$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/HbxlAkWG2UKgsen3pKXFfFzwsAM.roa File: HbxlAkWG2UKgsen3pKXFfFzwsAM.roa (raw, json) Hash identifier: sRwUHHMY+jwtqGMW1e72s5+Ijn1iFm+XmcXh5mCM/FM= Subject key identifier: 1D:BC:65:02:45:86:D9:42:A0:B1:E9:F7:A4:A5:C5:7C:5C:F0:B0:03 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 02A6 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/HbxlAkWG2UKgsen3pKXFfFzwsAM.roa Signing time: Tue 31 Mar 2026 07:34:31 +0000 ROA not before: Tue 31 Mar 2026 07:34:31 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9371 IP address blocks: 210.188.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Mar 31 07:34:31 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1DBC65024586D942A0B1E9F7A4A5C57C5CF0B003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:12:3d:b3:ea:67:7b:de:29:c2:1b:be:b5:89: 7d:f8:13:1a:8d:ac:8a:de:10:32:94:2f:89:22:1f: 7a:3f:6c:b4:95:26:c0:4f:0b:9b:66:a2:b4:9e:4a: b0:1c:2c:7b:81:3f:ca:79:3a:82:e1:75:54:fb:79: ea:ed:0d:78:76:14:ba:29:3c:c9:95:72:51:20:bb: d3:a8:ff:b9:49:d7:67:47:86:38:22:ac:90:5f:50: a8:1c:80:0d:c8:41:a6:d9:36:3c:f8:74:af:06:54: 19:53:4f:0e:b6:62:72:c4:1a:39:61:5e:51:18:80: 1c:4e:f6:b5:bf:be:3d:4f:04:ea:97:45:ab:5a:41: 02:23:d8:22:f9:46:9e:2a:6f:ad:53:20:1e:b7:73: 9d:78:19:86:3c:8b:6e:db:0c:a0:91:92:6c:81:cc: cf:b9:c4:42:64:e0:8e:39:cd:9a:1a:2f:a0:d0:79: 3f:24:e8:6c:68:ae:fd:93:6d:e2:b9:b6:25:25:13: 23:70:9a:33:7f:82:1d:34:d9:03:66:a5:87:f3:b0: f9:05:b6:c5:98:8f:db:d7:7e:81:53:ca:fb:b5:0e: 14:59:7c:5b:9e:08:61:ee:af:eb:bf:fa:bd:c7:3b: 3e:40:f3:7b:a4:50:f6:9b:db:09:e1:f8:92:01:7d: a8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:BC:65:02:45:86:D9:42:A0:B1:E9:F7:A4:A5:C5:7C:5C:F0:B0:03 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/HbxlAkWG2UKgsen3pKXFfFzwsAM.roa sbgp-ipAddrBlock: critical IPv4: 210.188.212.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:71:c0:87:b5:74:26:d6:d8:33:5f:78:ec:51:96:4c:e1:5a: 76:06:88:27:36:f5:27:0c:3c:54:0b:23:58:62:fb:02:c7:0e: fb:ff:b4:10:96:a2:dc:7c:d1:01:a9:57:ee:10:14:c4:b6:b4: 74:e1:ec:29:e2:2d:93:74:44:5b:6d:bf:2c:eb:a4:99:33:d6: 4b:c7:f7:a0:89:f4:8e:2c:f9:df:20:40:05:8c:fa:54:03:1e: 8b:dd:f7:9f:d0:05:ca:6b:3c:4c:c4:94:d2:c9:4a:87:cc:85: 75:78:4f:0a:d1:5a:28:fb:9f:0c:e5:b6:37:0c:9f:b7:d7:34: ef:aa:16:4a:13:3f:96:a9:57:88:cb:ec:30:d9:eb:60:41:40: 88:13:9d:e8:9d:54:3b:ba:69:89:ba:6e:35:b4:a4:39:06:a0: 78:51:90:84:dd:66:15:29:38:19:41:61:7e:60:84:c2:be:36: 04:1d:2c:4d:29:f7:7d:c9:fb:44:d8:c8:13:65:e2:3d:f7:cf: bb:39:78:99:c9:85:75:74:06:7b:59:6d:95:82:70:0d:e3:d3: a5:dc:de:83:d0:e8:4a:4f:f8:30:ae:79:08:92:2e:a3:a4:86: df:0f:47:f8:1b:9d:69:b2:cf:53:df:6a:fe:d5:35:a3:a3:74: eb:64:29:f8 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNjAzMzEw NzM0MzFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFEQkM2NTAyNDU4NkQ5 NDJBMEIxRTlGN0E0QTVDNTdDNUNGMEIwMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+Ej2z6md73inCG761iX34ExqNrIreEDKUL4kiH3o/bLSVJsBP C5tmorSeSrAcLHuBP8p5OoLhdVT7eertDXh2FLopPMmVclEgu9Oo/7lJ12dHhjgi rJBfUKgcgA3IQabZNjz4dK8GVBlTTw62YnLEGjlhXlEYgBxO9rW/vj1PBOqXRata QQIj2CL5Rp4qb61TIB63c514GYY8i27bDKCRkmyBzM+5xEJk4I45zZoaL6DQeT8k 6Gxorv2TbeK5tiUlEyNwmjN/gh002QNmpYfzsPkFtsWYj9vXfoFTyvu1DhRZfFue CGHur+u/+r3HOz5A83ukUPab2wnh+JIBfahfAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUHbxlAkWG2UKgsen3pKXFfFzwsAMwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8xMDI0Ny9IYnhsQWtXRzJVS2dzZW4zcEtYRmZGendzQU0ucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC0rzUMA0GCSqGSIb3DQEBCwUA A4IBAQANccCHtXQm1tgzX3jsUZZM4Vp2BognNvUnDDxUCyNYYvsCxw77/7QQlqLc fNEBqVfuEBTEtrR04ewp4i2TdERbbb8s66SZM9ZLx/egifSOLPnfIEAFjPpUAx6L 3fef0AXKazxMxJTSyUqHzIV1eE8K0Voo+58M5bY3DJ+31zTvqhZKEz+WqVeIy+ww 2etgQUCIE53onVQ7ummJum41tKQ5BqB4UZCE3WYVKTgZQWF+YITCvjYEHSxNKfd9 yftE2MgTZeI998+7OXiZyYV1dAZ7WW2VgnAN49Ol3N6D0OhKT/gwrnkIki6jpIbf D0f4G51pss9T32r+1TWjo3TrZCn4 -----END CERTIFICATE-----Generated at Sun Apr 19 08:20:52 2026 by rpki-client