$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/hl29NUhfRm48SRxsige7QqzT2yE.roa File: hl29NUhfRm48SRxsige7QqzT2yE.roa (raw, json) Hash identifier: 8Y8+IO1l6F0QjmdBMXa1Y2lf2EQziYkpVqRmdnV/770= Subject key identifier: 86:5D:BD:35:48:5F:46:6E:3C:49:1C:6C:8A:07:BB:42:AC:D3:DB:21 Certificate issuer: /CN=0FEDD4D310C95068C87E2DE6BF0719BAD9AC0A43 Certificate serial: 64 Authority key identifier: 0F:ED:D4:D3:10:C9:50:68:C8:7E:2D:E6:BF:07:19:BA:D9:AC:0A:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/D-3U0xDJUGjIfi3mvwcZutmsCkM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/hl29NUhfRm48SRxsige7QqzT2yE.roa Signing time: Tue 31 Mar 2026 07:40:21 +0000 ROA not before: Tue 31 Mar 2026 07:40:21 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2527 IP address blocks: 90.149.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/D-3U0xDJUGjIfi3mvwcZutmsCkM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/D-3U0xDJUGjIfi3mvwcZutmsCkM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/D-3U0xDJUGjIfi3mvwcZutmsCkM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FEDD4D310C95068C87E2DE6BF0719BAD9AC0A43 Validity Not Before: Mar 31 07:40:21 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=865DBD35485F466E3C491C6C8A07BB42ACD3DB21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:74:24:2c:bf:bb:43:93:ef:f6:ad:69:f3:0f: 3c:ef:ac:ff:ce:27:9d:6b:ab:6f:61:50:cd:0b:79: e2:49:22:7e:5e:7b:23:63:09:5c:12:bf:8a:c3:ae: d1:1f:f8:1d:22:39:e1:a6:be:29:a5:cb:4d:d9:ac: 21:0c:80:26:63:bb:58:6b:bd:a9:0d:c0:cf:33:74: 49:8e:b4:2b:df:57:2c:9a:b8:ce:88:a4:c9:c7:2e: 57:8b:b0:db:89:5b:c2:17:eb:47:3b:bb:83:36:f4: 32:fb:cb:e5:0e:de:d4:11:ec:cf:6f:62:9c:d3:4c: d7:b6:04:d6:98:a4:85:98:4d:94:f9:99:19:6e:3d: 03:06:f9:0e:b1:5f:6c:b3:cf:76:ff:a7:3e:bd:94: 61:33:e8:0b:02:5c:1a:37:4d:b1:8d:9f:fb:31:ef: 0d:11:75:ed:4b:71:79:1a:00:d6:5b:66:ab:38:66: 37:bb:f5:e8:cc:c6:de:48:c7:fd:26:75:d2:26:ab: 2b:ea:fa:d8:6b:65:97:f5:a6:24:fb:3d:4f:e2:56: 29:d3:1b:ae:e1:44:c6:fb:44:76:f6:42:2a:52:5d: 70:76:49:9c:42:d0:ed:a0:2b:24:f5:31:9c:92:18: 16:8a:85:77:85:de:5c:51:a0:9f:49:4b:68:ec:75: 52:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:5D:BD:35:48:5F:46:6E:3C:49:1C:6C:8A:07:BB:42:AC:D3:DB:21 X509v3 Authority Key Identifier: keyid:0F:ED:D4:D3:10:C9:50:68:C8:7E:2D:E6:BF:07:19:BA:D9:AC:0A:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/D-3U0xDJUGjIfi3mvwcZutmsCkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/D-3U0xDJUGjIfi3mvwcZutmsCkM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/hl29NUhfRm48SRxsige7QqzT2yE.roa sbgp-ipAddrBlock: critical IPv4: 90.149.0.0/16 Signature Algorithm: sha256WithRSAEncryption a2:75:5e:44:0e:94:9d:9a:c4:07:00:fa:e3:55:09:a3:2e:fb: 79:f8:be:79:cf:11:34:c3:1b:d1:c4:bf:35:95:3d:e8:0d:aa: 19:5f:31:58:2e:14:c2:98:a6:7e:17:7d:14:cf:08:0c:ea:96: 9a:e6:71:ee:06:cb:42:88:e2:85:77:31:05:90:36:df:85:e0: 11:d6:5f:f6:8f:3e:08:23:3b:6c:c9:77:7c:12:9f:56:93:17: 71:a2:9c:da:ae:77:d3:d8:73:23:31:f8:fa:b2:82:b4:7f:c2: ce:85:c7:3f:08:39:b7:9f:e8:42:3f:e8:c9:f7:77:58:68:f5: 4d:47:86:08:75:aa:4e:c4:ce:fa:a9:16:4d:b6:56:2e:a6:8e: bd:83:02:b0:87:4a:b8:77:86:fc:5c:da:35:d2:ed:a6:79:f6: e8:22:48:54:34:76:c6:14:bd:0b:eb:51:4f:7a:00:15:09:c2: 6a:4b:d5:0c:50:5f:74:23:c4:1a:1f:2d:a7:28:ee:50:f4:f0: c9:a7:da:cd:52:a1:00:41:cc:33:b9:9c:99:b3:90:3b:aa:b1: dd:ff:cb:9c:ce:0a:5f:60:96:5e:ce:a3:6d:05:bd:33:96:86: 3a:52:2a:a6:0f:62:42:43:ee:73:2a:6b:0b:88:e6:62:5c:8e: 6e:39:07:90 -----BEGIN CERTIFICATE----- MIIEuTCCA6GgAwIBAgIBZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwRkVE RDREMzEwQzk1MDY4Qzg3RTJERTZCRjA3MTlCQUQ5QUMwQTQzMB4XDTI2MDMzMTA3 NDAyMVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODY1REJEMzU0ODVGNDY2 RTNDNDkxQzZDOEEwN0JCNDJBQ0QzREIyMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMt0JCy/u0OT7/atafMPPO+s/84nnWurb2FQzQt54kkifl57I2MJ XBK/isOu0R/4HSI54aa+KaXLTdmsIQyAJmO7WGu9qQ3AzzN0SY60K99XLJq4zoik yccuV4uw24lbwhfrRzu7gzb0MvvL5Q7e1BHsz29inNNM17YE1pikhZhNlPmZGW49 Awb5DrFfbLPPdv+nPr2UYTPoCwJcGjdNsY2f+zHvDRF17UtxeRoA1ltmqzhmN7v1 6MzG3kjH/SZ10iarK+r62Gtll/WmJPs9T+JWKdMbruFExvtEdvZCKlJdcHZJnELQ 7aArJPUxnJIYFoqFd4XeXFGgn0lLaOx1UvsCAwEAAaOCAdYwggHSMB0GA1UdDgQW BBSGXb01SF9GbjxJHGyKB7tCrNPbITAfBgNVHSMEGDAWgBQP7dTTEMlQaMh+Lea/ Bxm62awKQzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDMvRC0zVTB4REpVR2pJZmkzbXZ3Y1p1dG1zQ2tNLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvRC0zVTB4REpVR2pJZmkzbXZ3Y1p1dG1z Q2tNLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUF BzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL2hsMjlOVWhmUm00OFNSeHNpZ2U3UXF6VDJ5RS5yb2EwHgYIKwYB BQUHAQcBAf8EDzANMAsEAgABMAUDAwBalTANBgkqhkiG9w0BAQsFAAOCAQEAonVe RA6UnZrEBwD641UJoy77efi+ec8RNMMb0cS/NZU96A2qGV8xWC4Uwpimfhd9FM8I DOqWmuZx7gbLQojihXcxBZA234XgEdZf9o8+CCM7bMl3fBKfVpMXcaKc2q5309hz IzH4+rKCtH/CzoXHPwg5t5/oQj/oyfd3WGj1TUeGCHWqTsTO+qkWTbZWLqaOvYMC sIdKuHeG/FzaNdLtpnn26CJIVDR2xhS9C+tRT3oAFQnCakvVDFBfdCPEGh8tpyju UPTwyafazVKhAEHMM7mcmbOQO6qx3f/LnM4KX2CWXs6jbQW9M5aGOlIqpg9iQkPu cyprC4jmYlyObjkHkA== -----END CERTIFICATE-----Generated at Sun Apr 19 10:20:25 2026 by rpki-client