$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Lets6iCYgcanxFN-r8Z-bQOB95s.roa File: Lets6iCYgcanxFN-r8Z-bQOB95s.roa (raw, json) Hash identifier: 54pEGi8byg6mizdAHizT/bO+76sHTDPScbc3isFnyog= Subject key identifier: 2D:EB:6C:EA:20:98:81:C6:A7:C4:53:7E:AF:C6:7E:6D:03:81:F7:9B Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0801 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Lets6iCYgcanxFN-r8Z-bQOB95s.roa Signing time: Tue 31 Mar 2026 07:42:36 +0000 ROA not before: Tue 31 Mar 2026 07:42:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2516 IP address blocks: 125.53.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2049 (0x801) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 07:42:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2DEB6CEA209881C6A7C4537EAFC67E6D0381F79B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:43:01:d9:05:f5:0f:36:e1:eb:c7:96:fa:c3: d0:5d:aa:e9:7c:ef:78:01:a0:25:6b:18:d5:4f:57: 33:77:a3:34:a6:2f:62:d4:67:a4:2d:7d:ff:57:e4: d1:53:81:7a:84:e0:ff:d7:ff:83:61:0e:a6:c0:41: f4:11:5c:81:d0:45:14:92:34:ef:60:7a:ec:1a:3c: 5a:18:44:50:b9:80:7e:5d:c8:df:b4:88:a6:fd:a6: d4:b9:7a:d3:18:d9:57:86:33:73:8d:32:9a:a4:f1: 20:32:2d:e6:1e:76:c4:55:8b:df:e4:1f:79:be:a0: e1:8e:4f:cd:d9:bf:a4:97:d9:43:e7:a2:ff:a4:26: ea:17:17:50:df:d2:5e:14:69:ec:8c:be:7d:28:74: 57:dd:e0:47:19:fe:f3:06:e7:d7:a1:50:e0:8a:af: 51:07:48:50:6d:9d:99:d5:3b:55:63:e5:7e:da:cc: 85:bc:a5:05:ec:04:d6:2f:6f:a9:06:4e:85:1f:90: a3:b2:46:be:58:22:e0:5b:c2:38:09:92:a8:a2:26: aa:84:37:bd:24:aa:47:ee:e8:fb:8c:2b:02:24:2b: 21:cb:08:0e:89:95:09:b5:89:0b:43:56:ee:c1:79: 95:35:07:82:93:5c:90:64:aa:49:7b:12:3c:84:2f: 15:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EB:6C:EA:20:98:81:C6:A7:C4:53:7E:AF:C6:7E:6D:03:81:F7:9B X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Lets6iCYgcanxFN-r8Z-bQOB95s.roa sbgp-ipAddrBlock: critical IPv4: 125.53.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:d6:32:9e:13:d8:20:c9:c5:1e:71:37:9d:f7:4d:6c:0d:3f: 00:fc:5a:4b:9c:a3:b4:7d:db:85:4b:46:56:61:ed:74:9b:7d: 31:b9:93:d5:83:d7:44:4f:05:ac:22:0f:10:20:a3:28:f3:ec: 32:48:51:ae:cb:e5:87:7a:fe:44:fa:bc:be:b2:bb:3e:e2:c6: ba:8c:c4:bd:42:41:c8:94:39:d6:9c:0f:6a:7c:3e:24:c6:ae: fa:6d:ef:be:56:d4:29:83:95:04:3d:96:54:7d:46:ca:ff:ce: 2f:3c:0a:95:97:22:d7:b3:23:9e:db:38:7e:87:bb:37:3e:36: 14:a6:ee:fc:55:92:4b:f6:38:23:79:3c:82:a4:7b:8b:c4:b1: 9b:cc:74:40:1a:06:5d:04:4d:b2:19:4f:6a:f1:2f:30:ab:1e: 6d:a2:ac:cb:5d:cf:63:0a:65:c5:c3:49:29:9e:0c:62:e5:bc: 18:e9:a8:80:4d:e9:2f:ef:b4:45:d5:0e:65:44:3d:2c:8b:3c: 33:1a:bf:63:07:bb:54:65:9a:38:20:d6:a0:a4:81:d5:a7:68: e4:fa:93:a4:c1:57:b7:ca:3d:6c:c4:c8:b0:c8:14:9b:28:37: 6a:39:b5:7c:74:3c:b9:d9:40:22:0e:77:a9:ea:d7:bd:37:18: e4:dd:cd:5f -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICCAEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNjAzMzEw NzQyMzZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJERUI2Q0VBMjA5ODgx QzZBN0M0NTM3RUFGQzY3RTZEMDM4MUY3OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLQwHZBfUPNuHrx5b6w9Bdqul873gBoCVrGNVPVzN3ozSmL2LU Z6Qtff9X5NFTgXqE4P/X/4NhDqbAQfQRXIHQRRSSNO9geuwaPFoYRFC5gH5dyN+0 iKb9ptS5etMY2VeGM3ONMpqk8SAyLeYedsRVi9/kH3m+oOGOT83Zv6SX2UPnov+k JuoXF1Df0l4UaeyMvn0odFfd4EcZ/vMG59ehUOCKr1EHSFBtnZnVO1Vj5X7azIW8 pQXsBNYvb6kGToUfkKOyRr5YIuBbwjgJkqiiJqqEN70kqkfu6PuMKwIkKyHLCA6J lQm1iQtDVu7BeZU1B4KTXJBkqkl7EjyELxXfAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQULets6iCYgcanxFN+r8Z+bQOB95swHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTYxL0xldHM2aUNZZ2NhbnhGTi1yOFotYlFPQjk1cy5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB9NTANBgkqhkiG9w0BAQsFAAOCAQEA r9YynhPYIMnFHnE3nfdNbA0/APxaS5yjtH3bhUtGVmHtdJt9MbmT1YPXRE8FrCIP ECCjKPPsMkhRrsvlh3r+RPq8vrK7PuLGuozEvUJByJQ51pwPanw+JMau+m3vvlbU KYOVBD2WVH1Gyv/OLzwKlZci17Mjnts4foe7Nz42FKbu/FWSS/Y4I3k8gqR7i8Sx m8x0QBoGXQRNshlPavEvMKsebaKsy13PYwplxcNJKZ4MYuW8GOmogE3pL++0RdUO ZUQ9LIs8Mxq/Ywe7VGWaOCDWoKSB1ado5PqTpMFXt8o9bMTIsMgUmyg3ajm1fHQ8 udlAIg53qerXvTcY5N3NXw== -----END CERTIFICATE-----Generated at Fri Apr 17 08:13:26 2026 by rpki-client