$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/948/VAXuK47ZGg7cjmZ1mEBmIjIVyEg.roa File: VAXuK47ZGg7cjmZ1mEBmIjIVyEg.roa (raw, json) Hash identifier: 0oziOWt8z00rsUrZTZ5ydkaoH06gL/J31iTKXwugliA= Subject key identifier: 54:05:EE:2B:8E:D9:1A:0E:DC:8E:66:75:98:40:66:22:32:15:C8:48 Certificate issuer: /CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C Certificate serial: 54 Authority key identifier: C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/VAXuK47ZGg7cjmZ1mEBmIjIVyEg.roa Signing time: Wed 25 Mar 2026 07:32:50 +0000 ROA not before: Wed 25 Mar 2026 07:32:50 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 38628 IP address blocks: 219.97.76.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C Validity Not Before: Mar 25 07:32:50 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5405EE2B8ED91A0EDC8E6675984066223215C848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d9:94:01:56:71:4c:9a:69:ae:9d:0a:5d:5d: 7c:19:75:28:3c:f5:bc:47:96:b3:8e:b9:8d:3d:b7: 27:3a:a8:a0:6f:c4:a4:dd:d8:cd:1b:61:53:d1:37: c5:73:69:29:77:87:06:c4:eb:9a:ab:f0:58:f0:14: 28:48:df:56:63:0c:b1:be:b8:16:13:ce:c2:f7:42: 64:fb:8e:1e:27:99:3f:6d:66:79:c8:ef:13:6a:27: 0d:5f:59:52:15:fc:98:a0:65:85:af:1e:23:df:81: 00:6c:7b:e9:28:fb:4a:cb:36:fa:f1:39:36:f9:3a: 97:db:d1:32:01:6d:93:06:71:03:c8:13:09:2d:e5: 3e:80:30:54:38:48:29:d4:28:bc:86:3e:8f:45:cb: 57:7f:1d:04:42:a2:e1:a9:62:d7:d5:11:2a:c8:3c: 45:cb:42:9a:31:ff:84:17:46:21:15:6d:2d:0b:39: 6c:78:cd:0f:51:f2:24:2c:37:8b:89:a7:b3:c4:92: 8b:f1:b3:be:57:3e:4d:67:27:d0:64:44:89:57:88: 69:7a:9b:78:37:15:de:78:e3:07:8a:9b:e4:4c:ae: 92:bc:3e:7a:b6:e7:03:7a:d0:b3:e3:f1:42:b1:96: 89:a4:2b:91:79:68:67:ce:ad:b4:3c:d6:8f:a4:8f: 83:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:05:EE:2B:8E:D9:1A:0E:DC:8E:66:75:98:40:66:22:32:15:C8:48 X509v3 Authority Key Identifier: keyid:C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/VAXuK47ZGg7cjmZ1mEBmIjIVyEg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.97.76.0/23 Signature Algorithm: sha256WithRSAEncryption b3:e7:04:6d:c9:7d:72:d9:0a:04:cd:b6:dd:e9:73:94:e3:2f: 24:04:9d:91:b8:9a:66:87:e0:84:1b:8e:24:40:38:64:a1:e2: d5:7d:16:6c:6a:d8:8f:63:66:20:2e:73:be:f9:9d:d0:e3:64: 69:cc:8f:92:bf:04:f5:1e:56:08:e4:eb:ff:c1:58:0e:ee:98: 30:f5:07:33:c9:4c:2a:a6:79:82:8b:4c:64:e2:98:5b:62:fa: 74:c1:d5:be:15:58:92:22:5f:e6:91:46:eb:52:67:e9:38:3d: cd:23:88:6b:72:d1:0e:d8:f5:aa:8a:7f:cd:ce:d7:ef:ae:96: 32:79:82:7d:77:de:51:1c:a8:43:84:d8:9c:31:61:0a:8d:05: 41:5a:5a:cc:f0:fc:7c:42:55:b2:dc:8b:3e:9d:64:85:49:29: 5c:e5:c0:25:39:a4:fe:20:34:3a:6a:f9:05:f6:1c:96:f0:7e: 5b:81:da:86:21:b9:28:fe:48:e2:18:0a:e9:e5:7a:eb:13:d6: 7d:5b:ba:78:55:f1:83:eb:b0:2f:11:41:57:96:cd:2a:57:4e: b5:42:a2:b3:e6:a3:87:ac:1e:5a:45:4f:ea:af:8d:21:3a:b1: 2f:b3:f9:0e:3c:fe:d5:1b:08:db:78:a9:e3:74:f9:8a:3f:04: b8:9d:79:92 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNEI5 NTM2QzRFQzc4NUI4ODEyRTUzQTIxOUQyQjA5QTdEQ0JDRTBDMB4XDTI2MDMyNTA3 MzI1MFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNTQwNUVFMkI4RUQ5MUEw RURDOEU2Njc1OTg0MDY2MjIzMjE1Qzg0ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKbZlAFWcUyaaa6dCl1dfBl1KDz1vEeWs465jT23JzqooG/EpN3Y zRthU9E3xXNpKXeHBsTrmqvwWPAUKEjfVmMMsb64FhPOwvdCZPuOHieZP21mecjv E2onDV9ZUhX8mKBlha8eI9+BAGx76Sj7Sss2+vE5Nvk6l9vRMgFtkwZxA8gTCS3l PoAwVDhIKdQovIY+j0XLV38dBEKi4ali19URKsg8RctCmjH/hBdGIRVtLQs5bHjN D1HyJCw3i4mns8SSi/Gzvlc+TWcn0GREiVeIaXqbeDcV3njjB4qb5Eyukrw+erbn A3rQs+PxQrGWiaQrkXloZ86ttDzWj6SPgx8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRUBe4rjtkaDtyOZnWYQGYiMhXISDAfBgNVHSMEGDAWgBTEuVNsTseFuIEuU6IZ 0rCafcvODDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTQ4L3hMbFRiRTdIaGJpQkxsT2lHZEt3bW4zTHpndy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hMbFRiRTdIaGJpQkxsT2lHZEt3bW4z THpndy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NDgvVkFYdUs0N1pHZzdjam1aMW1FQm1JaklWeUVnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAdthTDANBgkqhkiG9w0BAQsFAAOCAQEAs+cEbcl9ctkKBM223elzlOMvJASd kbiaZofghBuOJEA4ZKHi1X0WbGrYj2NmIC5zvvmd0ONkacyPkr8E9R5WCOTr/8FY Du6YMPUHM8lMKqZ5gotMZOKYW2L6dMHVvhVYkiJf5pFG61Jn6Tg9zSOIa3LRDtj1 qop/zc7X766WMnmCfXfeURyoQ4TYnDFhCo0FQVpazPD8fEJVstyLPp1khUkpXOXA JTmk/iA0Omr5BfYclvB+W4HahiG5KP5I4hgK6eV66xPWfVu6eFXxg+uwLxFBV5bN KldOtUKis+ajh6weWkVP6q+NITqxL7P5Djz+1RsI23ip43T5ij8EuJ15kg== -----END CERTIFICATE-----Generated at Thu Mar 26 22:17:18 2026 by rpki-client