$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/271/HLJ2ZfOSM0Zrj-6h9W7Jr5oT34k.roa File: HLJ2ZfOSM0Zrj-6h9W7Jr5oT34k.roa (raw, json) Hash identifier: dY2cHroEWu5WOGfLuhN48GZKAhGxDSl8RTM8bzOELgU= Subject key identifier: 1C:B2:76:65:F3:92:33:46:6B:8F:EE:A1:F5:6E:C9:AF:9A:13:DF:89 Certificate issuer: /CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Certificate serial: 34 Authority key identifier: 59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/HLJ2ZfOSM0Zrj-6h9W7Jr5oT34k.roa Signing time: Tue 31 Mar 2026 08:44:44 +0000 ROA not before: Tue 31 Mar 2026 08:44:44 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 59108 IP address blocks: 58.145.160.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Validity Not Before: Mar 31 08:44:44 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1CB27665F39233466B8FEEA1F56EC9AF9A13DF89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:d8:90:cb:10:e0:b9:09:68:10:8b:0d:d7: 98:7a:89:a4:a0:a5:fd:47:26:52:e6:30:81:5d:c6: b1:84:36:ba:6f:c2:05:cd:b4:46:c7:12:e8:29:74: 7b:79:74:e7:2e:fc:e4:32:0c:7d:60:e8:b3:7e:a0: 7b:8f:48:77:a0:cb:33:e0:6d:97:fe:50:f7:3e:8a: a8:5a:f7:31:c2:86:24:52:0f:fe:df:6d:f7:98:6a: 36:bf:ae:80:9f:28:d0:9f:fc:cf:75:90:1f:1d:22: f7:a6:5e:d9:81:39:4f:31:bb:e8:5a:86:f7:16:a9: 31:8d:cd:15:62:4f:9a:d2:fa:09:1f:2b:51:e3:5c: 65:4e:70:4c:94:9c:11:7c:64:a4:b4:1b:2a:40:1f: 3a:d7:6d:2a:6a:13:51:56:3b:4e:9d:44:72:cd:8c: ba:f2:e9:14:c4:be:57:53:cf:18:d7:d0:03:98:2a: 71:6d:98:fc:f1:b1:e6:8f:e0:cf:a1:75:cd:1e:7c: ca:8b:77:a8:67:9f:fa:0d:99:ba:5c:6b:41:7b:53: 6c:71:3a:38:7d:83:d0:6a:cc:f8:cb:c5:ab:cf:a6: 7c:a2:42:ab:0e:6b:99:f2:02:42:c3:d2:41:1f:33: 51:5b:c8:98:17:f5:eb:1e:e9:4a:0b:72:df:a1:05: da:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B2:76:65:F3:92:33:46:6B:8F:EE:A1:F5:6E:C9:AF:9A:13:DF:89 X509v3 Authority Key Identifier: keyid:59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/HLJ2ZfOSM0Zrj-6h9W7Jr5oT34k.roa sbgp-ipAddrBlock: critical IPv4: 58.145.160.0/21 Signature Algorithm: sha256WithRSAEncryption 4f:7d:4f:aa:fd:12:a9:a6:b1:24:13:5f:0d:4a:5d:4d:a4:cb: fc:9a:1b:5b:54:73:35:9b:eb:c9:69:8c:28:d8:47:5f:15:aa: 81:05:38:f5:27:20:57:47:2b:70:bf:59:78:7d:d8:04:a4:5b: 62:3c:30:1f:86:d5:e8:89:42:c3:47:74:15:54:02:b9:5f:60: 2f:28:66:8b:c6:35:0f:b4:c3:a8:c2:b2:e0:e6:ab:4e:b8:6b: f6:da:19:f7:db:a1:1c:ca:15:b3:c8:e1:05:25:0b:af:27:fd: b6:ef:7e:8f:75:b0:3a:77:90:28:8c:23:98:03:8c:fb:91:6c: 52:d4:45:40:16:ce:29:a1:a5:9c:28:4a:2c:11:11:11:9e:c0: af:8e:e7:92:92:0f:a0:a9:eb:e6:3f:a1:32:dd:cd:d9:b0:f4: a2:a6:dd:d9:48:cc:48:e3:12:1e:e6:4f:13:b6:9c:0e:9f:62: d5:45:ea:a7:bd:83:4f:04:45:1f:37:4a:50:45:56:fc:1e:ca: 6a:bf:6a:fe:7a:70:7a:b2:ca:5c:4f:96:18:cd:93:0f:c0:20: 42:0e:4f:a8:99:f5:67:d3:25:d5:1f:98:42:59:e0:25:90:e3: 5f:98:11:82:43:c8:fb:31:68:42:05:9c:16:6a:91:3d:29:15: bc:36:14:3f -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTRC MDE1RUM5QTBBNUMwM0Q4ODc5NDY5Q0RBN0M3QzRCOUE2QzEwMB4XDTI2MDMzMTA4 NDQ0NFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMUNCMjc2NjVGMzkyMzM0 NjZCOEZFRUExRjU2RUM5QUY5QTEzREY4OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL/12JDLEOC5CWgQiw3XmHqJpKCl/UcmUuYwgV3GsYQ2um/CBc20 RscS6Cl0e3l05y785DIMfWDos36ge49Id6DLM+Btl/5Q9z6KqFr3McKGJFIP/t9t 95hqNr+ugJ8o0J/8z3WQHx0i96Ze2YE5TzG76FqG9xapMY3NFWJPmtL6CR8rUeNc ZU5wTJScEXxkpLQbKkAfOtdtKmoTUVY7Tp1Ecs2MuvLpFMS+V1PPGNfQA5gqcW2Y /PGx5o/gz6F1zR58yot3qGef+g2ZulxrQXtTbHE6OH2D0GrM+MvFq8+mfKJCqw5r mfICQsPSQR8zUVvImBf16x7pSgty36EF2vMCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQcsnZl85IzRmuP7qH1bsmvmhPfiTAfBgNVHSMEGDAWgBRZSwFeyaClwD2IeUac 2nx8S5psEDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjcxL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1YWJCQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1 YWJCQS5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yNzEvSExKMlpmT1NNMFpyai02aDlXN0pyNW9UMzRrLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzqRoDANBgkqhkiG9w0BAQsFAAOCAQEA T31Pqv0SqaaxJBNfDUpdTaTL/JobW1RzNZvryWmMKNhHXxWqgQU49ScgV0crcL9Z eH3YBKRbYjwwH4bV6IlCw0d0FVQCuV9gLyhmi8Y1D7TDqMKy4OarTrhr9toZ99uh HMoVs8jhBSULryf9tu9+j3WwOneQKIwjmAOM+5FsUtRFQBbOKaGlnChKLBEREZ7A r47nkpIPoKnr5j+hMt3N2bD0oqbd2UjMSOMSHuZPE7acDp9i1UXqp72DTwRFHzdK UEVW/B7Kar9q/npwerLKXE+WGM2TD8AgQg5PqJn1Z9Ml1R+YQlngJZDjX5gRgkPI +zFoQgWcFmqRPSkVvDYUPw== -----END CERTIFICATE-----Generated at Sun Apr 19 11:29:08 2026 by rpki-client