$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/DcEvt1TZjbYcOa2bvpyt0M4m3yQ.roa File: DcEvt1TZjbYcOa2bvpyt0M4m3yQ.roa (raw, json) Hash identifier: lJHSGdcpOj6Tb9OWLvxflkQWc1VYvQTsQyer9J+FuiQ= Subject key identifier: 0D:C1:2F:B7:54:D9:8D:B6:1C:39:AD:9B:BE:9C:AD:D0:CE:26:DF:24 Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 7D Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/DcEvt1TZjbYcOa2bvpyt0M4m3yQ.roa Signing time: Sun 01 Mar 2026 01:31:17 +0000 ROA not before: Sun 01 Mar 2026 01:31:17 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 59125 IP address blocks: 1.21.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Mar 1 01:31:17 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=0DC12FB754D98DB61C39AD9BBE9CADD0CE26DF24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e9:84:78:b4:c1:27:4d:89:df:65:ed:9b:ae: b3:56:80:24:09:62:0b:c0:31:d2:ef:9c:56:ce:e0: 96:09:49:b3:98:53:67:7c:c5:c8:dc:1a:e1:63:f6: c0:73:b5:01:f0:f0:f7:70:0f:46:c4:5e:f6:bb:85: 89:96:10:80:0e:27:dc:42:aa:2d:80:0c:ad:0b:78: 84:9b:80:aa:73:24:eb:77:b6:80:52:10:1d:d0:a8: 2c:c9:6b:e3:61:e0:f4:c0:7c:f5:40:32:93:10:51: 0d:45:7a:45:95:5e:93:6e:c7:53:21:c4:8b:ea:9d: a0:87:c9:08:40:a0:fc:36:d0:31:a9:59:bc:ca:e4: 03:b3:c3:fc:2c:b6:96:90:3e:c9:41:6c:2b:19:3d: 2e:d5:59:f0:1f:ed:af:e1:ad:68:f7:d7:d3:ae:1a: da:ad:87:11:e1:2c:7d:00:a6:41:70:cb:bd:17:dc: ea:a6:26:5f:b4:b8:54:ea:d3:dc:c3:dd:a2:1f:0b: d3:85:51:69:6e:7b:ab:6f:6b:f8:7f:f4:05:3f:2e: c2:48:12:e7:db:64:2b:f8:ca:57:02:bc:a8:42:3a: 90:01:15:6f:1f:86:cc:df:ec:60:e6:7c:43:bf:9e: f9:4b:16:44:96:46:96:ac:dc:3e:9a:a7:d3:84:3d: 75:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C1:2F:B7:54:D9:8D:B6:1C:39:AD:9B:BE:9C:AD:D0:CE:26:DF:24 X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/DcEvt1TZjbYcOa2bvpyt0M4m3yQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.21.96.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:36:75:1e:72:96:e0:6e:9a:ea:68:88:be:19:b5:5a:d3:ce: f7:12:04:81:4d:c5:a6:cc:26:ae:0f:c0:2f:e1:1c:d4:13:15: 9f:e1:0f:8e:3a:44:1f:c1:3f:0d:8f:73:bb:60:eb:e6:19:23: 83:d9:a1:d9:79:1e:0a:23:58:cf:f2:f1:df:a4:6d:d1:5c:22: f1:a2:5f:4b:fa:21:ce:f5:be:e0:5b:90:b3:ea:ff:f3:00:e9: 48:27:33:87:70:5e:b6:b2:47:dc:fb:71:ec:b9:aa:27:39:5a: 61:4f:a5:bd:e5:44:01:0a:24:b8:ec:20:e9:af:d4:d4:5a:5f: bc:f5:a1:74:1c:cb:17:7e:44:5f:02:ca:4b:45:c2:0a:ad:ef: a5:e8:ba:2d:b1:2c:09:01:5d:72:fc:3f:48:4b:63:75:f6:a2: 7c:88:dd:6e:de:8c:45:71:58:b0:36:a8:3d:d0:d8:31:b3:95: 44:c8:e2:83:8a:c4:6e:07:1f:6a:ba:19:6c:37:28:b5:45:cb: 49:e5:f9:42:4a:8c:93:93:c3:3c:5d:d4:d4:ee:9c:d6:76:43: d9:f4:c0:bf:9d:1c:57:e2:75:7a:be:8e:ae:31:e5:31:b0:d8: f8:83:39:66:00:c6:26:0e:94:9d:f2:6a:d3:56:0c:22:b3:ea: 11:c3:b0:34 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjIw QTA2QTIxMjA1ODIwQjI4RkQwNkNFMEE4NEYwM0ZDREFFQkM1MB4XDTI2MDMwMTAx MzExN1oXDTI3MDIxNTAxMzAwMlowMzExMC8GA1UEAxMoMERDMTJGQjc1NEQ5OERC NjFDMzlBRDlCQkU5Q0FERDBDRTI2REYyNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALDphHi0wSdNid9l7Zuus1aAJAliC8Ax0u+cVs7glglJs5hTZ3zF yNwa4WP2wHO1AfDw93APRsRe9ruFiZYQgA4n3EKqLYAMrQt4hJuAqnMk63e2gFIQ HdCoLMlr42Hg9MB89UAykxBRDUV6RZVek27HUyHEi+qdoIfJCECg/DbQMalZvMrk A7PD/Cy2lpA+yUFsKxk9LtVZ8B/tr+GtaPfX064a2q2HEeEsfQCmQXDLvRfc6qYm X7S4VOrT3MPdoh8L04VRaW57q29r+H/0BT8uwkgS59tkK/jKVwK8qEI6kAEVbx+G zN/sYOZ8Q7+e+UsWRJZGlqzcPpqn04Q9dY8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQNwS+3VNmNthw5rZu+nK3QzibfJDAfBgNVHSMEGDAWgBQbIKBqISBYILKP0Gzg qE8D/NrrxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96YTY4VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96 YTY4VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvRGNFdnQxVFpqYlljT2EyYnZweXQwTTRtM3lRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBAEVYDANBgkqhkiG9w0BAQsFAAOCAQEAKzZ1HnKW4G6a6miIvhm1WtPO9xIE gU3Fpswmrg/AL+Ec1BMVn+EPjjpEH8E/DY9zu2Dr5hkjg9mh2XkeCiNYz/Lx36Rt 0Vwi8aJfS/ohzvW+4FuQs+r/8wDpSCczh3BetrJH3Ptx7LmqJzlaYU+lveVEAQok uOwg6a/U1FpfvPWhdBzLF35EXwLKS0XCCq3vpei6LbEsCQFdcvw/SEtjdfaifIjd bt6MRXFYsDaoPdDYMbOVRMjig4rEbgcfaroZbDcotUXLSeX5QkqMk5PDPF3U1O6c 1nZD2fTAv50cV+J1er6OrjHlMbDY+IM5ZgDGJg6UnfJq01YMIrPqEcOwNA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:35:44 2026 by rpki-client