$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/toYxsCxjAKW4AnlhCgsq_ZBJ5KA.roa File: toYxsCxjAKW4AnlhCgsq_ZBJ5KA.roa (raw, json) Hash identifier: sGNI6B0W1hhLqzeNH4XzeQ3zqN8qFgRijJ1WSduUvjs= Subject key identifier: B6:86:31:B0:2C:63:00:A5:B8:02:79:61:0A:0B:2A:FD:90:49:E4:A0 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: BF Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/toYxsCxjAKW4AnlhCgsq_ZBJ5KA.roa Signing time: Tue 31 Mar 2026 07:39:38 +0000 ROA not before: Tue 31 Mar 2026 07:39:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2527 IP address blocks: 207.65.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Mar 31 07:39:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B68631B02C6300A5B80279610A0B2AFD9049E4A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:90:85:13:e8:18:b2:f0:fa:43:7c:cb:e9:35: e9:b1:43:94:35:a6:ab:ec:ee:3b:6b:e5:a0:3f:6d: 59:30:94:de:db:9e:e4:56:5d:2f:fe:94:b1:69:57: 94:85:e8:28:f0:8a:ee:1e:66:2f:54:14:7b:ab:a2: e9:ff:b4:2e:aa:25:3b:56:63:38:1b:44:3c:ba:b1: 2b:97:14:55:8b:ad:a7:1b:41:5f:a7:ad:71:c6:c3: dd:7d:36:0a:42:e4:44:bd:30:6c:2e:00:d4:8d:6e: 52:c8:07:52:88:91:ca:0f:4d:cd:a7:c3:0e:a5:8c: 6d:8c:dc:3a:5a:f6:b2:13:39:c6:0e:1f:e4:72:09: e7:85:0c:99:0a:60:77:b2:c8:3e:42:8c:32:09:00: 31:4e:4f:8a:c6:18:fa:5a:4c:72:8c:4f:14:0a:ba: 58:69:e1:4b:21:64:4c:c7:ae:f6:1c:75:86:67:a2: 84:18:26:cc:6d:e9:eb:29:80:7a:24:9b:3c:3b:55: 2a:e0:c0:79:0f:c0:f3:73:f1:4e:9e:f1:ea:bd:27: ff:28:ad:5b:9e:49:b6:06:82:61:a3:f9:82:11:d5: a7:2c:0c:ba:d1:99:2d:8f:64:2b:3b:31:a1:aa:cb: 2a:eb:7d:1f:18:5d:ac:c6:19:b4:eb:6b:b2:2d:82: 35:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:86:31:B0:2C:63:00:A5:B8:02:79:61:0A:0B:2A:FD:90:49:E4:A0 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/toYxsCxjAKW4AnlhCgsq_ZBJ5KA.roa sbgp-ipAddrBlock: critical IPv4: 207.65.128.0/17 Signature Algorithm: sha256WithRSAEncryption a9:96:b5:9a:7b:d4:a3:66:72:f3:44:ef:fe:d5:da:31:ba:66: fd:20:8d:7f:c3:59:a8:e5:d8:95:30:6f:dc:12:b4:5c:76:c3: ce:1b:0f:90:72:33:d2:c4:4d:86:29:cb:4d:52:1b:1a:a2:81: 81:53:4c:12:4d:01:0f:b3:7e:fd:9f:dd:db:e5:1a:ac:73:a2: 42:d9:06:78:9a:60:3f:c9:e4:2e:09:b8:18:ec:00:8d:92:b0: 8e:d1:d0:15:6e:55:8e:6f:fa:b7:0b:d8:8f:3e:6d:cd:07:a6: b3:70:ae:ea:cb:2c:99:45:c8:f5:9f:91:31:64:09:ad:f3:61: c0:99:5b:a7:99:8c:b7:fd:0e:fc:60:a4:d8:76:1b:3b:31:98: be:1b:1b:a4:0e:94:54:6f:9b:77:b9:d5:28:71:5b:4d:ec:8f: fe:a5:13:04:5e:0b:c9:dd:c4:cf:d0:ff:c3:ae:9c:48:1d:b9: 78:f7:f5:e1:5c:db:c1:eb:a1:b9:17:8f:cc:06:3b:91:6c:e1: 98:b0:92:64:35:78:03:6f:9e:e9:11:0c:7a:d0:8b:1c:3f:80: 31:27:fc:f8:29:38:a8:54:a2:64:6b:5d:28:e8:55:c5:55:f5: 4e:0d:06:3b:e7:74:7b:92:a8:50:d8:f2:d1:d6:c0:e8:28:af: 66:50:1f:82 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNjAzMzEw NzM5MzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI2ODYzMUIwMkM2MzAw QTVCODAyNzk2MTBBMEIyQUZEOTA0OUU0QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNkIUT6Biy8PpDfMvpNemxQ5Q1pqvs7jtr5aA/bVkwlN7bnuRW XS/+lLFpV5SF6Cjwiu4eZi9UFHuroun/tC6qJTtWYzgbRDy6sSuXFFWLracbQV+n rXHGw919NgpC5ES9MGwuANSNblLIB1KIkcoPTc2nww6ljG2M3Dpa9rITOcYOH+Ry CeeFDJkKYHeyyD5CjDIJADFOT4rGGPpaTHKMTxQKulhp4UshZEzHrvYcdYZnooQY Jsxt6espgHokmzw7VSrgwHkPwPNz8U6e8eq9J/8orVueSbYGgmGj+YIR1acsDLrR mS2PZCs7MaGqyyrrfR8YXazGGbTra7ItgjX3AgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUtoYxsCxjAKW4AnlhCgsq/ZBJ5KAwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80My90b1l4c0N4akFLVzRBbmxoQ2dzcV9aQko1S0Eucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHz0GAMA0GCSqGSIb3DQEBCwUAA4IBAQCp lrWae9SjZnLzRO/+1doxumb9II1/w1mo5diVMG/cErRcdsPOGw+QcjPSxE2GKctN UhsaooGBU0wSTQEPs379n93b5Rqsc6JC2QZ4mmA/yeQuCbgY7ACNkrCO0dAVblWO b/q3C9iPPm3NB6azcK7qyyyZRcj1n5ExZAmt82HAmVunmYy3/Q78YKTYdhs7MZi+ GxukDpRUb5t3udUocVtN7I/+pRMEXgvJ3cTP0P/DrpxIHbl49/XhXNvB66G5F4/M BjuRbOGYsJJkNXgDb57pEQx60IscP4AxJ/z4KTioVKJka10o6FXFVfVODQY753R7 kqhQ2PLR1sDoKK9mUB+C -----END CERTIFICATE-----Generated at Fri Apr 17 11:50:55 2026 by rpki-client