$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/906/O3LhHs-6ATdcKVQbMrdFaR6yQhs.roa File: O3LhHs-6ATdcKVQbMrdFaR6yQhs.roa (raw, json) Hash identifier: 8SxoRV2qMadsG/Zqu5M59xaoqnbhLxXsy/zPZSnc+m0= Subject key identifier: 3B:72:E1:1E:CF:BA:01:37:5C:29:54:1B:32:B7:45:69:1E:B2:42:1B Certificate issuer: /CN=539BDF2FE18FF387FD03842C5081A145EEEB1CF7 Certificate serial: 56 Authority key identifier: 53:9B:DF:2F:E1:8F:F3:87:FD:03:84:2C:50:81:A1:45:EE:EB:1C:F7 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/O3LhHs-6ATdcKVQbMrdFaR6yQhs.roa Signing time: Tue 31 Mar 2026 08:33:49 +0000 ROA not before: Tue 31 Mar 2026 08:33:49 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 24259 IP address blocks: 123.255.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=539BDF2FE18FF387FD03842C5081A145EEEB1CF7 Validity Not Before: Mar 31 08:33:49 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3B72E11ECFBA01375C29541B32B745691EB2421B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ab:5f:fb:e8:d5:43:38:c5:8e:c7:f3:d3:da: 9f:8e:80:62:73:58:ca:c3:c4:90:25:e6:09:2b:50: 1e:84:ee:5f:22:60:78:2c:30:04:ea:a9:14:3a:18: 9b:30:bc:b6:7a:c4:37:1e:4a:53:18:bd:72:e4:d5: c1:93:e0:c5:06:1a:4d:27:76:da:39:94:35:06:da: ff:fe:82:5e:91:1e:17:34:bd:f8:8b:90:f0:2e:11: e0:e6:c2:83:80:6e:ec:58:d2:3d:e2:e8:08:c9:67: 21:44:0f:88:55:49:da:cc:c5:b3:f4:cc:e0:9d:0c: b2:a8:2e:82:6b:57:10:c4:da:95:3e:b3:77:f5:7b: 15:f3:06:ce:4d:e9:5b:78:b2:4a:69:dd:24:fd:97: 86:0e:95:87:0c:91:0f:c9:3c:a2:85:18:31:23:03: 4e:d8:33:4e:a5:0f:a7:4e:4f:c9:5c:3a:23:e0:0f: ae:39:03:79:7b:e9:07:4c:e4:3e:55:ee:b8:db:2f: 07:7a:d6:29:94:3c:8b:cc:3f:77:10:d3:03:23:21: 0c:3a:ba:ae:6a:44:5e:45:72:4c:35:83:e4:e3:1d: d9:03:b1:b2:3c:59:58:44:ad:ec:07:cd:d1:7e:b3: e8:42:74:2d:20:05:58:9a:f9:f1:40:33:3f:79:53: 35:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:72:E1:1E:CF:BA:01:37:5C:29:54:1B:32:B7:45:69:1E:B2:42:1B X509v3 Authority Key Identifier: keyid:53:9B:DF:2F:E1:8F:F3:87:FD:03:84:2C:50:81:A1:45:EE:EB:1C:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/O3LhHs-6ATdcKVQbMrdFaR6yQhs.roa sbgp-ipAddrBlock: critical IPv4: 123.255.232.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:2a:a9:b6:fa:a8:d5:02:fe:eb:fe:2c:aa:f0:c7:4b:92:5c: 59:73:9b:4f:ef:b0:e7:65:a9:e1:d1:39:e0:c4:f8:de:96:ca: 6d:16:cf:13:7b:2f:07:93:6a:ec:5e:95:8f:3c:fa:96:7f:a1: 7d:71:27:f8:f3:f7:e5:4d:eb:55:6a:09:b6:7b:42:36:48:f1: b0:77:29:62:d1:44:1b:a3:d8:77:d9:ef:f1:6b:76:59:b5:37: 69:39:9a:99:57:ed:9d:1a:59:5c:4a:fd:d6:2f:63:ea:fd:49: e3:70:a8:ea:15:2b:2a:35:83:42:39:12:ca:c7:fa:d9:13:84: fb:f6:42:f5:52:c6:9d:ab:f1:80:98:57:68:6f:07:5d:f1:48: f7:50:55:80:77:65:71:3b:99:80:4f:61:42:34:5e:94:cb:64: 7e:67:46:54:5e:cc:af:40:ba:88:b1:30:8a:76:dc:af:02:d8: 7e:44:fb:d8:a1:2c:4f:ea:93:b7:06:29:5e:f6:52:d1:63:27: c9:cb:be:e3:78:66:77:d9:85:85:0e:3b:5b:14:9f:11:2a:2a: c0:13:cf:2e:0e:f3:36:07:9f:3a:49:94:40:76:8c:ea:52:8c: 74:8f:1a:a9:dd:c0:6e:e8:f7:bf:e4:d5:c0:98:28:1f:a9:54: 67:a4:ce:c2 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MzlC REYyRkUxOEZGMzg3RkQwMzg0MkM1MDgxQTE0NUVFRUIxQ0Y3MB4XDTI2MDMzMTA4 MzM0OVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoM0I3MkUxMUVDRkJBMDEz NzVDMjk1NDFCMzJCNzQ1NjkxRUIyNDIxQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANirX/vo1UM4xY7H89Pan46AYnNYysPEkCXmCStQHoTuXyJgeCww BOqpFDoYmzC8tnrENx5KUxi9cuTVwZPgxQYaTSd22jmUNQba//6CXpEeFzS9+IuQ 8C4R4ObCg4Bu7FjSPeLoCMlnIUQPiFVJ2szFs/TM4J0MsqgugmtXEMTalT6zd/V7 FfMGzk3pW3iySmndJP2Xhg6VhwyRD8k8ooUYMSMDTtgzTqUPp05PyVw6I+APrjkD eXvpB0zkPlXuuNsvB3rWKZQ8i8w/dxDTAyMhDDq6rmpEXkVyTDWD5OMd2QOxsjxZ WESt7AfN0X6z6EJ0LSAFWJr58UAzP3lTNVUCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQ7cuEez7oBN1wpVBsyt0VpHrJCGzAfBgNVHSMEGDAWgBRTm98v4Y/zh/0DhCxQ gaFF7usc9zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTA2L1U1dmZMLUdQODRmOUE0UXNVSUdoUmU3ckhQYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1U1dmZMLUdQODRmOUE0UXNVSUdoUmU3 ckhQYy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC85MDYvTzNMaEhzLTZBVGRjS1ZRYk1yZEZhUjZ5UWhzLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3v/6DANBgkqhkiG9w0BAQsFAAOCAQEA Xyqptvqo1QL+6/4sqvDHS5JcWXObT++w52Wp4dE54MT43pbKbRbPE3svB5Nq7F6V jzz6ln+hfXEn+PP35U3rVWoJtntCNkjxsHcpYtFEG6PYd9nv8Wt2WbU3aTmamVft nRpZXEr91i9j6v1J43Co6hUrKjWDQjkSysf62ROE+/ZC9VLGnavxgJhXaG8HXfFI 91BVgHdlcTuZgE9hQjRelMtkfmdGVF7Mr0C6iLEwinbcrwLYfkT72KEsT+qTtwYp XvZS0WMnycu+43hmd9mFhQ47WxSfESoqwBPPLg7zNgefOkmUQHaM6lKMdI8aqd3A buj3v+TVwJgoH6lUZ6TOwg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:51:32 2026 by rpki-client