$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/qby4Q0BvVMTz27mnY4IKEogm3nE.roa File: qby4Q0BvVMTz27mnY4IKEogm3nE.roa (raw, json) Hash identifier: CJcA2aiR2HUpZkus2jfbmO2r8ZdsSJX89KgSXVyVQds= Subject key identifier: A9:BC:B8:43:40:6F:54:C4:F3:DB:B9:A7:63:82:0A:12:88:26:DE:71 Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 03 Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/qby4Q0BvVMTz27mnY4IKEogm3nE.roa Signing time: Wed 25 Mar 2026 05:29:34 +0000 ROA not before: Wed 25 Mar 2026 05:29:34 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 58.70.0.0/16 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 25 05:29:34 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=A9BCB843406F54C4F3DBB9A763820A128826DE71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:74:db:d0:6d:c3:b1:73:3a:a2:2d:b9:87: ee:d6:f3:88:0f:bd:29:5f:34:d6:18:d6:0f:f4:d8: 83:aa:1e:a7:f8:8a:f4:8e:46:3e:af:97:b4:3a:76: c4:45:93:50:ef:62:a2:fb:02:20:51:17:50:95:d6: 81:4e:36:4a:b4:e5:75:00:e2:82:4a:29:05:ac:fc: 43:c6:97:12:d6:ac:dd:00:18:c7:09:5b:ef:9d:e6: a6:0d:01:8e:2f:65:9c:a7:cf:49:bf:b8:6a:08:4b: 0e:f8:ed:28:2e:2b:45:94:37:66:54:db:4c:87:56: 7a:03:a5:01:03:9f:58:b6:43:0c:28:1e:c8:20:40: 84:54:3e:17:97:8e:67:ab:1f:37:d5:2e:8b:45:4e: 7e:07:fc:38:0e:dd:8f:b6:9b:7e:4a:ab:f2:e2:98: fc:ca:70:74:fc:32:6a:6a:81:4d:89:5d:80:29:b3: b1:08:c7:00:d8:a8:fb:60:d6:0f:2e:49:59:ba:82: bd:c5:7e:41:26:8c:98:48:c4:5b:fd:b3:0f:7d:0e: 0c:ab:ec:e3:15:86:82:b0:d6:f6:75:f1:f8:30:0a: 95:2d:bc:9e:7a:36:f3:b3:eb:a7:75:82:66:6f:24: 77:8f:8c:8f:e3:d2:fa:59:95:f6:4d:34:f6:e0:4c: 72:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:BC:B8:43:40:6F:54:C4:F3:DB:B9:A7:63:82:0A:12:88:26:DE:71 X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/qby4Q0BvVMTz27mnY4IKEogm3nE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 11:64:8d:33:62:50:8a:16:88:a6:21:81:31:3f:3b:53:d1:76: 49:f9:81:0b:2f:bf:b3:8e:ca:9e:e6:b9:9d:0f:c4:59:40:71: 7d:46:bd:e0:13:09:0a:02:3f:48:8f:48:b1:7e:59:b4:a9:70: a5:af:b4:cf:cf:c2:87:16:14:90:85:a8:6e:38:ae:38:3c:bc: d5:76:4c:03:92:4f:f2:9f:4f:16:e3:ec:24:3b:f1:d9:7d:f6: dc:b9:da:55:38:84:93:26:cd:10:2a:12:61:d4:d8:34:05:10: 4f:d1:51:df:05:81:1e:e5:ff:a3:0e:64:d8:09:79:37:da:34: 26:16:9f:40:d5:d7:23:46:07:b5:0f:bb:a9:49:8d:ac:78:09: 48:a3:aa:86:5f:b0:15:a3:8c:52:bd:b4:4c:f5:c2:47:be:fa: be:94:59:df:a8:92:00:97:1f:46:8e:29:09:96:c3:29:c9:31: b4:3c:7c:15:ab:c2:05:a0:c0:6d:a8:c8:0f:f3:84:e3:dc:c0: ba:11:7f:24:94:bb:88:28:11:d1:79:0f:c0:62:1c:44:0c:11: a4:cc:f0:f4:6d:c1:9c:ee:dc:d0:d5:3f:6e:2b:68:00:31:99: 00:d3:ff:3f:57:85:6a:d3:c1:2d:e9:c4:d1:09:3b:d4:03:83: ea:b2:c2:1a -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMyNTA1 MjkzNFoXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoQTlCQ0I4NDM0MDZGNTRD NEYzREJCOUE3NjM4MjBBMTI4ODI2REU3MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALtZdNvQbcOxczqiLbmH7tbziA+9KV801hjWD/TYg6oep/iK9I5G Pq+XtDp2xEWTUO9iovsCIFEXUJXWgU42SrTldQDigkopBaz8Q8aXEtas3QAYxwlb 753mpg0Bji9lnKfPSb+4aghLDvjtKC4rRZQ3ZlTbTIdWegOlAQOfWLZDDCgeyCBA hFQ+F5eOZ6sfN9Uui0VOfgf8OA7dj7abfkqr8uKY/MpwdPwyamqBTYldgCmzsQjH ANio+2DWDy5JWbqCvcV+QSaMmEjEW/2zD30ODKvs4xWGgrDW9nXx+DAKlS28nno2 87Prp3WCZm8kd4+Mj+PS+lmV9k009uBMcrMCAwEAAaOCAiMwggIfMB0GA1UdDgQW BBSpvLhDQG9UxPPbuadjggoSiCbecTAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80OTMvcWJ5NFEwQnZWTVR6Mjdtblk0SUtFb2dtM25FLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDADpGMA0GCSqGSIb3DQEBCwUAA4IBAQARZI0zYlCKFoimIYExPztT0XZJ+YEL L7+zjsqe5rmdD8RZQHF9Rr3gEwkKAj9Ij0ixflm0qXClr7TPz8KHFhSQhahuOK44 PLzVdkwDkk/yn08W4+wkO/HZffbcudpVOISTJs0QKhJh1Ng0BRBP0VHfBYEe5f+j DmTYCXk32jQmFp9A1dcjRge1D7upSY2seAlIo6qGX7AVo4xSvbRM9cJHvvq+lFnf qJIAlx9GjikJlsMpyTG0PHwVq8IFoMBtqMgP84Tj3MC6EX8klLuIKBHReQ/AYhxE DBGkzPD0bcGc7tzQ1T9uK2gAMZkA0/8/V4Vq08Et6cTRCTvUA4PqssIa -----END CERTIFICATE-----Generated at Thu Mar 26 22:47:04 2026 by rpki-client