$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/O-nYDpPQRWbL2v7UzED-GiZrYZk.roa File: O-nYDpPQRWbL2v7UzED-GiZrYZk.roa (raw, json) Hash identifier: qq3f0hSOg/n4hnopmtmiUGHK5DRlVxWvKfYU0gpOLMg= Subject key identifier: 3B:E9:D8:0E:93:D0:45:66:CB:DA:FE:D4:CC:40:FE:1A:26:6B:61:99 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0206 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/O-nYDpPQRWbL2v7UzED-GiZrYZk.roa Signing time: Tue 31 Mar 2026 07:40:14 +0000 ROA not before: Tue 31 Mar 2026 07:40:14 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2527 IP address blocks: 133.114.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Mar 31 07:40:14 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3BE9D80E93D04566CBDAFED4CC40FE1A266B6199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ad:82:af:86:1b:ce:c2:02:b9:aa:29:00:a5: b8:dd:87:a0:04:e5:93:51:da:1f:e1:c6:ee:45:a7: e3:1d:13:26:b4:c8:2f:f2:81:d3:90:39:85:35:27: 6c:8d:85:68:8f:8e:42:90:dd:77:50:12:e4:38:fa: 2d:ee:bf:9a:47:38:a1:9a:a1:11:fd:18:f9:04:34: 16:fd:80:ed:62:7e:7a:2f:cd:88:18:9f:42:36:7f: 32:8d:20:ad:ee:02:15:c3:75:ab:4f:86:6b:30:a0: e8:a5:a1:05:c7:39:3b:d0:4f:c8:73:4c:b0:ff:8b: b3:60:ef:49:cc:90:15:60:b3:b3:b2:8a:e3:93:be: fc:4c:3d:2c:9e:93:7a:96:36:80:50:e7:5f:ca:3e: 34:83:9c:93:21:92:c8:9c:b3:bf:9a:ce:a5:8f:63: 41:45:e7:ec:c9:9c:2e:91:ae:02:43:3e:bf:5a:ff: 78:c8:19:94:88:62:eb:aa:d8:cd:d9:a0:db:0f:8f: 6e:0b:1c:23:1d:ba:c1:8c:a9:de:70:fb:53:c2:49: e5:1a:91:34:bb:3f:84:10:59:d7:5c:52:cb:fb:40: 77:ab:9e:10:fc:0b:9b:b4:47:f5:f9:93:ba:6b:5f: b0:e8:0f:4f:96:d8:3c:0e:65:b8:08:9e:1f:f6:6c: a4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E9:D8:0E:93:D0:45:66:CB:DA:FE:D4:CC:40:FE:1A:26:6B:61:99 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/O-nYDpPQRWbL2v7UzED-GiZrYZk.roa sbgp-ipAddrBlock: critical IPv4: 133.114.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:6c:6e:85:af:2f:1b:f0:8f:d0:76:23:0b:fd:44:2d:35:ae: 77:de:69:d9:57:30:66:98:64:ad:86:b2:cc:65:0d:56:87:01: a6:ba:ff:62:a5:6b:48:dd:e1:fd:2b:d5:b0:0c:c8:7f:59:89: 1b:b9:69:dc:e2:00:c3:93:2c:2b:7d:8d:25:2b:64:79:c7:46: 52:2d:a5:d5:a2:62:78:e2:34:fb:b2:9e:4c:7b:10:0b:47:99: c3:eb:73:5d:18:70:1d:e5:1e:9b:8e:99:c0:61:a2:05:5c:a3: a2:fb:94:00:26:fe:da:94:b3:c6:11:00:f4:ca:13:c6:f0:9e: b6:38:fa:94:ce:4c:d9:e3:8f:93:e4:8d:d4:ba:e1:42:9b:2c: 29:c5:e0:86:28:52:84:12:29:00:e1:98:1d:e4:b1:a9:1b:2b: 45:3c:74:7e:a6:d1:59:c5:23:87:f9:d4:ac:fa:f2:47:32:40: fa:69:ee:5a:2c:4d:03:b3:ad:2c:51:ed:c3:59:7e:47:f8:c6: 6f:5b:94:e0:cb:d7:b9:1c:7b:5d:d6:43:ff:1b:20:f3:21:28: 2c:44:f6:ee:cd:54:b5:e7:cb:15:27:dc:61:3d:a2:72:c8:b5: 47:ae:69:4e:4f:de:4f:b4:e9:60:2f:73:71:12:a3:a7:24:ed: 91:9c:7b:41 -----BEGIN CERTIFICATE----- MIIEujCCA6KgAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNjAzMzEw NzQwMTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNCRTlEODBFOTNEMDQ1 NjZDQkRBRkVENENDNDBGRTFBMjY2QjYxOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCurYKvhhvOwgK5qikApbjdh6AE5ZNR2h/hxu5Fp+MdEya0yC/y gdOQOYU1J2yNhWiPjkKQ3XdQEuQ4+i3uv5pHOKGaoRH9GPkENBb9gO1ifnovzYgY n0I2fzKNIK3uAhXDdatPhmswoOiloQXHOTvQT8hzTLD/i7Ng70nMkBVgs7OyiuOT vvxMPSyek3qWNoBQ51/KPjSDnJMhksics7+azqWPY0FF5+zJnC6RrgJDPr9a/3jI GZSIYuuq2M3ZoNsPj24LHCMdusGMqd5w+1PCSeUakTS7P4QQWddcUsv7QHernhD8 C5u0R/X5k7prX7DoD0+W2DwOZbgInh/2bKRxAgMBAAGjggHWMIIB0jAdBgNVHQ4E FgQUO+nYDpPQRWbL2v7UzED+GiZrYZkwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80My9PLW5ZRHBQUVJXYkwydjdVekVELUdpWnJZWmsucm9hMB4GCCsG AQUFBwEHAQH/BA8wDTALBAIAATAFAwMAhXIwDQYJKoZIhvcNAQELBQADggEBAJls boWvLxvwj9B2Iwv9RC01rnfeadlXMGaYZK2GssxlDVaHAaa6/2Kla0jd4f0r1bAM yH9ZiRu5adziAMOTLCt9jSUrZHnHRlItpdWiYnjiNPuynkx7EAtHmcPrc10YcB3l HpuOmcBhogVco6L7lAAm/tqUs8YRAPTKE8bwnrY4+pTOTNnjj5PkjdS64UKbLCnF 4IYoUoQSKQDhmB3ksakbK0U8dH6m0VnFI4f51Kz68kcyQPpp7losTQOzrSxR7cNZ fkf4xm9blODL17kce13WQ/8bIPMhKCxE9u7NVLXnyxUn3GE9onLItUeuaU5P3k+0 6WAvc3ESo6ck7ZGce0E= -----END CERTIFICATE-----Generated at Sun Apr 19 10:05:27 2026 by rpki-client