$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/JUOKQ2AOTgN3ox41vNs_W2J08xo.roa File: JUOKQ2AOTgN3ox41vNs_W2J08xo.roa (raw, json) Hash identifier: 5KU7kBOYUNQdeVDlgWoGh31sPgX2BEIalz770bZ6LIk= Subject key identifier: 25:43:8A:43:60:0E:4E:03:77:A3:1E:35:BC:DB:3F:5B:62:74:F3:1A Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0191 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/JUOKQ2AOTgN3ox41vNs_W2J08xo.roa Signing time: Tue 31 Mar 2026 07:38:18 +0000 ROA not before: Tue 31 Mar 2026 07:38:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10021 IP address blocks: 202.7.108.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Mar 31 07:38:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=25438A43600E4E0377A31E35BCDB3F5B6274F31A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:66:b9:3b:02:59:a5:09:9c:d9:80:8d:a3:d8: 05:c4:c2:dc:bc:56:6b:58:2d:d6:21:03:95:b0:34: 35:2d:9a:62:bd:1c:56:ca:4f:db:55:8d:86:f5:8b: 6e:2d:e5:8c:8a:aa:dc:cc:1d:b1:30:0d:29:cf:3e: 90:4b:51:5d:a7:ae:66:e8:3a:92:bc:6b:61:b5:98: 92:e7:7e:6b:63:43:d0:b4:10:5c:c0:fc:d5:39:20: af:8c:18:0a:53:df:08:5c:bc:d4:a6:ba:3f:9d:e5: 83:6f:31:b5:51:8d:f5:77:0e:a6:c0:4c:e2:df:03: 2b:7e:1a:47:c4:c9:a1:85:b7:a2:a1:45:71:0a:b7: 0d:6c:39:cb:78:5c:6e:0d:a1:15:3f:0e:98:44:82: 79:d7:e5:e9:02:3a:ec:7a:11:2a:a6:74:0f:08:85: 84:6f:98:02:68:ac:a8:34:00:a0:38:4b:74:2e:e4: 32:37:f1:6b:73:d1:48:f1:40:dd:e4:c7:8b:65:98: 9d:8d:45:03:b2:35:93:d4:44:7f:49:37:6f:7e:ff: f7:d0:7a:b9:1c:ef:4c:d6:e3:8c:6c:33:3e:42:5f: a8:06:88:d1:60:fc:69:a6:17:8f:0f:5e:95:0f:01: 95:4a:9d:87:53:36:92:17:14:a2:ed:95:c7:21:b3: 41:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:43:8A:43:60:0E:4E:03:77:A3:1E:35:BC:DB:3F:5B:62:74:F3:1A X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/JUOKQ2AOTgN3ox41vNs_W2J08xo.roa sbgp-ipAddrBlock: critical IPv4: 202.7.108.0/22 Signature Algorithm: sha256WithRSAEncryption c6:2b:ac:15:2d:38:0a:81:c1:88:39:fb:1c:78:31:88:a3:7d: da:be:d9:ba:ac:63:c3:b7:7c:3f:61:9b:c9:0d:a9:df:65:c8: 41:e5:a4:99:e6:81:30:ca:76:7c:7b:b1:e0:2c:ab:fa:fa:2f: 96:77:91:fe:c6:87:dc:49:fd:45:9b:a7:d9:bd:40:84:af:64: 71:3b:41:88:40:66:92:8c:3d:23:76:3c:5e:79:3c:a7:7b:ce: 2f:bb:d3:53:8c:84:6b:15:61:9e:f3:69:ba:35:79:8c:14:cd: 40:f2:9c:d4:f7:3d:07:db:2c:10:25:0e:b4:75:48:39:08:2f: 52:45:0d:58:34:a8:82:03:0a:9b:59:26:a8:00:43:e7:05:54: 37:88:b8:59:b1:7e:9c:5c:be:5b:b4:4f:7e:8d:6e:bb:ac:02: 3d:ad:47:64:26:40:a7:64:bf:0d:07:2c:00:60:19:12:6a:51: 94:8c:ed:ae:05:31:0f:1b:74:57:b6:cc:4e:65:1f:fb:0a:65: 59:8a:aa:0a:3c:fe:80:cd:b8:e8:78:f8:76:3e:27:2c:95:e5: 7a:bb:c1:4c:33:d2:c6:55:9e:db:23:10:f4:d4:f9:f9:16:79: b8:00:96:50:03:27:1e:67:65:94:c7:95:f9:a8:6b:79:83:be: c9:ac:15:b0 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNjAzMzEw NzM4MThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI1NDM4QTQzNjAwRTRF MDM3N0EzMUUzNUJDREIzRjVCNjI3NEYzMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Zrk7AlmlCZzZgI2j2AXEwty8VmtYLdYhA5WwNDUtmmK9HFbK T9tVjYb1i24t5YyKqtzMHbEwDSnPPpBLUV2nrmboOpK8a2G1mJLnfmtjQ9C0EFzA /NU5IK+MGApT3whcvNSmuj+d5YNvMbVRjfV3DqbATOLfAyt+GkfEyaGFt6KhRXEK tw1sOct4XG4NoRU/DphEgnnX5ekCOux6ESqmdA8IhYRvmAJorKg0AKA4S3Qu5DI3 8Wtz0UjxQN3kx4tlmJ2NRQOyNZPURH9JN29+//fQerkc70zW44xsMz5CX6gGiNFg /GmmF48PXpUPAZVKnYdTNpIXFKLtlcchs0GpAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUJUOKQ2AOTgN3ox41vNs/W2J08xowHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNDY5L0pVT0tRMkFPVGdOM294NDF2TnNfVzJKMDh4by5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKB2wwDQYJKoZIhvcNAQELBQADggEB AMYrrBUtOAqBwYg5+xx4MYijfdq+2bqsY8O3fD9hm8kNqd9lyEHlpJnmgTDKdnx7 seAsq/r6L5Z3kf7Gh9xJ/UWbp9m9QISvZHE7QYhAZpKMPSN2PF55PKd7zi+701OM hGsVYZ7zabo1eYwUzUDynNT3PQfbLBAlDrR1SDkIL1JFDVg0qIIDCptZJqgAQ+cF VDeIuFmxfpxcvlu0T36NbrusAj2tR2QmQKdkvw0HLABgGRJqUZSM7a4FMQ8bdFe2 zE5lH/sKZVmKqgo8/oDNuOh4+HY+JyyV5Xq7wUwz0sZVntsjEPTU+fkWebgAllAD Jx5nZZTHlfmoa3mDvsmsFbA= -----END CERTIFICATE-----Generated at Fri Apr 17 17:42:21 2026 by rpki-client