$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/425/orXzjYlWNmDLJjNLQtiBMLCKkGg.roa File: orXzjYlWNmDLJjNLQtiBMLCKkGg.roa (raw, json) Hash identifier: eW51gNypionZIDTSm/iF5tC8SP0g8OVY8eHdLnGOo94= Subject key identifier: A2:B5:F3:8D:89:56:36:60:CB:26:33:4B:42:D8:81:30:B0:8A:90:68 Certificate issuer: /CN=B990BFD63F8675B7B44563623E42F729256CA1E8 Certificate serial: 05 Authority key identifier: B9:90:BF:D6:3F:86:75:B7:B4:45:63:62:3E:42:F7:29:25:6C:A1:E8 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/orXzjYlWNmDLJjNLQtiBMLCKkGg.roa Signing time: Thu 19 Mar 2026 01:19:01 +0000 ROA not before: Thu 19 Mar 2026 01:19:01 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10001 IP address blocks: 123.255.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B990BFD63F8675B7B44563623E42F729256CA1E8 Validity Not Before: Mar 19 01:19:01 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A2B5F38D89563660CB26334B42D88130B08A9068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3e:58:e3:b5:a0:1f:1a:2c:0a:24:05:9f:b3: 9c:80:a7:3a:3c:b4:85:6c:a1:38:9e:a0:00:80:56: 10:b4:a9:25:bb:c2:a7:d7:21:64:44:45:2a:40:0b: 07:0c:5c:fe:60:9e:e3:f2:5a:a9:f6:f5:27:e3:61: d7:c3:7f:f8:c1:ff:0f:26:bf:ee:12:7b:d3:bc:55: 46:9e:90:27:cf:8f:3d:87:99:3f:de:d5:00:48:87: d5:2c:4d:c9:86:2e:20:2b:8a:1d:8f:29:d2:9c:37: 68:f1:1e:5d:a0:11:cf:84:d4:4a:18:85:dd:ad:6f: 82:5a:24:6a:51:71:98:a2:d2:6e:be:11:f5:c8:44: de:f2:e7:c3:a2:98:3b:c5:77:d1:8a:11:a9:88:fe: 7d:1e:ab:33:95:78:82:fd:4a:ce:e1:40:f1:88:2d: bf:05:c3:a5:20:f8:5d:6c:6c:3b:7b:17:cb:59:3f: 59:45:4f:e9:01:50:e5:b5:76:a0:31:08:9d:3c:56: 2d:21:6e:04:29:7f:e0:4d:2c:60:af:cc:e3:39:fb: ea:23:d4:c2:d5:7b:74:f5:be:cc:90:19:a6:32:d4: 6b:33:f3:46:f1:a9:54:49:9a:44:48:75:46:8e:b4: 93:89:76:6a:5a:1c:cc:28:fc:33:05:ef:71:75:cb: 26:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B5:F3:8D:89:56:36:60:CB:26:33:4B:42:D8:81:30:B0:8A:90:68 X509v3 Authority Key Identifier: keyid:B9:90:BF:D6:3F:86:75:B7:B4:45:63:62:3E:42:F7:29:25:6C:A1:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uZC_1j-Gdbe0RWNiPkL3KSVsoeg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/425/orXzjYlWNmDLJjNLQtiBMLCKkGg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.255.240.0/21 Signature Algorithm: sha256WithRSAEncryption 66:d8:a0:d7:3e:c2:31:86:1f:30:de:cd:6a:76:72:bb:f9:0b: 31:77:c6:94:22:16:aa:79:40:4e:99:9d:c3:83:2e:77:35:00: 6f:95:b7:e9:92:b8:aa:24:e4:82:4c:b5:dd:02:cc:2d:6b:9f: 5b:c5:5d:c4:93:04:4f:f7:60:e6:03:f3:1c:fe:bd:6b:ea:92: e8:bd:71:c8:b2:d2:c5:8a:b6:b6:fe:72:1c:02:1d:b0:4e:2d: 6e:10:6f:c8:95:79:92:36:41:35:b7:26:ad:46:07:88:92:a4: 30:2b:e2:0b:e5:be:57:8b:92:8a:33:96:49:a1:34:42:85:f9: d8:37:97:69:94:da:ad:84:f1:1f:4a:85:c4:f6:2e:a4:40:53: 76:ba:63:3a:d1:50:66:4f:86:c0:b4:10:15:b4:06:0d:0d:71: bf:1d:bb:cf:27:cf:b6:25:83:77:45:76:6a:33:b7:19:a1:00: af:87:06:2e:c7:e8:1d:1d:a9:8b:98:8c:43:f5:2f:d4:2d:50: 3e:f7:60:01:a9:db:91:26:50:7b:49:6d:9f:d3:9e:60:09:00: c6:79:10:79:b4:ba:f1:ad:46:00:08:b3:3a:9a:85:c0:9a:2c: 22:c3:e6:8a:1f:20:ac:24:8a:92:8d:ce:06:46:ed:3b:65:93: 0f:ab:99:09 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTkw QkZENjNGODY3NUI3QjQ0NTYzNjIzRTQyRjcyOTI1NkNBMUU4MB4XDTI2MDMxOTAx MTkwMVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTJCNUYzOEQ4OTU2MzY2 MENCMjYzMzRCNDJEODgxMzBCMDhBOTA2ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMI+WOO1oB8aLAokBZ+znICnOjy0hWyhOJ6gAIBWELSpJbvCp9ch ZERFKkALBwxc/mCe4/Jaqfb1J+Nh18N/+MH/Dya/7hJ707xVRp6QJ8+PPYeZP97V AEiH1SxNyYYuICuKHY8p0pw3aPEeXaARz4TUShiF3a1vglokalFxmKLSbr4R9chE 3vLnw6KYO8V30YoRqYj+fR6rM5V4gv1KzuFA8YgtvwXDpSD4XWxsO3sXy1k/WUVP 6QFQ5bV2oDEInTxWLSFuBCl/4E0sYK/M4zn76iPUwtV7dPW+zJAZpjLUazPzRvGp VEmaREh1Ro60k4l2aloczCj8MwXvcXXLJnsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSitfONiVY2YMsmM0tC2IEwsIqQaDAfBgNVHSMEGDAWgBS5kL/WP4Z1t7RFY2I+ QvcpJWyh6DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDI1L3VaQ18xai1HZGJlMFJXTmlQa0wzS1NWc29lZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VaQ18xai1HZGJlMFJXTmlQa0wzS1NW c29lZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80MjUvb3JYempZbFdObURMSmpOTFF0aUJNTENLa0dnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3v/8DANBgkqhkiG9w0BAQsFAAOCAQEAZtig1z7CMYYfMN7NanZyu/kLMXfG lCIWqnlATpmdw4MudzUAb5W36ZK4qiTkgky13QLMLWufW8VdxJMET/dg5gPzHP69 a+qS6L1xyLLSxYq2tv5yHAIdsE4tbhBvyJV5kjZBNbcmrUYHiJKkMCviC+W+V4uS ijOWSaE0QoX52DeXaZTarYTxH0qFxPYupEBTdrpjOtFQZk+GwLQQFbQGDQ1xvx27 zyfPtiWDd0V2ajO3GaEAr4cGLsfoHR2pi5iMQ/Uv1C1QPvdgAanbkSZQe0ltn9Oe YAkAxnkQebS68a1GAAizOpqFwJosIsPmih8grCSKko3OBkbtO2WTD6uZCQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:20:46 2026 by rpki-client