier: 1C:81:71:89:50:73:5B:31:FC:11:68:4A:57:2D:0D:5D:DF:85:D6:3E Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 01F3 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/HIFxiVBzWzH8EWhKVy0NXd-F1j4.roa Signing time: Tue 31 Mar 2026 07:40:00 +0000 ROA not before: Tue 31 Mar 2026 07:40:00 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2527 IP address blocks: 220.211.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Mar 31 07:40:00 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1C81718950735B31FC11684A572D0D5DDF85D63E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:a8:57:d9:61:55:90:81:b6:af:8a:ff:7e: 27:49:6d:90:1a:b2:88:8c:71:3b:ee:e3:cd:be:11: ca:25:b5:3a:be:9f:8e:41:53:a2:75:44:71:fb:e9: a9:ba:5e:5f:b8:74:02:cc:14:61:fb:ad:18:07:1a: c9:76:54:2c:02:83:b1:02:17:6a:42:6a:f8:c0:1d: 8b:f0:86:7e:67:16:d0:32:d7:49:6b:0d:f0:b9:d2: fa:07:2a:b6:02:be:57:ee:02:eb:81:76:9e:23:c0: 80:2f:53:56:73:92:d9:68:98:cf:34:62:7c:26:56: 03:dc:3e:81:14:a5:84:4b:46:5d:4d:96:f0:88:4c: 5b:e2:68:c8:30:bb:7a:b4:d2:c2:8d:1c:49:9c:47: dd:55:91:9f:fd:df:96:f4:24:1f:dd:4e:c2:f4:41: 94:62:cb:47:c5:72:aa:22:35:3e:89:c9:b6:85:8d: a1:ff:22:7b:af:ed:3b:8c:db:52:d2:a9:35:3b:da: 65:b3:72:98:81:94:b6:5c:a4:f3:97:5c:26:52:fa: 53:41:14:dd:d8:1c:c7:36:e5:64:ac:e1:9c:d1:3c: 07:04:3c:72:fd:8c:7d:54:31:8b:cc:f5:cc:c8:49: 1a:d8:12:1b:5f:23:8a:a8:f3:be:28:94:41:3b:ac: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:81:71:89:50:73:5B:31:FC:11:68:4A:57:2D:0D:5D:DF:85:D6:3E X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/HIFxiVBzWzH8EWhKVy0NXd-F1j4.roa sbgp-ipAddrBlock: critical IPv4: 220.211.0.0/16 Signature Algorithm: sha256WithRSAEncryption 27:2c:db:98:dd:bb:8e:f5:61:b5:8b:1f:74:88:0b:c4:d4:42: 40:e0:53:69:27:5d:a3:c2:ae:7d:e7:e7:a2:34:b4:d6:0e:5c: 73:88:ca:fe:22:c4:56:e3:e2:bb:88:40:3f:10:11:53:d4:9d: 2e:35:64:e6:6c:fe:2e:1d:d7:9f:9f:dd:fd:a3:e5:8a:96:8e: 6b:7d:30:dc:d9:b8:e0:78:5e:27:f0:69:31:27:70:a5:91:69: 00:0e:cb:3a:53:5d:99:e8:13:30:c2:a0:fb:9d:a8:5b:e3:00: bc:31:63:5e:6a:24:be:0b:67:49:15:7d:8c:de:c7:4e:ff:05: 08:8c:1f:a3:b1:5c:e1:86:72:5c:f9:00:98:fa:8d:dd:54:60: 3c:cc:07:13:82:4a:2e:07:be:79:f4:80:67:5c:53:54:e9:81: 60:78:ac:33:20:a7:ec:4a:0f:7a:0a:56:f0:5e:ad:5d:51:a2: d3:c5:ce:af:50:fd:f9:7f:08:f8:a3:ef:3e:c4:97:50:1d:6a: 87:e1:d5:bb:a4:ad:09:d2:81:15:62:ac:0c:e9:72:d1:57:56: 23:07:e1:e1:58:be:40:56:67:1a:12:68:59:be:99:73:06:db: cf:e1:6b:18:44:fb:17:aa:62:74:d8:f0:af:92:4e:61:3a:ee: 5c:e6:b1:f6 -----BEGIN CERTIFICATE----- MIIEujCCA6KgAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNjAzMzEw NzQwMDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFDODE3MTg5NTA3MzVC MzFGQzExNjg0QTU3MkQwRDVEREY4NUQ2M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3nKhX2WFVkIG2r4r/fidJbZAasoiMcTvu482+EcoltTq+n45B U6J1RHH76am6Xl+4dALMFGH7rRgHGsl2VCwCg7ECF2pCavjAHYvwhn5nFtAy10lr DfC50voHKrYCvlfuAuuBdp4jwIAvU1ZzktlomM80YnwmVgPcPoEUpYRLRl1NlvCI TFviaMgwu3q00sKNHEmcR91VkZ/935b0JB/dTsL0QZRiy0fFcqoiNT6JybaFjaH/ Inuv7TuM21LSqTU72mWzcpiBlLZcpPOXXCZS+lNBFN3YHMc25WSs4ZzRPAcEPHL9 jH1UMYvM9czISRrYEhtfI4qo874olEE7rBlPAgMBAAGjggHWMIIB0jAdBgNVHQ4E FgQUHIFxiVBzWzH8EWhKVy0NXd+F1j4wHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80My9ISUZ4aVZCeld6SDhFV2hLVnkwTlhkLUYxajQucm9hMB4GCCsG AQUFBwEHAQH/BA8wDTALBAIAATAFAwMA3NMwDQYJKoZIhvcNAQELBQADggEBACcs 25jdu471YbWLH3SIC8TUQkDgU2knXaPCrn3n56I0tNYOXHOIyv4ixFbj4ruIQD8Q EVPUnS41ZOZs/i4d15+f3f2j5YqWjmt9MNzZuOB4XifwaTEncKWRaQAOyzpTXZno EzDCoPudqFvjALwxY15qJL4LZ0kVfYzex07/BQiMH6OxXOGGclz5AJj6jd1UYDzM BxOCSi4Hvnn0gGdcU1TpgWB4rDMgp+xKD3oKVvBerV1RotPFzq9Q/fl/CPij7z7E l1Adaofh1bukrQnSgRVirAzpctFXViMH4eFYvkBWZxoSaFm+mXMG28/haxhE+xeq YnTY8K+STmE67lzmsfY= -----END CERTIFICATE-----Generated at Sun Apr 19 09:42:55 2026 by rpki-client