$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/aArJj5AWnWWn7cspewKgNNEhSfU.roa File: aArJj5AWnWWn7cspewKgNNEhSfU.roa (raw, json) Hash identifier: 4aThjStTAhlA87rj8q/pzWO6jrilgbZC+1L415wLFhg= Subject key identifier: 68:0A:C9:8F:90:16:9D:65:A7:ED:CB:29:7B:02:A0:34:D1:21:49:F5 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 011A Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/aArJj5AWnWWn7cspewKgNNEhSfU.roa Signing time: Tue 31 Mar 2026 08:17:21 +0000 ROA not before: Tue 31 Mar 2026 08:17:21 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:21 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=680AC98F90169D65A7EDCB297B02A034D12149F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6e:9a:95:c0:e8:2a:63:c8:50:39:83:bb:f8: 63:39:b1:3c:b1:80:8a:fe:54:05:8b:b3:0e:41:01: d9:3a:c1:60:e2:7f:84:68:ce:52:45:c2:56:82:bd: 3f:60:ca:e6:fa:ad:82:9a:5b:af:62:ab:35:51:c9: e6:0b:3d:a6:db:72:b0:5f:a3:7b:47:ad:41:5d:57: b7:1b:0e:e9:ec:38:20:61:e6:32:88:63:57:f0:fb: 3b:bc:30:53:01:9b:8d:ca:d3:b9:e0:4d:01:0d:b3: 90:e3:f3:61:9e:94:b9:eb:9e:f4:c6:bf:53:6e:87: 6b:03:4b:41:6f:6e:e3:88:17:e2:28:af:3d:60:6d: 68:ac:f2:7d:41:1f:22:e4:72:db:39:dd:ad:54:25: da:a1:79:f6:c4:c9:20:75:3d:7b:1c:68:fe:14:8e: 61:5b:0b:55:63:5e:74:a9:8c:56:7e:ef:f6:84:c7: 1d:b4:71:96:2c:de:ec:0f:cc:01:3c:1c:cb:e9:31: 26:d7:8c:54:7e:11:28:74:c7:fc:45:2a:f1:1b:9f: 00:4d:bb:43:a1:a5:75:21:15:ea:12:56:c1:4c:d4: 95:bf:28:dc:cf:b0:83:4e:14:3d:ad:86:04:ef:07: 1a:c5:70:ef:f2:21:03:42:96:7c:2b:01:9b:d6:c2: c2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0A:C9:8F:90:16:9D:65:A7:ED:CB:29:7B:02:A0:34:D1:21:49:F5 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/aArJj5AWnWWn7cspewKgNNEhSfU.roa sbgp-ipAddrBlock: critical IPv4: 160.248.252.0/23 Signature Algorithm: sha256WithRSAEncryption a6:48:cb:24:d0:0d:07:7f:e2:7e:f6:71:b8:5d:22:58:80:96: a6:d4:0b:7d:9e:8d:60:84:75:34:43:1c:50:91:05:20:85:0e: 4d:94:52:d5:af:8a:d9:94:b5:1b:f4:5e:53:92:08:79:01:b8: ae:c9:db:ab:e4:90:39:f0:88:28:15:27:85:07:82:b8:93:aa: ed:b2:d6:a1:b5:31:31:88:e8:dd:2f:ff:28:85:7a:35:bc:d1: ce:e3:96:b2:d5:0d:cd:bb:92:06:b6:d3:38:b5:33:70:26:98: fa:df:1a:02:b7:7b:68:41:8d:b0:5d:55:6b:e9:84:0a:99:6b: e2:19:49:33:53:48:ff:0d:0b:cd:d1:7c:0a:2f:9f:e8:4d:10: 0a:55:c8:fe:02:93:68:8f:68:0a:0a:e0:0e:65:69:ad:cc:42: 91:da:99:39:b7:de:2d:f0:12:92:93:49:be:b1:75:c5:41:32: 99:f4:6c:66:1a:d0:bb:13:91:49:cb:c3:62:79:b2:71:48:eb: 9c:f0:d9:a7:49:34:32:8f:fb:1d:95:f1:94:e7:87:db:31:83: fc:29:b5:ad:d2:93:d2:53:51:12:ec:bd:3b:8f:ef:c5:61:40: a3:9d:7d:3c:b2:12:7e:6f:c4:3f:7f:13:a9:73:d3:db:a9:2e: 2f:56:c3:94 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICARowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MjFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY4MEFDOThGOTAxNjlE NjVBN0VEQ0IyOTdCMDJBMDM0RDEyMTQ5RjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDObpqVwOgqY8hQOYO7+GM5sTyxgIr+VAWLsw5BAdk6wWDif4Ro zlJFwlaCvT9gyub6rYKaW69iqzVRyeYLPabbcrBfo3tHrUFdV7cbDunsOCBh5jKI Y1fw+zu8MFMBm43K07ngTQENs5Dj82GelLnrnvTGv1Nuh2sDS0FvbuOIF+Iorz1g bWis8n1BHyLkcts53a1UJdqhefbEySB1PXscaP4UjmFbC1VjXnSpjFZ+7/aExx20 cZYs3uwPzAE8HMvpMSbXjFR+ESh0x/xFKvEbnwBNu0OhpXUhFeoSVsFM1JW/KNzP sINOFD2thgTvBxrFcO/yIQNClnwrAZvWwsKXAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUaArJj5AWnWWn7cspewKgNNEhSfUwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9hQXJKajVBV25XV243Y3NwZXdLZ05ORWhTZlUucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoPj8MA0GCSqGSIb3DQEBCwUAA4IBAQCm SMsk0A0Hf+J+9nG4XSJYgJam1At9no1ghHU0QxxQkQUghQ5NlFLVr4rZlLUb9F5T kgh5Abiuydur5JA58IgoFSeFB4K4k6rtstahtTExiOjdL/8ohXo1vNHO45ay1Q3N u5IGttM4tTNwJpj63xoCt3toQY2wXVVr6YQKmWviGUkzU0j/DQvN0XwKL5/oTRAK Vcj+ApNoj2gKCuAOZWmtzEKR2pk5t94t8BKSk0m+sXXFQTKZ9GxmGtC7E5FJy8Ni ebJxSOuc8NmnSTQyj/sdlfGU54fbMYP8KbWt0pPSU1ES7L07j+/FYUCjnX08shJ+ b8Q/fxOpc9PbqS4vVsOU -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:26 2026 by rpki-client