$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/lZpxRgrP3vV0iwy0V_eT-Po5Rr0.roa File: lZpxRgrP3vV0iwy0V_eT-Po5Rr0.roa (raw, json) Hash identifier: 7xNNijdVALaBJUcDwBEuQpCU6rXso5TMfna2B1IZ1GI= Subject key identifier: 95:9A:71:46:0A:CF:DE:F5:74:8B:0C:B4:57:F7:93:F8:FA:39:46:BD Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: F9 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/lZpxRgrP3vV0iwy0V_eT-Po5Rr0.roa Signing time: Tue 31 Mar 2026 08:17:03 +0000 ROA not before: Tue 31 Mar 2026 08:17:03 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 157.65.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:03 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=959A71460ACFDEF5748B0CB457F793F8FA3946BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:50:bc:e9:7c:9a:ef:d7:b2:9f:78:79:36: e7:23:05:cf:d7:9c:38:e4:b5:36:a3:a7:04:85:e8: 1c:7a:d1:a5:88:d6:fa:66:4e:43:57:e6:b0:90:40: 4a:ff:26:77:29:0f:a5:17:f4:83:8c:d9:81:2e:e9: 93:19:17:6a:a0:01:37:e3:dd:74:03:b0:ac:fa:72: f7:f7:40:83:23:03:51:6d:ef:e9:00:5f:07:86:a1: 49:ca:6e:cb:a9:8a:7e:83:ac:c9:64:41:96:33:3d: 0a:4e:a2:82:ec:16:e6:af:a3:13:bc:a8:ee:85:8a: d2:88:65:bd:ff:0a:2d:7f:8b:a2:c1:eb:da:db:0f: cf:d4:d8:be:be:69:1f:fe:bf:01:bf:b1:cc:f0:26: 7f:11:98:bd:09:02:5d:2a:9a:38:3b:6c:f1:ac:cf: fd:12:13:63:ac:df:5d:13:79:e4:d5:97:8f:11:81: 97:10:ef:04:1e:78:71:24:65:3d:59:fc:4a:12:4a: 0a:18:94:33:63:0a:5f:a1:07:d9:0e:14:78:46:b8: 1e:0e:d9:4a:ee:a5:07:aa:ad:9a:d5:8f:a7:f9:5d: b1:98:2a:eb:5e:bd:cb:f5:0f:b4:08:d3:be:4c:39: 2d:95:e9:f5:ec:af:ea:9b:de:5b:1c:16:ac:63:05: f0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9A:71:46:0A:CF:DE:F5:74:8B:0C:B4:57:F7:93:F8:FA:39:46:BD X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/lZpxRgrP3vV0iwy0V_eT-Po5Rr0.roa sbgp-ipAddrBlock: critical IPv4: 157.65.224.0/19 Signature Algorithm: sha256WithRSAEncryption 58:58:f3:35:c6:9f:69:6a:b0:bf:42:1a:7f:e1:52:5a:cb:6b: 57:1f:ed:a3:ea:f1:d4:a7:50:c7:b2:f4:6c:21:56:93:2b:d6: a1:4a:01:92:95:64:0b:ef:02:cb:39:9c:27:3a:33:d5:5a:a4: 74:11:35:c3:78:0a:a9:7d:54:48:62:22:78:09:06:49:13:ae: 77:bd:c5:37:28:c2:21:2e:64:77:80:68:d0:57:82:74:70:4a: 20:a3:7e:ce:e8:0e:96:3c:62:7d:9e:c4:92:8d:85:b4:9a:30: cb:63:e5:f1:d1:9b:b3:b3:51:5b:44:bb:45:92:03:8a:cb:a4: 4c:bb:b0:9b:73:61:20:8b:4e:fc:a8:b3:4c:c0:61:20:3e:51: 12:81:80:43:0b:20:d9:03:73:1d:c6:c2:32:f5:57:2f:76:c5: 33:22:b2:11:1b:f2:3f:7f:87:6d:f3:53:7d:1a:fb:5e:59:b5: 6b:d5:e6:98:1d:ad:cc:0e:15:01:eb:b8:eb:d2:3c:c7:ed:c9: dc:a3:a2:46:dc:46:38:78:a5:c1:99:e0:bb:b5:74:8b:14:11: 4e:ec:1c:25:50:f5:41:82:fa:d0:5a:dd:4c:64:99:4a:fc:97: 4e:01:77:98:00:77:74:fa:7b:fd:eb:65:db:8d:df:e7:5b:4c: 5f:59:38:47 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MDNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk1OUE3MTQ2MEFDRkRF RjU3NDhCMENCNDU3Rjc5M0Y4RkEzOTQ2QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGwVC86Xya79eyn3h5NucjBc/XnDjktTajpwSF6Bx60aWI1vpm TkNX5rCQQEr/JncpD6UX9IOM2YEu6ZMZF2qgATfj3XQDsKz6cvf3QIMjA1Ft7+kA XweGoUnKbsupin6DrMlkQZYzPQpOooLsFuavoxO8qO6FitKIZb3/Ci1/i6LB69rb D8/U2L6+aR/+vwG/sczwJn8RmL0JAl0qmjg7bPGsz/0SE2Os310TeeTVl48RgZcQ 7wQeeHEkZT1Z/EoSSgoYlDNjCl+hB9kOFHhGuB4O2UrupQeqrZrVj6f5XbGYKute vcv1D7QI075MOS2V6fXsr+qb3lscFqxjBfCHAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUlZpxRgrP3vV0iwy0V/eT+Po5Rr0wHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9sWnB4UmdyUDN2VjBpd3kwVl9lVC1QbzVScjAucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnUHgMA0GCSqGSIb3DQEBCwUAA4IBAQBY WPM1xp9parC/Qhp/4VJay2tXH+2j6vHUp1DHsvRsIVaTK9ahSgGSlWQL7wLLOZwn OjPVWqR0ETXDeAqpfVRIYiJ4CQZJE653vcU3KMIhLmR3gGjQV4J0cEogo37O6A6W PGJ9nsSSjYW0mjDLY+Xx0Zuzs1FbRLtFkgOKy6RMu7Cbc2Egi078qLNMwGEgPlES gYBDCyDZA3MdxsIy9VcvdsUzIrIRG/I/f4dt81N9GvteWbVr1eaYHa3MDhUB67jr 0jzH7cnco6JG3EY4eKXBmeC7tXSLFBFO7BwlUPVBgvrQWt1MZJlK/JdOAXeYAHd0 +nv962Xbjd/nW0xfWThH -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:22 2026 by rpki-client