$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/KumgQSWyJA8XuUGGbr53wjUlkZI.roa File: KumgQSWyJA8XuUGGbr53wjUlkZI.roa (raw, json) Hash identifier: 8Mk+IbdXBvYujBTCZdQAB5SjJdrgNoqw41FUEq5AndE= Subject key identifier: 2A:E9:A0:41:25:B2:24:0F:17:B9:41:86:6E:BE:77:C2:35:25:91:92 Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 1B Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/KumgQSWyJA8XuUGGbr53wjUlkZI.roa Signing time: Wed 25 Mar 2026 05:53:44 +0000 ROA not before: Wed 25 Mar 2026 05:53:44 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 202.60.32.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 25 05:53:44 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=2AE9A04125B2240F17B941866EBE77C235259192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:4e:2d:77:9a:30:5b:3e:8a:41:3b:03:59:68: d7:fc:29:c0:e8:bf:9e:5e:d3:b3:82:6b:12:f2:c5: f9:1e:83:b7:4a:d6:a2:77:db:95:24:c1:ed:46:8b: 20:2a:c5:1b:55:96:74:9b:3a:d6:dd:0e:39:0d:d9: 14:95:36:43:88:3f:23:6d:06:e8:5b:39:83:16:fc: 92:9a:52:35:07:f0:10:fe:ee:76:eb:30:ef:71:fe: 52:26:8c:77:4e:e8:47:b4:5a:ec:96:b0:3d:f3:e3: a2:66:75:40:3c:03:bc:52:4d:af:8d:4c:93:55:5d: c8:c0:23:42:f7:e7:eb:87:ca:ab:98:0a:34:73:84: 51:4b:91:17:53:35:56:be:a1:44:c7:b4:92:cc:8f: 58:29:5d:88:33:a9:b7:73:bd:1f:36:0a:91:49:dd: 2d:82:43:80:e5:ee:34:db:30:94:46:5e:06:df:33: 65:2b:91:99:f6:79:67:bd:99:a3:cc:4e:f4:68:21: 1a:58:7d:96:9c:ea:0c:87:50:7a:e7:22:3a:6b:44: aa:c3:c7:8b:22:28:dc:f1:d8:a6:d8:b1:89:61:0c: 41:83:f2:7f:81:40:56:d7:b1:5f:0e:ab:ca:4a:1f: 05:e9:a0:a0:45:86:c2:a9:e3:fc:69:79:e9:75:15: ef:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E9:A0:41:25:B2:24:0F:17:B9:41:86:6E:BE:77:C2:35:25:91:92 X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/KumgQSWyJA8XuUGGbr53wjUlkZI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.60.32.0/20 Signature Algorithm: sha256WithRSAEncryption 8f:a4:8d:ba:79:bf:36:13:2c:7d:e6:7c:c3:25:46:78:d3:09: 34:56:ce:d1:34:db:80:ae:87:b4:01:78:b8:c7:92:90:fb:fe: a9:c4:f0:53:1f:ec:f8:90:ae:2e:27:b9:d5:1d:d9:0f:99:40: 38:b0:b4:b4:6b:81:29:7a:ec:44:24:d9:f4:f6:34:05:09:cb: 54:af:ac:0e:e2:e4:ae:0c:aa:c1:5f:8e:c6:21:c7:f1:be:4a: 23:a5:28:ae:5e:01:5b:4b:a6:1b:7b:bc:87:d8:91:a9:c4:a2: 46:90:03:cc:59:88:53:8a:12:81:25:c6:d1:ad:e1:2e:28:41: a8:bc:56:24:28:b9:f7:1e:5f:6e:3d:ad:8f:33:2d:ee:36:a0: cc:6f:82:c7:c4:c2:f9:d6:0d:79:6f:fd:4a:e4:69:6b:2d:e5: ca:26:72:dd:17:41:ad:24:ff:4c:03:22:31:f6:8a:b3:61:3c: 80:4f:e9:f6:4b:0f:7b:13:85:a2:86:76:4e:db:29:7e:93:ac: 91:c0:c7:d4:f6:b7:5d:cc:19:55:97:b0:15:45:a7:49:f5:47: 75:ae:e4:13:d8:e3:3a:d4:b0:9e:0f:8f:45:61:e6:98:89:0f: 25:70:d1:32:69:47:6c:6b:74:10:63:4f:d7:46:03:78:d9:ee: b4:e5:57:d0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMyNTA1 NTM0NFoXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoMkFFOUEwNDEyNUIyMjQw RjE3Qjk0MTg2NkVCRTc3QzIzNTI1OTE5MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO9OLXeaMFs+ikE7A1lo1/wpwOi/nl7Ts4JrEvLF+R6Dt0rWonfb lSTB7UaLICrFG1WWdJs61t0OOQ3ZFJU2Q4g/I20G6Fs5gxb8kppSNQfwEP7udusw 73H+UiaMd07oR7Ra7JawPfPjomZ1QDwDvFJNr41Mk1VdyMAjQvfn64fKq5gKNHOE UUuRF1M1Vr6hRMe0ksyPWCldiDOpt3O9HzYKkUndLYJDgOXuNNswlEZeBt8zZSuR mfZ5Z72Zo8xO9GghGlh9lpzqDIdQeuciOmtEqsPHiyIo3PHYptixiWEMQYPyf4FA VtexXw6rykofBemgoEWGwqnj/Gl56XUV76sCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQq6aBBJbIkDxe5QYZuvnfCNSWRkjAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80OTMvS3VtZ1FTV3lKQThYdVVHR2JyNTN3alVsa1pJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMo8IDANBgkqhkiG9w0BAQsFAAOCAQEAj6SNunm/NhMsfeZ8wyVGeNMJNFbO 0TTbgK6HtAF4uMeSkPv+qcTwUx/s+JCuLie51R3ZD5lAOLC0tGuBKXrsRCTZ9PY0 BQnLVK+sDuLkrgyqwV+OxiHH8b5KI6Uorl4BW0umG3u8h9iRqcSiRpADzFmIU4oS gSXG0a3hLihBqLxWJCi59x5fbj2tjzMt7jagzG+Cx8TC+dYNeW/9SuRpay3lyiZy 3RdBrST/TAMiMfaKs2E8gE/p9ksPexOFooZ2TtspfpOskcDH1Pa3XcwZVZewFUWn SfVHda7kE9jjOtSwng+PRWHmmIkPJXDRMmlHbGt0EGNP10YDeNnutOVX0A== -----END CERTIFICATE-----Generated at Thu Mar 26 22:17:17 2026 by rpki-client