$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/3dEdJm3qsxvJzZcMs4YNPP0Uddk.roa File: 3dEdJm3qsxvJzZcMs4YNPP0Uddk.roa (raw, json) Hash identifier: JSpQwsmhdyfpWeykGUdwMzRNni+QcOpYLdbxHrk+1o0= Subject key identifier: DD:D1:1D:26:6D:EA:B3:1B:C9:CD:97:0C:B3:86:0D:3C:FD:14:75:D9 Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 25 Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/3dEdJm3qsxvJzZcMs4YNPP0Uddk.roa Signing time: Wed 25 Mar 2026 06:05:37 +0000 ROA not before: Wed 25 Mar 2026 06:05:37 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 219.100.52.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 25 06:05:37 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=DDD11D266DEAB31BC9CD970CB3860D3CFD1475D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d9:39:eb:ba:26:66:d7:b3:6c:7d:88:88:7c: 9f:63:19:8b:00:70:50:92:9d:1b:de:b9:c9:c0:2a: 33:52:97:60:12:f6:cf:d8:29:36:33:a5:0f:22:dd: a6:fd:18:69:da:0d:d6:73:79:d8:28:fa:40:8f:58: b3:1e:97:bf:c2:f4:8a:16:a9:4e:f0:f6:04:e7:69: d8:63:84:01:ea:7a:f2:17:fa:d3:01:df:ee:e0:1c: ff:51:07:97:6e:b2:e1:44:ef:60:40:a2:2b:d1:14: f3:55:e5:6b:a0:46:9c:bc:73:6c:c0:af:8f:4e:e7: c2:36:e7:e8:5f:03:12:95:74:dc:56:5d:ca:e0:c5: 89:57:7b:75:fb:b2:1c:38:8e:cc:4d:19:c3:70:59: 15:95:c5:af:4d:96:ad:59:f8:29:99:e4:d4:32:a4: c4:26:70:b4:11:a4:ec:0e:cc:37:d4:10:d1:d9:0c: 2e:82:20:05:9a:d3:b5:2a:65:95:94:76:de:3b:d7: 80:27:02:71:32:19:76:b2:f3:1d:dc:86:76:8e:8d: fa:04:38:48:84:99:cd:45:41:bf:39:a0:c8:92:9a: 2b:af:d5:6d:36:97:1d:06:6b:c2:63:e8:0b:2d:24: dd:7c:e6:bd:70:23:8a:40:3c:7e:5e:69:67:b5:5c: 01:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D1:1D:26:6D:EA:B3:1B:C9:CD:97:0C:B3:86:0D:3C:FD:14:75:D9 X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/3dEdJm3qsxvJzZcMs4YNPP0Uddk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.52.0/22 Signature Algorithm: sha256WithRSAEncryption 33:8b:3e:f1:ac:07:ec:82:c0:80:37:e5:a5:a4:7a:f0:c2:57: 24:ad:f4:30:7d:06:2b:ba:dd:2c:c2:ed:8d:91:d7:d3:12:2d: 89:9a:88:3e:4a:bf:70:2c:14:3f:d7:8e:f6:18:bd:f7:02:f1: 3b:90:44:40:a9:80:14:59:a8:14:ce:0c:22:c0:e1:7f:56:41: 5a:43:88:0d:1c:0a:09:f9:4e:fd:ba:36:9e:8b:74:be:0c:e2: 8f:2e:12:10:fe:b0:c3:f4:98:6a:9c:4f:9d:5a:f9:70:ea:2e: 35:a5:a0:c4:7d:d9:df:df:4f:a0:68:fe:93:78:45:2d:0f:ef: d9:9c:ae:19:13:5b:e5:25:1a:30:e8:f2:92:42:a7:f8:57:3b: 87:c4:f0:a1:bd:03:5d:35:f3:cf:c3:0b:a5:fd:84:63:6e:e4: a0:6c:5d:84:7f:d7:13:c2:85:d2:cf:28:45:e0:a7:b7:50:5d: ad:e7:d0:fa:3d:f3:65:b5:46:71:f7:59:b4:30:b2:38:66:c9: 5d:d6:2e:a9:64:77:b8:fb:6d:34:12:29:92:34:1e:e8:3b:e7: 30:2e:68:ea:42:9c:ba:17:c4:9b:b2:0b:eb:db:6b:60:8c:64: 00:90:61:42:b0:27:3e:f9:f6:df:cc:0c:80:bb:1d:ce:bc:87: f8:eb:c3:93 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMyNTA2 MDUzN1oXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoREREMTFEMjY2REVBQjMx QkM5Q0Q5NzBDQjM4NjBEM0NGRDE0NzVEOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK/ZOeu6JmbXs2x9iIh8n2MZiwBwUJKdG965ycAqM1KXYBL2z9gp NjOlDyLdpv0YadoN1nN52Cj6QI9Ysx6Xv8L0ihapTvD2BOdp2GOEAep68hf60wHf 7uAc/1EHl26y4UTvYECiK9EU81Xla6BGnLxzbMCvj07nwjbn6F8DEpV03FZdyuDF iVd7dfuyHDiOzE0Zw3BZFZXFr02WrVn4KZnk1DKkxCZwtBGk7A7MN9QQ0dkMLoIg BZrTtSpllZR23jvXgCcCcTIZdrLzHdyGdo6N+gQ4SISZzUVBvzmgyJKaK6/VbTaX HQZrwmPoCy0k3XzmvXAjikA8fl5pZ7VcAdUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTd0R0mbeqzG8nNlwyzhg08/RR12TAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80OTMvM2RFZEptM3FzeHZKelpjTXM0WU5QUDBVZGRrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkNDANBgkqhkiG9w0BAQsFAAOCAQEAM4s+8awH7ILAgDflpaR68MJXJK30 MH0GK7rdLMLtjZHX0xItiZqIPkq/cCwUP9eO9hi99wLxO5BEQKmAFFmoFM4MIsDh f1ZBWkOIDRwKCflO/bo2not0vgzijy4SEP6ww/SYapxPnVr5cOouNaWgxH3Z399P oGj+k3hFLQ/v2ZyuGRNb5SUaMOjykkKn+Fc7h8Twob0DXTXzz8MLpf2EY27koGxd hH/XE8KF0s8oReCnt1BdrefQ+j3zZbVGcfdZtDCyOGbJXdYuqWR3uPttNBIpkjQe 6DvnMC5o6kKcuhfEm7IL69trYIxkAJBhQrAnPvn238wMgLsdzryH+OvDkw== -----END CERTIFICATE-----Generated at Thu Mar 26 22:30:30 2026 by rpki-client