$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/O4-UlEEARYPovT0WEht_6B2DSmM.roa File: O4-UlEEARYPovT0WEht_6B2DSmM.roa (raw, json) Hash identifier: w0V0gj5HWUeGfW7SjUwkLgxJXVpul/AYisL3DFpH+4w= Subject key identifier: 3B:8F:94:94:41:00:45:83:E8:BD:3D:16:12:1B:7F:E8:1D:83:4A:63 Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 27 Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/O4-UlEEARYPovT0WEht_6B2DSmM.roa Signing time: Wed 25 Mar 2026 06:05:38 +0000 ROA not before: Wed 25 Mar 2026 06:05:38 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 219.122.128.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 25 06:05:38 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=3B8F949441004583E8BD3D16121B7FE81D834A63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9b:b0:0b:17:cd:e1:c9:a1:17:c9:39:71:94: ce:a1:ee:59:b6:c4:f9:68:fe:2b:8b:3f:b0:ac:77: 39:60:43:52:54:5d:44:3e:18:0d:96:26:c2:56:f9: 48:93:e2:19:c9:f6:40:91:e8:1d:3b:8d:42:4a:11: 1d:39:76:8e:90:23:4c:5b:60:5f:54:52:4b:23:dc: b0:40:ff:15:40:9d:c0:23:11:06:30:35:88:be:46: 24:0d:3a:51:0f:28:04:0d:fb:09:2c:ff:6f:d5:59: 89:12:af:63:12:77:8a:12:99:e5:c3:43:9a:a8:a7: d7:c7:e4:f3:f6:c5:33:46:0e:cd:6f:99:5a:47:ed: 83:e4:6d:ad:50:ab:82:fc:27:6a:db:c7:2c:25:a8: ca:5f:3c:8b:e1:cc:b8:86:db:68:2a:9b:ba:68:1d: c5:4b:f7:e3:65:44:4d:06:e0:68:df:d0:94:51:6c: 50:bc:40:a6:f6:e9:65:0a:69:bb:d6:7c:d5:3b:64: 50:19:eb:c7:5b:e6:4c:5f:7c:27:07:a8:24:ba:2d: 7b:9d:88:a0:e4:7e:c6:08:88:2e:67:50:b1:41:08: 00:e8:70:3e:fe:bd:a3:6a:fa:a8:47:26:53:ed:a3: ea:5c:af:69:43:7a:f7:a9:cd:5c:7f:1c:ea:2e:36: 67:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8F:94:94:41:00:45:83:E8:BD:3D:16:12:1B:7F:E8:1D:83:4A:63 X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/O4-UlEEARYPovT0WEht_6B2DSmM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.122.128.0/17 Signature Algorithm: sha256WithRSAEncryption 30:9b:02:75:76:69:4e:e7:f4:69:ec:23:4d:38:29:2d:ea:6c: 52:39:de:e1:73:9e:e8:80:6d:d2:d5:03:73:6e:65:26:c4:50: be:0e:fe:1f:89:5d:7b:f3:b9:7d:07:92:47:b8:7b:1f:c1:92: ed:d4:5d:7b:2a:eb:e9:44:49:48:4e:e2:ae:d5:92:9f:bc:1e: 73:bd:ac:9d:29:31:b0:d8:df:be:eb:58:59:77:df:c8:20:b8: cf:5d:0f:e5:2f:d1:b3:11:c9:bb:03:3e:8d:79:34:4d:1b:a1: fd:2c:3c:e6:6d:a7:ac:83:52:6c:51:9e:94:17:47:7f:09:1f: ba:8e:64:d5:ff:70:7b:05:d5:6a:90:bc:9f:df:8e:9e:d7:ff: be:e6:bc:ec:41:cd:4b:01:4b:52:91:62:2e:c7:66:d0:ee:e8: 71:d2:aa:41:77:d4:04:38:5e:bf:55:4c:7c:00:2f:08:04:88: 19:35:1d:fe:d3:50:0f:b4:3e:0f:22:30:17:a8:24:51:e8:9a: 9d:22:31:20:97:05:6b:98:63:eb:0f:4d:3d:12:93:1d:07:52: e0:29:1f:1c:e6:79:9c:9a:69:6a:46:bf:46:77:7d:c4:33:2f: d1:18:bb:b8:42:33:ee:e7:be:a8:2f:7f:37:d7:35:23:c7:c1: 69:a2:ad:e7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMyNTA2 MDUzOFoXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoM0I4Rjk0OTQ0MTAwNDU4 M0U4QkQzRDE2MTIxQjdGRTgxRDgzNEE2MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMKbsAsXzeHJoRfJOXGUzqHuWbbE+Wj+K4s/sKx3OWBDUlRdRD4Y DZYmwlb5SJPiGcn2QJHoHTuNQkoRHTl2jpAjTFtgX1RSSyPcsED/FUCdwCMRBjA1 iL5GJA06UQ8oBA37CSz/b9VZiRKvYxJ3ihKZ5cNDmqin18fk8/bFM0YOzW+ZWkft g+RtrVCrgvwnatvHLCWoyl88i+HMuIbbaCqbumgdxUv342VETQbgaN/QlFFsULxA pvbpZQppu9Z81TtkUBnrx1vmTF98JweoJLote52IoOR+xgiILmdQsUEIAOhwPv69 o2r6qEcmU+2j6lyvaUN696nNXH8c6i42Z8ECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ7j5SUQQBFg+i9PRYSG3/oHYNKYzAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80OTMvTzQtVWxFRUFSWVBvdlQwV0VodF82QjJEU21NLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB9t6gDANBgkqhkiG9w0BAQsFAAOCAQEAMJsCdXZpTuf0aewjTTgpLepsUjne 4XOe6IBt0tUDc25lJsRQvg7+H4lde/O5fQeSR7h7H8GS7dRdeyrr6URJSE7irtWS n7wec72snSkxsNjfvutYWXffyCC4z10P5S/RsxHJuwM+jXk0TRuh/Sw85m2nrINS bFGelBdHfwkfuo5k1f9wewXVapC8n9+Ontf/vua87EHNSwFLUpFiLsdm0O7ocdKq QXfUBDhev1VMfAAvCASIGTUd/tNQD7Q+DyIwF6gkUeianSIxIJcFa5hj6w9NPRKT HQdS4CkfHOZ5nJppaka/Rnd9xDMv0Ri7uEIz7ue+qC9/N9c1I8fBaaKt5w== -----END CERTIFICATE-----Generated at Thu Mar 26 22:30:36 2026 by rpki-client