$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/T0AGha7SFMPC1fiTD8WgLKGPdJI.roa File: T0AGha7SFMPC1fiTD8WgLKGPdJI.roa (raw, json) Hash identifier: lE9zfsyo0chNdeIpIRn5wmae5TdHGQ5AaVmpO+qbhu4= Subject key identifier: 4F:40:06:85:AE:D2:14:C3:C2:D5:F8:93:0F:C5:A0:2C:A1:8F:74:92 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: C3 Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/T0AGha7SFMPC1fiTD8WgLKGPdJI.roa Signing time: Tue 31 Mar 2026 07:39:40 +0000 ROA not before: Tue 31 Mar 2026 07:39:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2527 IP address blocks: 216.153.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Mar 31 07:39:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4F400685AED214C3C2D5F8930FC5A02CA18F7492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4d:66:35:f2:a5:b6:12:14:06:c6:1a:d6:ce: 7a:2b:87:a0:af:2b:40:80:da:67:32:10:44:d2:42: dd:f7:fc:8a:1a:d0:4d:cf:8f:32:cd:bb:82:3b:47: 15:99:28:09:35:17:08:e2:b3:d7:10:83:b8:51:88: bc:71:26:73:6f:23:53:31:24:d4:ff:68:77:bb:bf: 18:f9:41:fb:4b:ab:e9:e4:b6:86:67:5c:b1:ec:8a: 1f:a8:5e:8c:73:be:6d:8f:fd:4e:b9:4c:d9:9f:e2: 2b:4a:03:97:71:e3:31:c1:32:fd:41:1e:3e:01:55: 1c:23:42:93:04:99:3d:90:a4:ac:c3:8f:fc:d7:5d: eb:b5:df:2a:a5:ca:ae:96:13:40:2b:ca:41:20:73: 40:a9:b1:9d:f9:63:07:f9:bd:49:1c:eb:32:7b:29: 09:20:75:c2:7f:e0:cd:56:d1:77:9e:4c:b6:3e:77: a2:4a:f8:df:bd:50:47:a0:fb:ac:71:77:8d:f4:d8: cd:36:2b:05:12:5d:5c:8f:d9:8c:4f:8c:aa:23:81: 29:22:34:c1:88:92:26:0f:d7:84:3f:c0:54:df:fd: 8d:c1:9c:0c:c9:ff:88:9b:6d:41:fd:ae:42:ca:64: 32:ae:56:b7:09:db:5a:a6:18:2c:39:08:02:b0:c9: c4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:40:06:85:AE:D2:14:C3:C2:D5:F8:93:0F:C5:A0:2C:A1:8F:74:92 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/T0AGha7SFMPC1fiTD8WgLKGPdJI.roa sbgp-ipAddrBlock: critical IPv4: 216.153.64.0/18 Signature Algorithm: sha256WithRSAEncryption 2f:8f:e7:30:58:52:65:58:91:99:c7:f5:e2:da:a1:e7:42:f2: 10:6f:59:a0:5e:80:36:17:7b:2e:de:3f:ba:42:49:06:11:22: f0:06:6f:62:49:c2:5b:f9:16:a6:35:79:18:ab:eb:cd:52:74: 5d:92:48:3e:db:ba:eb:24:ae:4a:5f:19:10:af:eb:5b:97:7e: 04:20:46:f9:da:88:8b:a9:14:46:6a:6d:49:20:c9:39:57:32: e5:0b:d3:96:92:ba:5d:ca:ba:eb:f0:5f:f1:d5:aa:46:56:bc: ee:d4:39:77:11:cc:de:26:fa:c8:b0:45:bd:54:0f:11:88:11: 21:89:2e:37:1f:85:c4:d4:b2:28:26:5b:98:90:84:17:52:d8: cd:ae:dd:b0:b0:14:a4:4f:ed:a8:59:10:5e:bd:bd:47:39:c4: b9:43:6e:01:bf:f0:7f:a2:a4:a1:94:00:13:4d:8e:2b:f7:2b: 9e:11:47:17:43:91:8a:38:e3:79:58:7d:20:56:b9:ea:18:a9: 61:87:72:45:d4:db:17:fc:b1:6e:70:f4:f1:b3:0c:55:83:7b: d3:4b:a7:e5:5e:03:f8:f4:f7:b3:b4:3f:ad:d7:20:f3:c5:92: 88:25:39:8b:e1:b4:35:a0:93:06:67:62:ca:d8:31:7e:c2:56: d2:ef:e6:c3 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNjAzMzEw NzM5NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRGNDAwNjg1QUVEMjE0 QzNDMkQ1Rjg5MzBGQzVBMDJDQTE4Rjc0OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrTWY18qW2EhQGxhrWznorh6CvK0CA2mcyEETSQt33/Ioa0E3P jzLNu4I7RxWZKAk1Fwjis9cQg7hRiLxxJnNvI1MxJNT/aHe7vxj5QftLq+nktoZn XLHsih+oXoxzvm2P/U65TNmf4itKA5dx4zHBMv1BHj4BVRwjQpMEmT2QpKzDj/zX Xeu13yqlyq6WE0ArykEgc0CpsZ35Ywf5vUkc6zJ7KQkgdcJ/4M1W0XeeTLY+d6JK +N+9UEeg+6xxd4302M02KwUSXVyP2YxPjKojgSkiNMGIkiYP14Q/wFTf/Y3BnAzJ /4ibbUH9rkLKZDKuVrcJ21qmGCw5CAKwycR9AgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUT0AGha7SFMPC1fiTD8WgLKGPdJIwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80My9UMEFHaGE3U0ZNUEMxZmlURDhXZ0xLR1BkSkkucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG2JlAMA0GCSqGSIb3DQEBCwUAA4IBAQAv j+cwWFJlWJGZx/Xi2qHnQvIQb1mgXoA2F3su3j+6QkkGESLwBm9iScJb+RamNXkY q+vNUnRdkkg+27rrJK5KXxkQr+tbl34EIEb52oiLqRRGam1JIMk5VzLlC9OWkrpd yrrr8F/x1apGVrzu1Dl3EczeJvrIsEW9VA8RiBEhiS43H4XE1LIoJluYkIQXUtjN rt2wsBSkT+2oWRBevb1HOcS5Q24Bv/B/oqShlAATTY4r9yueEUcXQ5GKOON5WH0g VrnqGKlhh3JF1NsX/LFucPTxswxVg3vTS6flXgP49PeztD+t1yDzxZKIJTmL4bQ1 oJMGZ2LK2DF+wlbS7+bD -----END CERTIFICATE-----Generated at Sun Apr 19 09:26:57 2026 by rpki-client