$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/hzF9jPX5ZvjZaW02ZFREU42BfK8.roa File: hzF9jPX5ZvjZaW02ZFREU42BfK8.roa (raw, json) Hash identifier: Xf46Oq2tAoEKnYDuGJqYgfDg7cgmHhW6bXm4y84NEHc= Subject key identifier: 87:31:7D:8C:F5:F9:66:F8:D9:69:6D:36:64:54:44:53:8D:81:7C:AF Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 010F Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/hzF9jPX5ZvjZaW02ZFREU42BfK8.roa Signing time: Tue 31 Mar 2026 08:17:17 +0000 ROA not before: Tue 31 Mar 2026 08:17:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=87317D8CF5F966F8D9696D36645444538D817CAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0f:83:30:02:ce:ef:24:9e:00:6c:4f:98:68: e2:ba:ed:52:c1:17:4f:c8:1f:91:0d:dd:cb:6d:30: 87:9b:21:46:d7:de:b8:7f:24:1b:4a:80:be:f6:0a: 84:33:1f:b6:c3:f5:e3:ba:65:de:b0:ec:39:24:ac: 62:c7:0e:09:b1:6f:c9:42:9a:63:6f:c8:89:c8:a1: 3e:28:ee:79:a2:af:36:ee:24:99:8c:65:b3:4e:a1: 3a:d6:30:f0:c4:7e:fc:4a:d3:6c:4f:9f:13:b8:a2: 59:42:0c:44:f0:39:7d:96:0a:5e:1b:92:5f:ca:30: 67:73:8b:e5:62:37:69:ed:2f:b8:6e:57:40:46:98: 70:72:28:8f:7d:82:74:17:11:ac:ac:ff:00:f8:a2: 6a:68:2a:a5:33:97:38:26:0a:8d:46:a5:e6:e9:a8: 49:b9:5f:b6:f3:43:44:f5:4a:69:4c:ed:55:c1:56: 7f:59:f6:1a:cc:36:ef:e5:f4:00:9b:2e:5a:9c:30: 52:8f:65:93:e7:05:e7:22:8f:26:45:2c:a0:48:b3: e7:97:97:07:d1:db:cd:0e:99:f6:af:a1:41:a2:e2: 9c:17:d3:93:6b:24:36:2d:4c:88:0a:23:78:00:6e: 95:78:3e:97:87:d5:d7:73:57:c2:2d:a0:f6:ab:83: 04:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:31:7D:8C:F5:F9:66:F8:D9:69:6D:36:64:54:44:53:8D:81:7C:AF X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/hzF9jPX5ZvjZaW02ZFREU42BfK8.roa sbgp-ipAddrBlock: critical IPv4: 160.248.192.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:79:3d:6b:15:2a:ee:b3:7a:f4:91:6f:56:a7:e8:63:e5:78: 95:d0:0e:fe:03:57:b2:f9:55:aa:5f:54:e3:5e:3f:fc:e4:59: 4b:f2:be:b1:e9:f1:bb:71:aa:e2:b9:6c:b5:38:ba:87:c5:c2: 53:26:eb:a2:0d:ca:76:9d:02:43:4e:a5:dd:0a:61:e6:37:9f: 17:35:44:22:b4:59:b1:a3:15:00:41:f1:d8:89:72:bf:f3:e2: a9:b7:c7:40:1e:64:33:b6:c5:db:72:e0:85:9e:bb:c0:c8:79: 63:8c:68:22:aa:3c:53:a8:f5:08:c3:75:a6:57:49:2d:b4:42: e5:5f:fb:aa:e0:f5:53:a9:b3:a1:aa:97:ce:89:a5:db:3e:c6: b0:d4:bc:4f:ee:85:f1:83:79:34:3f:6f:ff:71:4f:6a:60:7c: 51:f2:38:90:32:12:9b:06:6f:25:f3:8d:79:d6:20:cb:9c:5c: 59:aa:df:2a:cc:0f:dc:5e:f5:94:00:fd:92:22:ce:ce:ac:28: c3:3a:3b:4d:40:b0:72:94:52:48:2b:37:e6:b5:99:77:a2:74: cb:4f:a5:f6:2b:e8:0a:cb:f9:c5:ba:42:fa:87:a1:b8:c4:16: a2:d7:f5:dd:1c:dd:66:2d:d2:ac:91:25:79:7b:ab:2e:76:74: 06:6b:b2:e0 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg3MzE3RDhDRjVGOTY2 RjhEOTY5NkQzNjY0NTQ0NDUzOEQ4MTdDQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUD4MwAs7vJJ4AbE+YaOK67VLBF0/IH5EN3cttMIebIUbX3rh/ JBtKgL72CoQzH7bD9eO6Zd6w7DkkrGLHDgmxb8lCmmNvyInIoT4o7nmirzbuJJmM ZbNOoTrWMPDEfvxK02xPnxO4ollCDETwOX2WCl4bkl/KMGdzi+ViN2ntL7huV0BG mHByKI99gnQXEays/wD4ompoKqUzlzgmCo1GpebpqEm5X7bzQ0T1SmlM7VXBVn9Z 9hrMNu/l9ACbLlqcMFKPZZPnBecijyZFLKBIs+eXlwfR280OmfavoUGi4pwX05Nr JDYtTIgKI3gAbpV4PpeH1ddzV8ItoPargwQlAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUhzF9jPX5ZvjZaW02ZFREU42BfK8wHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9oekY5alBYNVp2alphVzAyWkZSRVU0MkJmSzgucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDoPjAMA0GCSqGSIb3DQEBCwUAA4IBAQBf eT1rFSrus3r0kW9Wp+hj5XiV0A7+A1ey+VWqX1TjXj/85FlL8r6x6fG7cariuWy1 OLqHxcJTJuuiDcp2nQJDTqXdCmHmN58XNUQitFmxoxUAQfHYiXK/8+Kpt8dAHmQz tsXbcuCFnrvAyHljjGgiqjxTqPUIw3WmV0kttELlX/uq4PVTqbOhqpfOiaXbPsaw 1LxP7oXxg3k0P2//cU9qYHxR8jiQMhKbBm8l84151iDLnFxZqt8qzA/cXvWUAP2S Is7OrCjDOjtNQLBylFJIKzfmtZl3onTLT6X2K+gKy/nFukL6h6G4xBai1/XdHN1m LdKskSV5e6sudnQGa7Lg -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:26 2026 by rpki-client