$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/679/-CbLTTXfGBVJJsbzpYRPmBJXP7M.roa File: -CbLTTXfGBVJJsbzpYRPmBJXP7M.roa (raw, json) Hash identifier: 1+eK/YMJcXWj3kcmRNqsajZrv8Z59y/slou7uc53UDA= Subject key identifier: F8:26:CB:4D:35:DF:18:15:49:26:C6:F3:A5:84:4F:98:12:57:3F:B3 Certificate issuer: /CN=28CD95AF0B878E0161E628A0CC240CEADA9198B5 Certificate serial: 3D Authority key identifier: 28:CD:95:AF:0B:87:8E:01:61:E6:28:A0:CC:24:0C:EA:DA:91:98:B5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KM2VrwuHjgFh5iigzCQM6tqRmLU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/-CbLTTXfGBVJJsbzpYRPmBJXP7M.roa Signing time: Tue 31 Mar 2026 08:16:49 +0000 ROA not before: Tue 31 Mar 2026 08:16:49 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17958 IP address blocks: 157.112.160.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/KM2VrwuHjgFh5iigzCQM6tqRmLU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/KM2VrwuHjgFh5iigzCQM6tqRmLU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KM2VrwuHjgFh5iigzCQM6tqRmLU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28CD95AF0B878E0161E628A0CC240CEADA9198B5 Validity Not Before: Mar 31 08:16:49 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=F826CB4D35DF18154926C6F3A5844F9812573FB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:39:ca:21:14:23:36:87:dc:46:e6:3e:6f:3d: 20:46:af:76:16:c5:2d:53:b3:69:7b:96:cf:7b:8c: 37:01:75:6b:86:77:66:f8:5c:11:20:11:af:91:f5: a1:44:10:0e:c7:c0:7a:2d:2a:31:10:a8:46:ff:f7: 32:4e:9f:0b:ed:0b:5e:d1:22:3e:dc:2d:4e:f3:10: 0d:2f:e6:47:37:d0:2a:2a:d9:f0:25:8a:59:c3:19: 5d:7d:42:e4:00:02:62:e8:d4:06:b8:fa:e9:36:7c: 1b:f1:eb:fe:83:ed:c1:97:ec:11:95:5f:5f:c4:ed: 01:33:a9:4c:27:a6:a9:69:68:1a:d6:2c:44:48:5d: 20:4b:35:0a:72:92:d5:e7:73:c0:12:6f:f8:99:32: 7d:6d:e6:63:d8:2f:ba:65:89:0d:6f:e7:50:29:68: 79:05:80:23:95:bd:2f:19:a5:91:b8:45:17:05:3a: 0a:d0:dc:f9:b7:8b:5c:8f:ad:55:ff:d6:3e:c9:fc: f8:bc:2f:01:f5:40:10:0d:31:f5:77:4b:91:ed:a9: fc:f7:b3:53:ea:c4:1b:fa:33:4b:a8:2f:e2:d4:b3: 58:00:47:7b:33:1d:dc:45:69:c8:bb:19:d9:08:d2: de:48:c3:01:32:6b:bb:30:36:8d:b7:f6:df:a3:a0: 6a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:26:CB:4D:35:DF:18:15:49:26:C6:F3:A5:84:4F:98:12:57:3F:B3 X509v3 Authority Key Identifier: keyid:28:CD:95:AF:0B:87:8E:01:61:E6:28:A0:CC:24:0C:EA:DA:91:98:B5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/KM2VrwuHjgFh5iigzCQM6tqRmLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KM2VrwuHjgFh5iigzCQM6tqRmLU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/679/-CbLTTXfGBVJJsbzpYRPmBJXP7M.roa sbgp-ipAddrBlock: critical IPv4: 157.112.160.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:12:06:ea:ed:44:2e:a6:7f:82:f9:ae:6e:ca:38:3c:ed:c5: 8f:31:5a:d4:c4:02:67:ed:d0:30:5a:2d:fa:f1:93:3f:a2:f2: 42:a2:71:ce:21:59:1b:ac:ed:ac:da:e9:bd:b7:de:4b:fc:58: 9b:3a:3d:ad:a1:a7:33:93:62:28:66:20:87:c1:96:47:36:80: 44:1f:9e:4a:4e:46:de:b6:da:34:28:5a:0e:47:cc:c4:0a:77: 0c:88:ae:63:9e:5e:4f:4b:fa:9d:16:75:12:45:cf:44:4f:35: 19:f0:7d:a8:aa:d8:5a:d6:c6:ed:8c:4d:78:60:36:77:ac:c6: a4:2c:e2:f9:e0:57:91:30:42:56:ed:ac:ce:7a:13:9b:b4:01: 98:ec:d6:36:a2:46:c7:05:c3:1f:ac:74:23:5f:2c:63:e5:da: d6:fe:95:1d:f2:be:96:c0:6d:79:ae:23:0c:99:f9:95:0b:35: f0:5e:66:88:3a:5a:d1:f2:2c:f7:ed:2b:e5:92:5e:93:f6:bf: fa:45:13:c9:7f:de:5a:1d:ee:68:33:a6:8d:e9:0d:e6:bd:8a: a5:b4:4e:8f:65:47:b7:d2:5a:77:4a:c6:93:8f:99:7f:de:1b: 95:17:a1:79:d1:1d:14:7d:29:a3:6b:f0:15:27:65:60:3e:07: 1b:56:74:f6 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOENE OTVBRjBCODc4RTAxNjFFNjI4QTBDQzI0MENFQURBOTE5OEI1MB4XDTI2MDMzMTA4 MTY0OVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRjgyNkNCNEQzNURGMTgx NTQ5MjZDNkYzQTU4NDRGOTgxMjU3M0ZCMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALM5yiEUIzaH3EbmPm89IEavdhbFLVOzaXuWz3uMNwF1a4Z3Zvhc ESARr5H1oUQQDsfAei0qMRCoRv/3Mk6fC+0LXtEiPtwtTvMQDS/mRzfQKirZ8CWK WcMZXX1C5AACYujUBrj66TZ8G/Hr/oPtwZfsEZVfX8TtATOpTCemqWloGtYsREhd IEs1CnKS1edzwBJv+JkyfW3mY9gvumWJDW/nUCloeQWAI5W9LxmlkbhFFwU6CtDc +beLXI+tVf/WPsn8+LwvAfVAEA0x9XdLke2p/PezU+rEG/ozS6gv4tSzWABHezMd 3EVpyLsZ2QjS3kjDATJruzA2jbf236OgascCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBT4JstNNd8YFUkmxvOlhE+YElc/szAfBgNVHSMEGDAWgBQozZWvC4eOAWHmKKDM JAzq2pGYtTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc5L0tNMlZyd3VIamdGaDVpaWd6Q1FNNnRxUm1MVS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0tNMlZyd3VIamdGaDVpaWd6Q1FNNnRx Um1MVS5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82NzkvLUNiTFRUWGZHQlZKSnNienBZUlBtQkpYUDdNLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBJ1woDANBgkqhkiG9w0BAQsFAAOCAQEA OxIG6u1ELqZ/gvmubso4PO3FjzFa1MQCZ+3QMFot+vGTP6LyQqJxziFZG6ztrNrp vbfeS/xYmzo9raGnM5NiKGYgh8GWRzaARB+eSk5G3rbaNChaDkfMxAp3DIiuY55e T0v6nRZ1EkXPRE81GfB9qKrYWtbG7YxNeGA2d6zGpCzi+eBXkTBCVu2sznoTm7QB mOzWNqJGxwXDH6x0I18sY+Xa1v6VHfK+lsBtea4jDJn5lQs18F5miDpa0fIs9+0r 5ZJek/a/+kUTyX/eWh3uaDOmjekN5r2KpbROj2VHt9Jad0rGk4+Zf94blRehedEd FH0po2vwFSdlYD4HG1Z09g== -----END CERTIFICATE-----Generated at Fri Apr 17 07:02:15 2026 by rpki-client