$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/OJbhZfP7ZDyn7fJ9qJDZ-DKVZbs.roa File: OJbhZfP7ZDyn7fJ9qJDZ-DKVZbs.roa (raw, json) Hash identifier: hNUZjZyeQUh0w681qt1cyc5vl1lc14bBNU3z7/r8ocM= Subject key identifier: 38:96:E1:65:F3:FB:64:3C:A7:ED:F2:7D:A8:90:D9:F8:32:95:65:BB Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 59 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/OJbhZfP7ZDyn7fJ9qJDZ-DKVZbs.roa Signing time: Tue 31 Mar 2026 08:16:30 +0000 ROA not before: Tue 31 Mar 2026 08:16:30 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7672 IP address blocks: 27.133.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: Mar 31 08:16:30 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3896E165F3FB643CA7EDF27DA890D9F8329565BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ec:c6:e3:b2:6a:66:ad:95:aa:fb:d3:c3:ed: 9b:2c:8b:e8:1c:51:cc:94:bd:e6:69:69:32:db:1a: d1:c8:0b:6f:fe:cf:af:8d:d0:e1:e3:d3:76:bb:50: 3d:73:e1:59:f5:a0:7d:e5:18:32:bc:3c:f1:b5:78: 5d:7a:c4:68:de:ed:48:2d:2e:ce:8b:ba:e7:9a:17: 59:db:82:b6:46:31:38:60:2a:53:ce:15:6d:cf:1e: c2:54:0d:ac:56:12:1e:07:e7:2a:f0:60:9d:85:97: a3:59:4c:22:93:26:22:d8:e5:27:0c:af:6f:49:a8: 19:d2:b0:03:8c:14:a9:b5:cf:66:1b:cb:b4:0c:55: b5:ef:c3:dd:b7:60:5b:ba:e1:02:10:e3:38:ec:08: f5:5e:ef:ef:e8:ba:ef:bd:d1:51:c9:e9:30:3a:fa: 97:26:11:f0:3b:35:c6:f6:ee:dc:2d:e8:62:fc:cd: 1d:6d:ec:7d:ee:e7:ce:c9:bd:8c:35:2f:28:95:3c: 36:6c:9f:50:16:63:39:e6:14:29:aa:21:06:02:be: 7e:4d:b7:18:67:04:55:60:c6:41:ca:39:b4:ac:74: 61:29:6f:1a:d3:5e:f2:a9:86:40:c0:a7:81:36:8b: 38:01:b2:98:08:f5:db:d6:82:ed:a0:bf:53:9e:3d: 5d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:96:E1:65:F3:FB:64:3C:A7:ED:F2:7D:A8:90:D9:F8:32:95:65:BB X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/OJbhZfP7ZDyn7fJ9qJDZ-DKVZbs.roa sbgp-ipAddrBlock: critical IPv4: 27.133.192.0/20 Signature Algorithm: sha256WithRSAEncryption 43:13:4e:7b:00:c9:9e:36:c3:ff:8c:66:89:db:e2:21:e5:18: cc:11:cf:e7:a8:26:8d:e9:a0:08:31:9c:cb:3e:92:f3:e6:dc: 0e:0d:68:56:51:13:37:fc:d2:84:f3:6d:9e:40:28:9b:6a:0e: df:33:7a:84:b9:1a:4e:e8:f7:9a:e2:5a:8a:61:31:ac:94:f5: 81:52:1b:8b:f5:53:51:89:a4:e5:61:e3:f4:6e:4b:84:da:41: d1:c2:94:a4:73:f2:1f:d4:5d:f8:1c:43:7d:65:a7:51:7e:46: d2:e4:f0:6e:be:08:64:05:55:fc:9c:2b:d4:1b:b2:d7:ab:80: 93:7b:53:27:65:a3:fe:7b:64:83:1a:17:bf:c2:7e:1b:93:98: af:b6:e0:c5:ee:a3:c9:5d:ef:b9:fc:66:89:cd:ca:fd:3e:55: 2a:92:e8:3b:6f:01:7e:13:a1:cc:87:b8:e8:1f:ed:2a:24:f8: f0:4e:7c:14:ab:1e:d0:9a:40:e4:99:25:3f:89:43:ac:a1:a6: 43:11:70:c7:2e:3d:a8:b9:3b:85:24:4f:65:3a:1d:52:a4:27: bd:cc:20:5c:04:ea:80:d9:1a:91:0c:5f:34:21:ec:1a:5e:5a: 1c:33:de:b0:b8:bd:15:fa:e2:d3:7c:d3:a4:26:aa:65:b0:87: a1:f1:bf:95 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI2MDMzMTA4 MTYzMFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMzg5NkUxNjVGM0ZCNjQz Q0E3RURGMjdEQTg5MEQ5RjgzMjk1NjVCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKrsxuOyamatlar708PtmyyL6BxRzJS95mlpMtsa0cgLb/7Pr43Q 4ePTdrtQPXPhWfWgfeUYMrw88bV4XXrEaN7tSC0uzou655oXWduCtkYxOGAqU84V bc8ewlQNrFYSHgfnKvBgnYWXo1lMIpMmItjlJwyvb0moGdKwA4wUqbXPZhvLtAxV te/D3bdgW7rhAhDjOOwI9V7v7+i6773RUcnpMDr6lyYR8Ds1xvbu3C3oYvzNHW3s fe7nzsm9jDUvKJU8NmyfUBZjOeYUKaohBgK+fk23GGcEVWDGQco5tKx0YSlvGtNe 8qmGQMCngTaLOAGymAj129aC7aC/U549XZUCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQ4luFl8/tkPKft8n2okNn4MpVluzAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yMzIvT0piaFpmUDdaRHluN2ZKOXFKRFotREtWWmJzLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBBuFwDANBgkqhkiG9w0BAQsFAAOCAQEA QxNOewDJnjbD/4xmidviIeUYzBHP56gmjemgCDGcyz6S8+bcDg1oVlETN/zShPNt nkAom2oO3zN6hLkaTuj3muJaimExrJT1gVIbi/VTUYmk5WHj9G5LhNpB0cKUpHPy H9Rd+BxDfWWnUX5G0uTwbr4IZAVV/Jwr1Buy16uAk3tTJ2Wj/ntkgxoXv8J+G5OY r7bgxe6jyV3vufxmic3K/T5VKpLoO28BfhOhzIe46B/tKiT48E58FKse0JpA5Jkl P4lDrKGmQxFwxy49qLk7hSRPZTodUqQnvcwgXATqgNkakQxfNCHsGl5aHDPesLi9 Ffri03zTpCaqZbCHofG/lQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:11:19 2026 by rpki-client