$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/YHBHTo3IFrdkY-KDdsxigb8rswQ.roa File: YHBHTo3IFrdkY-KDdsxigb8rswQ.roa (raw, json) Hash identifier: fRNk0KYdNsI6wWDSqjD97D1HbQq/Lc4BvBHwNVW1Iyg= Subject key identifier: 60:70:47:4E:8D:C8:16:B7:64:63:E2:83:76:CC:62:81:BF:2B:B3:04 Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Certificate serial: EC Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/YHBHTo3IFrdkY-KDdsxigb8rswQ.roa Signing time: Tue 31 Mar 2026 07:51:18 +0000 ROA not before: Tue 31 Mar 2026 07:51:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9351 IP address blocks: 202.137.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 14:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Validity Not Before: Mar 31 07:51:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=6070474E8DC816B76463E28376CC6281BF2BB304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5f:a4:56:3f:c7:32:d1:98:9a:81:60:65:a4: 38:57:af:77:41:35:cc:63:ea:2e:36:f5:ed:96:20: 7d:24:64:9f:f4:d4:0c:72:0d:0b:e8:87:f2:20:03: 4d:90:49:02:04:84:f0:0c:a1:6c:50:1a:52:d7:6d: 65:bd:fe:d9:a7:61:dd:39:19:94:f4:6b:c0:93:a5: 43:f0:64:bd:5c:41:68:4d:07:b9:17:2d:28:f5:18: 7c:e5:cc:46:fc:8f:35:65:13:f1:fe:95:2c:68:bc: 74:7f:7a:6a:1e:02:67:f5:1a:55:bb:50:a9:6b:94: 64:ae:81:29:b8:00:8a:79:4f:92:4a:47:8e:cc:9e: a1:c2:d5:97:22:87:00:42:88:63:08:b5:c0:bd:ce: d8:c1:0f:26:aa:d7:3a:7b:b6:e3:8f:d3:ab:c9:44: 9b:bd:8d:4d:c8:5a:ec:d2:d1:e2:55:36:8e:c2:28: 0b:e4:0e:92:03:7e:cc:f1:ac:58:5a:d2:8c:48:cf: 61:02:27:af:5f:c7:a6:29:59:5f:60:f2:5e:9c:05: 89:ab:18:d7:ef:cf:29:b8:98:69:3a:8a:ee:27:70: 05:26:ea:33:e5:cf:c8:7c:bf:2c:f4:99:14:cc:e2: d5:ae:4c:fa:c4:56:2f:b3:ea:1c:46:21:26:61:6f: a4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:70:47:4E:8D:C8:16:B7:64:63:E2:83:76:CC:62:81:BF:2B:B3:04 X509v3 Authority Key Identifier: keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/YHBHTo3IFrdkY-KDdsxigb8rswQ.roa sbgp-ipAddrBlock: critical IPv4: 202.137.32.0/19 Signature Algorithm: sha256WithRSAEncryption aa:4f:4b:4e:a9:30:37:0b:73:17:50:2a:09:83:ea:f5:db:8b: bd:d5:51:ce:b2:e4:db:7b:03:60:0e:65:30:b0:b0:11:19:68: d9:62:71:20:9d:9e:eb:4f:40:57:54:d7:ec:a9:18:6a:b9:81: a0:5c:58:ff:56:97:90:d4:35:01:f6:20:04:69:9b:f6:13:12: 6e:58:07:89:72:a2:c3:d0:1d:22:62:49:91:d0:7b:9b:f6:92: 99:cb:5b:af:ac:b9:e0:e2:a0:f8:d2:15:7c:b1:b1:0e:cf:01: de:8f:03:69:a6:50:0d:c8:9b:d4:ef:0c:25:65:c7:9a:64:02: 2e:6c:56:78:96:ca:88:de:11:30:4d:86:b4:4b:84:32:4c:fa: 13:18:f6:ae:76:7a:ac:1b:56:5c:34:70:cd:0a:4e:76:23:e2: 86:cc:38:5b:82:90:46:1b:29:04:3c:ee:84:08:06:55:67:d1: e4:11:e4:5d:ff:97:bc:3c:99:e4:fb:07:62:72:bf:d7:c1:7a: d2:3f:c7:a1:6b:eb:54:12:99:2a:03:27:ee:ce:70:19:e0:7a: 9a:6d:d6:6a:cd:b9:11:be:7b:9b:d6:99:79:54:12:e2:51:06: 47:11:57:3e:43:6c:4a:1f:30:d4:14:b7:a2:6f:f6:4f:5f:79: 5d:76:fb:68 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTAw RUYzNThCQ0JFMTRBMzU4Q0E0RUVFNDFCNEU5MERDOTIzRTlEMjAeFw0yNjAzMzEw NzUxMThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYwNzA0NzRFOERDODE2 Qjc2NDYzRTI4Mzc2Q0M2MjgxQkYyQkIzMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbX6RWP8cy0ZiagWBlpDhXr3dBNcxj6i429e2WIH0kZJ/01Axy DQvoh/IgA02QSQIEhPAMoWxQGlLXbWW9/tmnYd05GZT0a8CTpUPwZL1cQWhNB7kX LSj1GHzlzEb8jzVlE/H+lSxovHR/emoeAmf1GlW7UKlrlGSugSm4AIp5T5JKR47M nqHC1ZcihwBCiGMItcC9ztjBDyaq1zp7tuOP06vJRJu9jU3IWuzS0eJVNo7CKAvk DpIDfszxrFha0oxIz2ECJ69fx6YpWV9g8l6cBYmrGNfvzym4mGk6iu4ncAUm6jPl z8h8vyz0mRTM4tWuTPrEVi+z6hxGISZhb6QrAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUYHBHTo3IFrdkY+KDdsxigb8rswQwHwYDVR0jBBgwFoAUUA7zWLy+FKNYyk7u QbTpDckj6dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIzNC9VQTd6V0x5LUZLTll5azd1UWJUcERja2o2ZEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9VQTd6V0x5LUZLTll5azd1UWJUcERj a2o2ZEkuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMjM0L1lIQkhUbzNJRnJka1ktS0Rkc3hpZ2I4cnN3US5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKiSAwDQYJKoZIhvcNAQELBQADggEB AKpPS06pMDcLcxdQKgmD6vXbi73VUc6y5Nt7A2AOZTCwsBEZaNlicSCdnutPQFdU 1+ypGGq5gaBcWP9Wl5DUNQH2IARpm/YTEm5YB4lyosPQHSJiSZHQe5v2kpnLW6+s ueDioPjSFXyxsQ7PAd6PA2mmUA3Im9TvDCVlx5pkAi5sVniWyojeETBNhrRLhDJM +hMY9q52eqwbVlw0cM0KTnYj4obMOFuCkEYbKQQ87oQIBlVn0eQR5F3/l7w8meT7 B2Jyv9fBetI/x6Fr61QSmSoDJ+7OcBngeppt1mrNuRG+e5vWmXlUEuJRBkcRVz5D bEofMNQUt6Jv9k9feV12+2g= -----END CERTIFICATE-----Generated at Fri Apr 17 17:27:08 2026 by rpki-client