$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/AIxgF2VqCKM0CBuEEwwoyd5PT78.roa File: AIxgF2VqCKM0CBuEEwwoyd5PT78.roa (raw, json) Hash identifier: bF4Us1sHbwuMwgFJTL1XAANra6rM2nr65d3xX4z2S6w= Subject key identifier: 00:8C:60:17:65:6A:08:A3:34:08:1B:84:13:0C:28:C9:DE:4F:4F:BF Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 07CB Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/AIxgF2VqCKM0CBuEEwwoyd5PT78.roa Signing time: Tue 31 Mar 2026 07:42:09 +0000 ROA not before: Tue 31 Mar 2026 07:42:09 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2516 IP address blocks: 222.2.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1995 (0x7cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 07:42:09 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=008C6017656A08A334081B84130C28C9DE4F4FBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:51:5b:e1:85:47:32:12:5b:e5:e7:36:43:3e: 28:08:65:38:86:63:ca:ca:89:b6:1e:0d:90:a0:88: 41:9d:01:2e:e2:32:2f:c9:b0:e4:ae:5f:c8:ed:07: d5:d8:77:a3:4f:a2:38:36:3e:e9:65:04:a2:b2:df: 93:c5:60:77:ea:30:ba:6c:44:7b:b5:c8:1c:70:84: 84:43:55:61:9c:76:14:13:76:d8:e9:6c:e9:2b:40: df:cb:10:b4:1a:33:60:80:17:d0:d6:e7:55:21:dd: a6:7b:01:9a:08:4a:d5:bc:7f:91:f5:20:db:82:5a: 72:8f:02:8b:41:7b:7c:cd:58:6e:fc:2e:25:c0:b6: 6f:69:25:9d:1a:86:57:0b:ce:23:1a:78:81:5e:39: 37:2f:dd:45:ef:f8:a3:44:99:37:63:65:ae:91:3f: d9:38:bf:6d:83:7f:3b:31:4b:a3:39:c3:e8:a8:bc: 0e:c5:fd:2c:bb:78:1b:b8:74:47:31:97:79:b8:23: 87:c5:08:da:49:92:30:d4:c1:35:d8:4a:b0:c2:24: f8:99:f9:04:67:a5:da:a1:ec:34:4b:29:d8:eb:f2: a6:1d:af:dc:f7:50:1d:a0:4d:e1:7f:91:b7:ea:da: c1:d0:87:d2:5c:43:21:19:e0:1e:70:1c:b0:67:6b: 0d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:8C:60:17:65:6A:08:A3:34:08:1B:84:13:0C:28:C9:DE:4F:4F:BF X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/AIxgF2VqCKM0CBuEEwwoyd5PT78.roa sbgp-ipAddrBlock: critical IPv4: 222.2.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:67:b3:8e:d3:bd:7f:91:89:6c:fd:3d:4e:f4:03:f6:0d:ac: b1:de:98:d7:91:cb:68:59:6e:7b:e0:64:c3:dc:19:bf:2d:73: 7a:25:bb:7d:25:06:d7:35:ce:6a:ee:36:aa:30:e3:10:30:65: 81:22:ac:18:f2:ea:bf:72:38:2e:7c:fe:57:de:18:09:6e:e2: 77:4d:cf:8a:44:66:95:c0:09:e5:de:e7:ad:a8:18:92:d4:9d: 72:76:5c:53:bc:87:34:70:da:7b:0c:f8:62:08:9f:05:32:89: a0:84:57:5c:13:f1:f2:29:70:dd:0a:d4:39:45:a6:30:80:69: 7d:4e:cd:11:91:86:01:3b:20:5d:21:c7:81:02:b3:ef:34:57: 66:74:4d:53:f6:67:eb:57:16:00:1b:32:93:39:c8:37:dc:ff: a1:bb:39:ad:05:06:f5:e6:4b:8a:50:98:63:de:f3:d5:16:1f: b5:b0:4c:48:00:22:00:fa:26:5a:05:a7:03:40:8b:12:3d:f9: ab:03:3e:db:44:d9:5a:08:21:e1:1d:c9:14:c0:80:5e:bc:51: 8a:4e:9f:f7:55:97:cf:58:b8:1e:fb:9e:0e:9d:57:7f:e8:ad: d5:f6:27:a4:3c:fa:38:7a:a5:79:ad:a1:07:9d:35:4b:29:42: 71:a1:36:b6 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICB8swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNjAzMzEw NzQyMDlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAwOEM2MDE3NjU2QTA4 QTMzNDA4MUI4NDEzMEMyOEM5REU0RjRGQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaUVvhhUcyElvl5zZDPigIZTiGY8rKibYeDZCgiEGdAS7iMi/J sOSuX8jtB9XYd6NPojg2PullBKKy35PFYHfqMLpsRHu1yBxwhIRDVWGcdhQTdtjp bOkrQN/LELQaM2CAF9DW51Uh3aZ7AZoIStW8f5H1INuCWnKPAotBe3zNWG78LiXA tm9pJZ0ahlcLziMaeIFeOTcv3UXv+KNEmTdjZa6RP9k4v22DfzsxS6M5w+iovA7F /Sy7eBu4dEcxl3m4I4fFCNpJkjDUwTXYSrDCJPiZ+QRnpdqh7DRLKdjr8qYdr9z3 UB2gTeF/kbfq2sHQh9JcQyEZ4B5wHLBnaw3RAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUAIxgF2VqCKM0CBuEEwwoyd5PT78wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTYxL0FJeGdGMlZxQ0tNMENCdUVFd3dveWQ1UFQ3OC5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDeAjANBgkqhkiG9w0BAQsFAAOCAQEA fmezjtO9f5GJbP09TvQD9g2ssd6Y15HLaFlue+Bkw9wZvy1zeiW7fSUG1zXOau42 qjDjEDBlgSKsGPLqv3I4Lnz+V94YCW7id03PikRmlcAJ5d7nragYktSdcnZcU7yH NHDaewz4YgifBTKJoIRXXBPx8ilw3QrUOUWmMIBpfU7NEZGGATsgXSHHgQKz7zRX ZnRNU/Zn61cWABsykznIN9z/obs5rQUG9eZLilCYY97z1RYftbBMSAAiAPomWgWn A0CLEj35qwM+20TZWggh4R3JFMCAXrxRik6f91WXz1i4HvueDp1Xf+it1fYnpDz6 OHqlea2hB501SylCcaE2tg== -----END CERTIFICATE-----Generated at Sun Apr 19 09:15:43 2026 by rpki-client