$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/cCT8LzR1K4WApHe6NGFNorfOPW0.roa File: cCT8LzR1K4WApHe6NGFNorfOPW0.roa (raw, json) Hash identifier: SBnRnsXc8imz5L1W/OmHxOrw3SomoC67sdOLXUNmpX8= Subject key identifier: 70:24:FC:2F:34:75:2B:85:80:A4:77:BA:34:61:4D:A2:B7:CE:3D:6D Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0768 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/cCT8LzR1K4WApHe6NGFNorfOPW0.roa Signing time: Tue 31 Mar 2026 07:41:21 +0000 ROA not before: Tue 31 Mar 2026 07:41:21 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2516 IP address blocks: 222.0.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1896 (0x768) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 07:41:21 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=7024FC2F34752B8580A477BA34614DA2B7CE3D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:00:1e:00:d1:2d:18:22:44:0e:f0:c3:30:70: e7:e8:9c:44:b2:20:e6:8d:95:b8:f6:0a:68:c1:b2: 4a:40:eb:68:8f:a5:75:38:d3:59:62:3a:e5:f8:07: 8c:fa:ce:61:d2:10:e2:e7:74:39:cd:51:91:f6:c0: 7e:5c:e0:f7:22:fb:70:62:d9:88:9d:1b:12:aa:9e: ef:b5:e4:1f:0e:79:77:d7:58:24:4f:ae:4a:eb:46: 9e:d3:ae:69:67:ca:87:98:03:29:bf:9a:e0:5f:93: d6:cf:1c:04:a4:e4:53:5f:e1:77:18:7e:2f:aa:e7: cf:dd:66:a3:d7:f5:63:17:55:e3:2e:13:ca:c2:9d: 17:12:01:55:48:b1:6b:41:db:dd:83:9c:80:00:11: 7c:0e:fb:2d:2d:10:f3:81:5e:b6:f9:e8:b4:90:fa: 68:16:f4:f7:cd:a7:c8:ca:dc:6d:e5:6a:a6:9d:64: 0c:93:21:8b:4e:ac:44:9c:e6:fb:7d:d7:ca:fc:6a: ec:13:44:da:b2:17:9d:d0:ac:01:7e:e9:28:75:bb: 09:0e:a5:6c:b5:76:bd:d8:32:c8:5a:fc:7a:e8:10: 80:4a:96:b3:d6:37:fc:f4:c0:59:ae:0e:0c:8b:c0: a8:39:f9:e6:1a:ab:03:00:67:6b:dd:c1:b2:5f:a9: 5d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:24:FC:2F:34:75:2B:85:80:A4:77:BA:34:61:4D:A2:B7:CE:3D:6D X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/cCT8LzR1K4WApHe6NGFNorfOPW0.roa sbgp-ipAddrBlock: critical IPv4: 222.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:18:85:ab:73:04:a9:6e:24:d5:2f:e8:bf:63:2c:35:44:b4: 14:bf:7a:1f:00:41:d9:e5:2d:c1:ca:7b:29:2b:d2:ef:0c:0b: c2:27:97:21:53:ef:d5:2e:fb:63:03:c7:df:ac:60:83:40:19: 54:c1:43:d7:05:be:06:49:9f:00:8e:4c:84:3e:dc:1b:01:bc: 08:84:e4:41:12:a6:4d:1f:74:11:d0:4c:e5:b3:b0:06:31:b9: 82:90:9c:b2:28:fc:27:cf:f1:e9:09:a9:4c:ce:f1:fe:56:7b: 27:a0:20:ee:f0:e4:3d:64:a1:f4:9d:2b:65:8e:9f:0e:d0:19: e8:45:bb:ba:ab:05:5d:45:49:c3:20:1d:1b:e9:89:24:47:61: 1b:ae:20:87:d0:8f:cc:8d:62:43:f5:09:29:48:99:b4:c1:30: 7b:bd:c8:1e:8a:31:2e:29:70:9d:ab:7a:f7:f8:d6:43:27:4b: 8d:4a:42:cd:f3:6d:5c:0a:db:05:a0:63:ad:67:ce:e1:7c:b3: 8c:fa:a1:72:1f:68:0c:e0:36:1b:70:61:cc:67:34:bd:6a:98: 73:c8:d2:f5:ab:47:1f:4a:6b:f9:8a:41:b3:ae:b2:18:7f:9c: f1:2e:8d:6a:3f:81:cc:d2:9d:ef:c9:9c:0f:ab:ed:ae:6e:e3: 00:e7:81:a7 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICB2gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNjAzMzEw NzQxMjFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcwMjRGQzJGMzQ3NTJC ODU4MEE0NzdCQTM0NjE0REEyQjdDRTNENkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPAB4A0S0YIkQO8MMwcOfonESyIOaNlbj2CmjBskpA62iPpXU4 01liOuX4B4z6zmHSEOLndDnNUZH2wH5c4Pci+3Bi2YidGxKqnu+15B8OeXfXWCRP rkrrRp7TrmlnyoeYAym/muBfk9bPHASk5FNf4XcYfi+q58/dZqPX9WMXVeMuE8rC nRcSAVVIsWtB292DnIAAEXwO+y0tEPOBXrb56LSQ+mgW9PfNp8jK3G3laqadZAyT IYtOrESc5vt918r8auwTRNqyF53QrAF+6Sh1uwkOpWy1dr3YMsha/HroEIBKlrPW N/z0wFmuDgyLwKg5+eYaqwMAZ2vdwbJfqV2DAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUcCT8LzR1K4WApHe6NGFNorfOPW0wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTYxL2NDVDhMelIxSzRXQXBIZTZOR0ZOb3JmT1BXMC5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDeADANBgkqhkiG9w0BAQsFAAOCAQEA NRiFq3MEqW4k1S/ov2MsNUS0FL96HwBB2eUtwcp7KSvS7wwLwieXIVPv1S77YwPH 36xgg0AZVMFD1wW+BkmfAI5MhD7cGwG8CITkQRKmTR90EdBM5bOwBjG5gpCcsij8 J8/x6QmpTM7x/lZ7J6Ag7vDkPWSh9J0rZY6fDtAZ6EW7uqsFXUVJwyAdG+mJJEdh G64gh9CPzI1iQ/UJKUiZtMEwe73IHooxLilwnat69/jWQydLjUpCzfNtXArbBaBj rWfO4XyzjPqhch9oDOA2G3BhzGc0vWqYc8jS9atHH0pr+YpBs66yGH+c8S6Naj+B zNKd78mcD6vtrm7jAOeBpw== -----END CERTIFICATE-----Generated at Fri Apr 17 08:13:36 2026 by rpki-client