$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/If-j2OSgEVS2J010NtebhKmvMt0.roa File: If-j2OSgEVS2J010NtebhKmvMt0.roa (raw, json) Hash identifier: j7FpxdTxZFQl5YL0ml29qiJtNJRvmLp5PY8VSGMutc8= Subject key identifier: 21:FF:A3:D8:E4:A0:11:54:B6:27:4D:74:36:D7:9B:84:A9:AF:32:DD Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 075B Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/If-j2OSgEVS2J010NtebhKmvMt0.roa Signing time: Tue 31 Mar 2026 07:41:16 +0000 ROA not before: Tue 31 Mar 2026 07:41:16 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2516 IP address blocks: 61.117.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1883 (0x75b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 07:41:16 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=21FFA3D8E4A01154B6274D7436D79B84A9AF32DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:89:5f:09:17:08:e3:f9:fa:e7:e5:6c:fb:f5: a4:91:ce:90:da:a9:fa:01:0b:24:e8:a5:17:76:89: dc:47:70:36:6c:10:bd:6f:69:96:2b:92:ae:45:ee: 00:8d:0b:8d:bf:62:f1:f4:f4:4a:5e:ec:4b:bc:07: f3:95:41:61:dc:e9:d9:17:f6:00:f0:0f:31:b4:d4: 08:86:83:7e:ec:1d:cf:77:09:9a:1e:0e:67:35:04: be:0a:3b:29:79:78:16:df:de:3d:8c:1d:73:66:7c: 79:96:95:73:03:66:08:60:83:81:e8:6e:96:b4:2a: c6:0b:81:c9:f4:bb:8e:9d:d8:67:27:aa:c5:53:75: 81:eb:e6:6e:e3:9b:23:60:96:f8:d8:9c:b0:ca:4f: 1f:6a:53:0e:93:13:d0:75:93:e2:75:6f:7b:78:ff: 54:b5:86:07:3b:90:a3:25:09:00:f6:aa:37:13:38: 48:d9:c4:1f:ad:6b:f7:31:b2:4c:a5:5c:20:02:a4: 0c:1e:fc:d8:1d:b1:b5:a3:b0:79:57:71:49:8b:90: 4c:3c:70:61:f7:1b:d8:f6:6b:73:85:3f:c9:0f:4f: 57:05:ed:30:03:a4:66:30:92:89:57:d3:dc:b5:09: 5b:f3:95:3b:ae:39:0e:f3:f6:e6:c9:58:3e:f1:d3: bd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:FF:A3:D8:E4:A0:11:54:B6:27:4D:74:36:D7:9B:84:A9:AF:32:DD X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/If-j2OSgEVS2J010NtebhKmvMt0.roa sbgp-ipAddrBlock: critical IPv4: 61.117.0.0/17 Signature Algorithm: sha256WithRSAEncryption 37:aa:d9:2e:5a:97:05:1d:64:d2:bc:3a:ac:00:c4:13:0e:d7: 0c:11:09:75:57:c4:20:96:07:41:a5:25:9d:bf:be:10:9e:76: cd:0a:be:7c:bb:cd:64:29:12:e9:c0:e2:93:03:0e:74:48:c3: c8:5e:fb:03:91:04:6f:16:e0:9f:a0:db:6a:34:e5:33:db:ba: b5:86:9f:ab:1f:6b:31:cf:cb:5a:3b:5f:ff:6a:4e:89:06:29: 2e:34:84:e3:68:d6:d0:37:1f:53:cf:54:82:09:4e:fe:68:ec: 6f:ed:68:79:1a:4d:71:a7:d2:a9:8f:a9:d5:17:bf:26:8d:76: c6:e0:ed:ae:8b:52:87:5c:7a:34:57:fb:e8:16:56:d3:0d:e7: 23:81:a0:31:30:ac:0a:56:58:0c:c4:fe:4c:74:dd:f9:90:80: 71:79:9d:7d:a9:cb:bf:12:dd:fc:00:99:63:db:41:98:d1:86: 14:b6:c7:d2:38:3c:af:6f:61:27:7c:53:bf:92:1a:05:db:a1: 50:ad:36:5f:a2:a9:b6:15:bb:73:84:af:3e:8f:9c:61:36:b6: cf:88:a9:65:3b:c6:85:53:8e:c8:e5:7b:04:7a:7d:06:a2:41: d1:b8:24:f9:0c:9c:e0:13:bd:a8:41:13:3a:f3:70:1c:60:fc: 13:0f:90:b5 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICB1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNjAzMzEw NzQxMTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIxRkZBM0Q4RTRBMDEx NTRCNjI3NEQ3NDM2RDc5Qjg0QTlBRjMyREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUiV8JFwjj+frn5Wz79aSRzpDaqfoBCyTopRd2idxHcDZsEL1v aZYrkq5F7gCNC42/YvH09Epe7Eu8B/OVQWHc6dkX9gDwDzG01AiGg37sHc93CZoe Dmc1BL4KOyl5eBbf3j2MHXNmfHmWlXMDZghgg4Hobpa0KsYLgcn0u46d2GcnqsVT dYHr5m7jmyNglvjYnLDKTx9qUw6TE9B1k+J1b3t4/1S1hgc7kKMlCQD2qjcTOEjZ xB+ta/cxskylXCACpAwe/NgdsbWjsHlXcUmLkEw8cGH3G9j2a3OFP8kPT1cF7TAD pGYwkolX09y1CVvzlTuuOQ7z9ubJWD7x072tAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUIf+j2OSgEVS2J010NtebhKmvMt0wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTYxL0lmLWoyT1NnRVZTMkowMTBOdGViaEttdk10MC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9dQAwDQYJKoZIhvcNAQELBQADggEB ADeq2S5alwUdZNK8OqwAxBMO1wwRCXVXxCCWB0GlJZ2/vhCeds0Kvny7zWQpEunA 4pMDDnRIw8he+wORBG8W4J+g22o05TPburWGn6sfazHPy1o7X/9qTokGKS40hONo 1tA3H1PPVIIJTv5o7G/taHkaTXGn0qmPqdUXvyaNdsbg7a6LUodcejRX++gWVtMN 5yOBoDEwrApWWAzE/kx03fmQgHF5nX2py78S3fwAmWPbQZjRhhS2x9I4PK9vYSd8 U7+SGgXboVCtNl+iqbYVu3OErz6PnGE2ts+IqWU7xoVTjsjlewR6fQaiQdG4JPkM nOATvahBEzrzcBxg/BMPkLU= -----END CERTIFICATE-----Generated at Fri Apr 17 08:13:45 2026 by rpki-client