$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/jDqnbjmMXhZ1bnHhfvGtSH1Fd0U.roa File: jDqnbjmMXhZ1bnHhfvGtSH1Fd0U.roa (raw, json) Hash identifier: vtRXYBZDOdIX5YXUjXXkVrI4bYpP+X56IDB1LFroi1Q= Subject key identifier: 8C:3A:A7:6E:39:8C:5E:16:75:6E:71:E1:7E:F1:AD:48:7D:45:77:45 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0860 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/jDqnbjmMXhZ1bnHhfvGtSH1Fd0U.roa Signing time: Tue 31 Mar 2026 07:43:25 +0000 ROA not before: Tue 31 Mar 2026 07:43:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2516 IP address blocks: 59.131.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2144 (0x860) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 07:43:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8C3AA76E398C5E16756E71E17EF1AD487D457745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:75:3a:10:37:e1:3f:a4:dd:d6:c8:ed:55:a4: 9d:58:2c:4d:34:05:19:b5:b5:6e:eb:44:9f:83:fb: 3e:1f:44:d3:78:df:8c:7e:41:8c:17:00:82:ab:02: a9:e1:97:3c:6c:42:e7:94:20:be:c0:50:5e:24:d9: 7f:73:45:9f:3b:32:35:0b:f0:a2:c9:8d:59:91:36: 5f:3d:82:eb:be:e5:4f:3e:dd:a9:ec:52:c2:91:dd: 82:fb:60:07:51:2d:39:85:45:a5:db:64:f6:69:35: a3:85:cf:62:87:2a:6c:ae:fb:a8:82:d9:9b:c0:1e: cc:9d:9b:c7:f4:63:98:13:ee:bb:7f:5a:ec:07:0a: 16:ee:e9:35:e9:39:3a:f2:e4:bc:b6:59:4a:42:3c: 56:b8:d0:de:44:71:28:02:58:1b:77:0c:70:dd:c0: ff:fb:c3:7a:a5:05:f7:42:94:ab:aa:63:72:d5:91: 2c:0c:bf:e6:b7:50:b0:77:f5:9c:06:94:bc:93:50: 5f:1e:3c:cb:8c:48:b7:b8:d8:cf:56:01:0f:5e:79: 90:97:3e:ec:1a:b3:99:c5:eb:1f:3a:b6:9d:c6:ff: bb:49:6a:75:99:f8:da:bf:b1:e5:a4:73:24:c9:6f: b3:56:18:62:a9:5a:3e:5c:b4:d3:dd:42:16:e7:64: 38:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:3A:A7:6E:39:8C:5E:16:75:6E:71:E1:7E:F1:AD:48:7D:45:77:45 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/jDqnbjmMXhZ1bnHhfvGtSH1Fd0U.roa sbgp-ipAddrBlock: critical IPv4: 59.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:5f:2c:d6:47:16:72:45:bb:a5:67:26:75:40:ab:1b:69:d6: ff:47:dd:4b:26:cd:26:c4:fd:ac:04:f3:e4:09:3a:36:a4:dc: c5:10:41:a4:3f:1d:3f:75:ce:14:6a:8d:64:45:40:e2:c3:af: ac:0c:1c:74:14:79:a4:a5:b2:d6:6a:0a:d4:e3:37:1d:20:b0: 23:36:fe:00:75:3b:ca:09:92:f5:16:26:d8:a9:56:41:6a:6b: 02:94:a5:40:0d:a0:5b:1a:e3:36:4a:47:e5:77:02:bb:c2:8a: 9e:78:d2:ad:4e:83:46:55:58:07:9b:c8:cd:ec:ce:ed:b6:eb: 3c:e3:f4:81:d6:af:a3:04:42:c9:28:e4:0d:1a:74:4f:9d:fe: 0d:1f:c5:3b:c7:3d:4a:28:4d:24:cf:5c:4b:3d:ae:29:37:c4: d7:af:83:13:1a:bc:55:17:31:c8:b2:fc:05:39:01:69:ba:7d: ac:41:b2:a0:45:c0:13:8b:ee:f8:79:d2:b9:db:e5:61:d9:dd: d0:9a:1e:11:60:15:b2:aa:44:43:44:0e:51:80:c5:86:af:a7: 10:0d:f9:d4:c9:09:b5:d3:ff:cb:e6:88:d3:dd:63:a1:4e:49: 14:a6:ce:24:77:db:9b:4b:33:f4:e0:14:31:00:61:25:7e:55: 40:05:e8:a1 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICCGAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNjAzMzEw NzQzMjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhDM0FBNzZFMzk4QzVF MTY3NTZFNzFFMTdFRjFBRDQ4N0Q0NTc3NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/dToQN+E/pN3WyO1VpJ1YLE00BRm1tW7rRJ+D+z4fRNN434x+ QYwXAIKrAqnhlzxsQueUIL7AUF4k2X9zRZ87MjUL8KLJjVmRNl89guu+5U8+3ans UsKR3YL7YAdRLTmFRaXbZPZpNaOFz2KHKmyu+6iC2ZvAHsydm8f0Y5gT7rt/WuwH Chbu6TXpOTry5Ly2WUpCPFa40N5EcSgCWBt3DHDdwP/7w3qlBfdClKuqY3LVkSwM v+a3ULB39ZwGlLyTUF8ePMuMSLe42M9WAQ9eeZCXPuwas5nF6x86tp3G/7tJanWZ +Nq/seWkcyTJb7NWGGKpWj5ctNPdQhbnZDhHAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUjDqnbjmMXhZ1bnHhfvGtSH1Fd0UwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTYxL2pEcW5iam1NWGhaMWJuSGhmdkd0U0gxRmQwVS5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwA7gzANBgkqhkiG9w0BAQsFAAOCAQEA AV8s1kcWckW7pWcmdUCrG2nW/0fdSybNJsT9rATz5Ak6NqTcxRBBpD8dP3XOFGqN ZEVA4sOvrAwcdBR5pKWy1moK1OM3HSCwIzb+AHU7ygmS9RYm2KlWQWprApSlQA2g WxrjNkpH5XcCu8KKnnjSrU6DRlVYB5vIzezO7bbrPOP0gdavowRCySjkDRp0T53+ DR/FO8c9SihNJM9cSz2uKTfE16+DExq8VRcxyLL8BTkBabp9rEGyoEXAE4vu+HnS udvlYdnd0JoeEWAVsqpEQ0QOUYDFhq+nEA351MkJtdP/y+aI091joU5JFKbOJHfb m0sz9OAUMQBhJX5VQAXooQ== -----END CERTIFICATE-----Generated at Sun Apr 19 09:02:44 2026 by rpki-client