$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/240/H8r78dbi_3_0qlqBOVMHGRHVwaY.roa File: H8r78dbi_3_0qlqBOVMHGRHVwaY.roa (raw, json) Hash identifier: 6IAMAnFvzN1NJezZsxfKPV0b3acFTih8bnQmMJeKWLk= Subject key identifier: 1F:CA:FB:F1:D6:E2:FF:7F:F4:AA:5A:81:39:53:07:19:11:D5:C1:A6 Certificate issuer: /CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Certificate serial: 64 Authority key identifier: B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/H8r78dbi_3_0qlqBOVMHGRHVwaY.roa Signing time: Tue 31 Mar 2026 08:34:10 +0000 ROA not before: Tue 31 Mar 2026 08:34:10 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9597 IP address blocks: 150.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Validity Not Before: Mar 31 08:34:10 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1FCAFBF1D6E2FF7FF4AA5A813953071911D5C1A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:11:5f:56:61:13:d7:8e:7a:81:b2:a9:19:9b: 95:2e:58:4f:f0:7f:8c:1a:3f:f9:27:aa:8c:72:51: 3a:26:8c:02:5b:a0:7e:79:b8:38:68:be:fa:fc:06: 65:32:50:a3:6f:8f:57:30:04:81:e8:7e:fc:08:2d: 01:3f:39:65:d4:4e:55:63:9b:96:ed:65:9b:b4:8c: 53:4e:d3:52:7d:b2:59:32:8a:5a:4e:ff:85:71:82: 2f:4d:36:d5:28:8e:0f:5c:c7:8e:95:f7:71:09:33: 15:23:51:c4:19:d5:ab:48:37:b7:4a:a5:d9:a3:64: 89:fb:9a:7b:e1:3c:c5:b1:be:1d:21:9c:56:40:b4: ea:c8:1d:03:9d:f2:04:5f:d1:46:83:96:cd:60:d8: 76:d1:90:8e:1f:ad:0c:f9:32:ab:14:0a:3e:24:21: 07:f0:c6:f5:48:1c:62:9f:f0:53:24:bb:a8:13:7f: 4a:91:a5:7b:c0:2c:b5:db:b9:68:12:ed:0e:dc:39: 25:2b:df:33:e0:4f:e0:86:3a:0e:0a:d8:d7:df:55: 6e:a2:52:bc:8c:66:77:e0:54:cf:8d:69:2c:e6:ae: a0:af:71:08:0a:5e:b3:93:1e:43:86:52:82:09:2b: 1d:2e:c5:ae:c3:bf:b3:97:99:92:0f:33:26:14:64: e9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CA:FB:F1:D6:E2:FF:7F:F4:AA:5A:81:39:53:07:19:11:D5:C1:A6 X509v3 Authority Key Identifier: keyid:B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/H8r78dbi_3_0qlqBOVMHGRHVwaY.roa sbgp-ipAddrBlock: critical IPv4: 150.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:d8:18:d0:f2:c1:b9:a1:fb:18:7d:93:17:02:c2:39:5f:ca: 95:e0:b5:f2:01:c2:91:38:91:a5:5a:4a:ab:2b:95:97:04:e1: 37:69:5c:f8:e2:af:2d:4c:52:23:52:11:fc:6a:69:fc:9b:d8: be:c4:09:28:84:d0:b3:0f:a9:8b:94:2c:30:c6:c1:73:94:6d: 25:7d:60:f4:80:39:80:6d:34:0d:39:5c:11:28:2d:71:21:5d: af:f8:43:e9:50:cd:bd:9f:2b:eb:73:39:0b:bc:43:3a:57:0a: ae:5b:79:3a:47:a6:f1:f5:3c:cc:0d:8e:6c:f6:16:87:4e:32: 20:d2:f0:52:c3:28:06:af:9e:ae:dc:0b:50:c2:84:3d:d5:44: 6e:96:cb:8b:78:8a:0e:25:ee:14:9a:70:ed:40:ac:3d:9f:25: fd:65:00:2c:cf:93:17:16:17:0a:74:01:a0:c0:ce:de:b6:4f: 02:8c:f6:97:91:3f:0a:1a:98:07:1a:76:d3:38:18:f3:74:29: dc:b1:2c:ed:6f:8d:a3:7e:96:81:74:a4:ba:95:c5:44:4b:52: b7:b4:b3:93:3b:c4:1e:3a:fc:37:3c:4e:6f:b2:21:ab:58:8f: 37:e6:60:a5:7c:d6:82:24:1f:25:eb:6f:1e:9d:74:e9:32:69: 53:e1:ec:6d -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgIBZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTY5 NjRBN0NFMEE1OEY0QUUzNjczRjQ3RDdBMUQ0MjVCRTRBMDdEMB4XDTI2MDMzMTA4 MzQxMFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMUZDQUZCRjFENkUyRkY3 RkY0QUE1QTgxMzk1MzA3MTkxMUQ1QzFBNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKgRX1ZhE9eOeoGyqRmblS5YT/B/jBo/+SeqjHJROiaMAlugfnm4 OGi++vwGZTJQo2+PVzAEgeh+/AgtAT85ZdROVWOblu1lm7SMU07TUn2yWTKKWk7/ hXGCL0021SiOD1zHjpX3cQkzFSNRxBnVq0g3t0ql2aNkifuae+E8xbG+HSGcVkC0 6sgdA53yBF/RRoOWzWDYdtGQjh+tDPkyqxQKPiQhB/DG9UgcYp/wUyS7qBN/SpGl e8Astdu5aBLtDtw5JSvfM+BP4IY6DgrY199VbqJSvIxmd+BUz41pLOauoK9xCApe s5MeQ4ZSggkrHS7FrsO/s5eZkg8zJhRk6dECAwEAAaOCAdgwggHUMB0GA1UdDgQW BBQfyvvx1uL/f/SqWoE5UwcZEdXBpjAfBgNVHSMEGDAWgBS5aWSnzgpY9K42c/R9 eh1CW+SgfTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2a29IMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2 a29IMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yNDAvSDhyNzhkYmlfM18wcWxxQk9WTUhHUkhWd2FZLnJvYTAeBggr BgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJY8MA0GCSqGSIb3DQEBCwUAA4IBAQBS 2BjQ8sG5ofsYfZMXAsI5X8qV4LXyAcKROJGlWkqrK5WXBOE3aVz44q8tTFIjUhH8 amn8m9i+xAkohNCzD6mLlCwwxsFzlG0lfWD0gDmAbTQNOVwRKC1xIV2v+EPpUM29 nyvrczkLvEM6VwquW3k6R6bx9TzMDY5s9haHTjIg0vBSwygGr56u3AtQwoQ91URu lsuLeIoOJe4UmnDtQKw9nyX9ZQAsz5MXFhcKdAGgwM7etk8CjPaXkT8KGpgHGnbT OBjzdCncsSztb42jfpaBdKS6lcVES1K3tLOTO8QeOvw3PE5vsiGrWI835mClfNaC JB8l628enXTpMmlT4ext -----END CERTIFICATE-----Generated at Sun Apr 19 10:35:00 2026 by rpki-client