$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/QKMA0Pg-aB4TWehXWbRp8RyrrkE.roa File: QKMA0Pg-aB4TWehXWbRp8RyrrkE.roa (raw, json) Hash identifier: 86EkUP04tDL0dzXw14HSXnUDSqGoXbhhIA8zz7LigC0= Subject key identifier: 40:A3:00:D0:F8:3E:68:1E:13:59:E8:57:59:B4:69:F1:1C:AB:AE:41 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 66 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/QKMA0Pg-aB4TWehXWbRp8RyrrkE.roa Signing time: Tue 31 Mar 2026 08:16:36 +0000 ROA not before: Tue 31 Mar 2026 08:16:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7672 IP address blocks: 218.228.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: Mar 31 08:16:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=40A300D0F83E681E1359E85759B469F11CABAE41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c8:38:5c:c7:bf:dd:df:a4:4c:f6:7d:97:cf: 27:22:d7:69:70:8e:32:e2:4e:1e:f4:da:5f:ac:90: d4:5a:81:99:90:20:49:6e:81:a6:bb:88:26:e4:1b: 77:9a:3e:bb:13:ea:6e:39:df:d7:67:4b:87:28:2c: 75:31:ba:c6:db:ab:00:f7:13:0d:9b:d4:d8:83:29: 3f:ba:98:51:63:2d:55:1f:66:2d:49:18:2c:c8:28: 3d:56:02:d3:1b:0c:8a:ee:4f:32:ff:3e:0d:8e:a5: 5b:fc:04:a1:84:68:52:ca:5f:8d:14:70:84:43:ff: a2:5e:98:04:6a:50:89:31:63:26:49:c5:c4:2b:75: 99:82:83:c3:76:c5:a4:dc:de:78:ae:c7:5a:12:1d: c8:fa:e9:dc:f2:e2:1d:7c:23:8c:d5:f1:c5:41:58: d5:dc:50:db:07:23:e0:fa:36:c3:e5:6a:11:cc:2d: c3:3b:21:45:0b:4d:fb:87:9b:a2:a2:56:eb:3e:e6: db:82:90:31:3a:44:65:00:e3:7f:dd:1b:a9:cc:d6: 21:a0:38:98:79:b0:26:0e:00:c1:1d:ca:75:5b:c2: d4:93:2e:d5:77:ae:c3:83:07:92:73:e0:33:f4:1e: e3:11:91:af:1f:8b:94:1f:29:04:fa:07:c8:ef:6f: 78:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A3:00:D0:F8:3E:68:1E:13:59:E8:57:59:B4:69:F1:1C:AB:AE:41 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/QKMA0Pg-aB4TWehXWbRp8RyrrkE.roa sbgp-ipAddrBlock: critical IPv4: 218.228.16.0/20 Signature Algorithm: sha256WithRSAEncryption a1:12:2b:30:f6:68:14:44:ba:6b:b1:52:75:fa:38:b5:1c:ca: 10:96:ae:01:ae:a8:1f:30:32:c8:09:cb:4b:86:34:ed:2c:0b: d5:f4:ac:31:20:31:83:50:b5:f0:ee:3f:d8:e1:64:de:dc:31: 4b:92:74:d2:e4:4e:80:fd:d3:32:c6:60:d6:3b:e0:3b:13:51: 30:fb:ff:88:d8:54:5c:5e:d5:43:b0:fa:35:13:80:c0:b2:4f: 7e:45:b6:bb:be:aa:11:99:1e:56:c5:ab:6f:c3:a5:b3:c6:87: 37:19:74:6c:4d:23:cd:f9:c0:6d:8e:d5:65:a4:d2:3d:52:35: d7:fc:14:56:f3:81:bd:a4:5e:52:a6:f8:0a:bd:dc:6f:d4:c7: 23:45:46:ac:d8:f8:7f:1b:c9:43:3a:96:d7:dc:78:4d:1a:90: 28:f6:51:d9:94:94:60:32:b4:80:4b:da:c4:cb:8e:ec:65:bf: 38:5d:d6:f9:dd:11:da:76:83:be:4d:2f:9b:fe:1d:c4:71:46: e3:d8:d3:3e:b2:de:0a:ed:94:35:9e:5e:51:5a:20:13:c3:c9: a0:f2:79:df:05:7b:2f:2f:c7:d7:7f:91:ed:d0:1e:0f:4a:48: b3:2e:6a:34:03:ea:39:99:91:c6:77:64:94:c6:20:82:72:7a: 31:0e:e1:00 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI2MDMzMTA4 MTYzNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNDBBMzAwRDBGODNFNjgx RTEzNTlFODU3NTlCNDY5RjExQ0FCQUU0MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMnIOFzHv93fpEz2fZfPJyLXaXCOMuJOHvTaX6yQ1FqBmZAgSW6B pruIJuQbd5o+uxPqbjnf12dLhygsdTG6xturAPcTDZvU2IMpP7qYUWMtVR9mLUkY LMgoPVYC0xsMiu5PMv8+DY6lW/wEoYRoUspfjRRwhEP/ol6YBGpQiTFjJknFxCt1 mYKDw3bFpNzeeK7HWhIdyPrp3PLiHXwjjNXxxUFY1dxQ2wcj4Po2w+VqEcwtwzsh RQtN+4eboqJW6z7m24KQMTpEZQDjf90bqczWIaA4mHmwJg4AwR3KdVvC1JMu1Xeu w4MHknPgM/Qe4xGRrx+LlB8pBPoHyO9veN0CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBRAowDQ+D5oHhNZ6FdZtGnxHKuuQTAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yMzIvUUtNQTBQZy1hQjRUV2VoWFdiUnA4UnlycmtFLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNrkEDANBgkqhkiG9w0BAQsFAAOCAQEA oRIrMPZoFES6a7FSdfo4tRzKEJauAa6oHzAyyAnLS4Y07SwL1fSsMSAxg1C18O4/ 2OFk3twxS5J00uROgP3TMsZg1jvgOxNRMPv/iNhUXF7VQ7D6NROAwLJPfkW2u76q EZkeVsWrb8Ols8aHNxl0bE0jzfnAbY7VZaTSPVI11/wUVvOBvaReUqb4Cr3cb9TH I0VGrNj4fxvJQzqW19x4TRqQKPZR2ZSUYDK0gEvaxMuO7GW/OF3W+d0R2naDvk0v m/4dxHFG49jTPrLeCu2UNZ5eUVogE8PJoPJ53wV7Ly/H13+R7dAeD0pIsy5qNAPq OZmRxndklMYggnJ6MQ7hAA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:23:21 2026 by rpki-client