$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20102/gIxEPxae3KIY9bwOD2qiIQ4Pv3U.roa File: gIxEPxae3KIY9bwOD2qiIQ4Pv3U.roa (raw, json) Hash identifier: /OE8woWMSZCfX2kvbUXVpMm5t4Mb7xuKEkfLxXPAzvU= Subject key identifier: 80:8C:44:3F:16:9E:DC:A2:18:F5:BC:0E:0F:6A:A2:21:0E:0F:BF:75 Certificate issuer: /CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Certificate serial: 27 Authority key identifier: 33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/gIxEPxae3KIY9bwOD2qiIQ4Pv3U.roa Signing time: Tue 31 Mar 2026 08:41:07 +0000 ROA not before: Tue 31 Mar 2026 08:41:07 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 131952 IP address blocks: 133.247.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Validity Not Before: Mar 31 08:41:07 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=808C443F169EDCA218F5BC0E0F6AA2210E0FBF75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8b:3b:45:cd:a2:05:94:90:67:01:3d:ea:c3: 91:47:fc:91:1f:ee:a4:3c:8e:76:e6:48:5b:c1:cf: cb:c2:6c:57:02:a2:1c:c0:35:92:aa:27:3b:de:f7: b9:ed:d7:7c:e8:a5:ae:93:ef:d9:84:c9:3f:a3:99: 1b:89:c4:59:4b:3e:bd:52:1d:72:12:ca:41:87:61: 0c:78:6a:a9:cc:d5:10:54:0b:7e:bd:c1:5d:a3:69: af:28:03:b4:ae:71:b6:9f:ec:38:2c:8e:ff:0c:42: 5e:69:d9:3b:20:a3:fc:5a:ef:07:ce:3d:0d:98:13: 04:4c:c8:3d:d1:d7:22:0d:b1:39:e7:fa:88:62:88: 8b:78:a8:1b:7e:24:b6:56:c3:27:e2:c6:5a:f0:24: 87:e5:6e:74:13:b6:0a:4d:91:9d:e6:7c:22:1d:bd: 49:f6:a1:e7:5d:69:67:33:ad:81:bd:08:70:f1:e3: 98:df:9a:11:07:66:47:3e:42:03:ac:ff:3b:fd:c7: de:94:03:fc:e7:d3:9c:72:c0:27:ac:b2:ab:af:03: 5d:62:64:e0:80:59:af:6f:3a:04:f7:dc:cd:b8:53: 4d:2a:9b:2f:5d:7b:00:be:ae:c1:e4:17:e9:bd:7e: 3f:f7:5c:f0:83:91:83:81:80:38:c9:04:20:cd:58: 99:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8C:44:3F:16:9E:DC:A2:18:F5:BC:0E:0F:6A:A2:21:0E:0F:BF:75 X509v3 Authority Key Identifier: keyid:33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/gIxEPxae3KIY9bwOD2qiIQ4Pv3U.roa sbgp-ipAddrBlock: critical IPv4: 133.247.112.0/20 Signature Algorithm: sha256WithRSAEncryption 86:74:66:61:9d:8d:1e:35:99:3c:9c:6f:8e:66:33:1a:4d:97: 9f:1c:05:4e:41:7a:ee:a2:31:b9:b4:40:8a:89:31:2f:c1:b3: 27:99:2e:f5:55:32:34:62:d3:ea:b5:29:e5:28:4a:05:35:c4: 4d:e2:07:b7:e8:c4:19:d7:1e:7b:30:0f:35:01:09:0c:b8:c4: 15:d0:c0:1a:1c:4a:e4:a4:e3:93:8f:6d:df:6e:47:73:10:d6: cb:98:0d:fb:59:ea:49:4e:51:50:7b:a6:aa:00:94:a7:16:23: e5:b7:16:be:b7:2b:73:ac:ce:18:b5:cd:ec:b0:94:2a:e7:56: c4:ab:b7:eb:50:54:9d:3d:f6:50:8b:d9:f4:a9:7b:72:8d:61: e3:78:e3:a5:b1:a9:eb:a1:91:d5:71:8a:70:ff:a1:a5:f3:66: a7:c2:6c:27:bd:d5:34:87:e2:0c:e0:d1:2f:ac:91:6a:94:de: d4:d2:51:c2:d8:ae:4b:6d:b3:0f:c0:8b:9b:8e:6d:2a:5d:4a: 32:4d:35:74:08:1a:6a:de:ff:c0:85:9c:5b:7d:77:56:84:64: 5c:27:e7:8c:ed:2b:1e:cd:0d:c0:f8:b2:60:21:93:49:e7:72: c9:5f:d6:fb:93:41:a3:91:23:ba:a4:a9:07:f4:bb:5d:a6:dd: 28:36:25:51 -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0Qy QzJDODgxNkYzMEU2QjU4MjYyQjkzQzcxN0M4NTUxMzUwNUM1MB4XDTI2MDMzMTA4 NDEwN1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODA4QzQ0M0YxNjlFRENB MjE4RjVCQzBFMEY2QUEyMjEwRTBGQkY3NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANeLO0XNogWUkGcBPerDkUf8kR/upDyOduZIW8HPy8JsVwKiHMA1 kqonO973ue3XfOilrpPv2YTJP6OZG4nEWUs+vVIdchLKQYdhDHhqqczVEFQLfr3B XaNprygDtK5xtp/sOCyO/wxCXmnZOyCj/FrvB849DZgTBEzIPdHXIg2xOef6iGKI i3ioG34ktlbDJ+LGWvAkh+VudBO2Ck2RneZ8Ih29Sfah511pZzOtgb0IcPHjmN+a EQdmRz5CA6z/O/3H3pQD/OfTnHLAJ6yyq68DXWJk4IBZr286BPfczbhTTSqbL117 AL6uweQX6b1+P/dc8IORg4GAOMkEIM1YmfsCAwEAAaOCAd0wggHZMB0GA1UdDgQW BBSAjEQ/Fp7cohj1vA4PaqIhDg+/dTAfBgNVHSMEGDAWgBQz0sLIgW8w5rWCYrk8 cXyFUTUFxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMDIvTTlMQ3lJRnZNT2ExZ21LNVBIRjhoVkUxQmNVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTlMQ3lJRnZNT2ExZ21LNVBIRjho VkUxQmNVLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIwMTAyL2dJeEVQeGFlM0tJWTlid09EMnFpSVE0UHYzVS5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBASF93AwDQYJKoZIhvcNAQELBQAD ggEBAIZ0ZmGdjR41mTycb45mMxpNl58cBU5Beu6iMbm0QIqJMS/BsyeZLvVVMjRi 0+q1KeUoSgU1xE3iB7foxBnXHnswDzUBCQy4xBXQwBocSuSk45OPbd9uR3MQ1suY DftZ6klOUVB7pqoAlKcWI+W3Fr63K3Oszhi1zeywlCrnVsSrt+tQVJ099lCL2fSp e3KNYeN446WxqeuhkdVxinD/oaXzZqfCbCe91TSH4gzg0S+skWqU3tTSUcLYrktt sw/Ai5uObSpdSjJNNXQIGmre/8CFnFt9d1aEZFwn54ztKx7NDcD4smAhk0nncslf 1vuTQaORI7qkqQf0u12m3Sg2JVE= -----END CERTIFICATE-----Generated at Fri Apr 17 05:58:24 2026 by rpki-client