$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/oyXQAv7hzxIU8LXS8lrpucOi0ds.roa File: oyXQAv7hzxIU8LXS8lrpucOi0ds.roa (raw, json) Hash identifier: Psfs9Vqb4Enfd4v5nXgmnErJTKQ6zfCxD5IVRNz4Z7c= Subject key identifier: A3:25:D0:02:FE:E1:CF:12:14:F0:B5:D2:F2:5A:E9:B9:C3:A2:D1:DB Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 0112 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/oyXQAv7hzxIU8LXS8lrpucOi0ds.roa Signing time: Tue 31 Mar 2026 08:17:18 +0000 ROA not before: Tue 31 Mar 2026 08:17:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A325D002FEE1CF1214F0B5D2F25AE9B9C3A2D1DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c2:f9:ff:0c:ef:75:e5:66:e2:8d:99:8c:3f: 65:e9:d0:30:ae:eb:93:ec:0d:56:bf:19:23:9f:aa: 31:07:39:33:03:3a:61:ee:38:79:7c:31:62:32:b5: 40:99:25:f3:f2:10:f0:ac:d5:de:7a:77:23:05:1e: e3:71:ac:aa:d3:e4:0b:25:f0:a3:50:32:47:46:78: fa:a2:66:e3:3f:7e:b0:84:ab:95:c0:07:69:b9:85: 9e:8b:ce:fa:d6:eb:40:9a:f8:3b:3c:64:3e:2b:a5: 33:9f:87:cc:a2:ac:61:57:e4:91:cc:92:79:6e:c0: f7:89:10:93:71:49:be:ce:44:ed:30:8d:d3:03:50: fd:0b:45:3c:4e:ab:c0:be:cd:45:41:e6:f3:74:6b: 0d:c9:d3:e9:c0:f4:35:b4:ae:0b:6b:57:91:d0:42: be:25:ca:d1:42:f1:3b:49:8d:31:b4:66:85:93:a7: d6:c9:d4:85:32:e1:28:56:d5:b2:dc:0c:f8:00:14: eb:fe:ef:67:fb:d6:ae:37:89:13:a8:ee:d3:19:03: df:76:a6:98:f0:28:96:5a:6f:4b:3a:3e:53:8a:31: 61:5b:0b:ef:a7:f7:03:b4:a2:a9:15:d3:68:be:b2: ea:83:c3:dd:96:8c:ac:eb:7c:7e:95:b4:44:91:6b: b7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:25:D0:02:FE:E1:CF:12:14:F0:B5:D2:F2:5A:E9:B9:C3:A2:D1:DB X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/oyXQAv7hzxIU8LXS8lrpucOi0ds.roa sbgp-ipAddrBlock: critical IPv4: 160.248.204.0/23 Signature Algorithm: sha256WithRSAEncryption 59:58:dd:23:2f:24:fc:a8:04:5f:90:af:d0:b8:a8:d8:1f:83: 9b:48:1f:dc:fe:c1:f5:c6:64:19:35:7f:4d:a7:41:bc:ed:ba: 44:5a:fb:a6:8f:af:e6:27:df:5d:06:5f:69:95:26:5b:80:b8: ef:89:71:1f:ab:a0:c1:9c:19:ba:d4:f8:d7:ae:d7:fb:45:72: 3d:f7:05:0a:b2:d7:36:72:4e:38:00:bd:47:f1:8f:a7:83:21: 4f:06:a4:08:f9:83:f7:8a:98:ff:ea:b2:30:8d:b6:0c:03:52: 26:4c:e0:df:f7:2b:96:ef:85:fc:e5:eb:96:d4:95:07:d7:26: 08:e8:4e:1b:34:4a:34:50:ba:10:01:bd:26:fa:a7:18:1e:17: c6:d3:f2:c7:ba:40:1f:28:dd:8f:93:ec:4d:73:f7:cc:9d:20: b9:48:98:51:9c:b4:05:44:eb:e6:f1:28:39:17:91:a8:4d:e9: 46:09:70:88:f2:64:1a:28:a2:d5:a2:13:87:1f:ff:64:d2:58: e3:ec:05:fa:3e:03:08:bd:82:07:40:aa:7b:a3:d4:e3:1e:8a: ca:1a:d9:ba:56:19:ec:2e:92:2a:6a:bc:64:89:3b:ba:ce:c2: bf:5e:04:08:2f:d1:ad:61:5b:00:c8:b0:ab:f5:c1:ab:d3:7e: 20:8c:3d:d5 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICARIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEzMjVEMDAyRkVFMUNG MTIxNEYwQjVEMkYyNUFFOUI5QzNBMkQxREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYwvn/DO915WbijZmMP2Xp0DCu65PsDVa/GSOfqjEHOTMDOmHu OHl8MWIytUCZJfPyEPCs1d56dyMFHuNxrKrT5Asl8KNQMkdGePqiZuM/frCEq5XA B2m5hZ6LzvrW60Ca+Ds8ZD4rpTOfh8yirGFX5JHMknluwPeJEJNxSb7ORO0wjdMD UP0LRTxOq8C+zUVB5vN0aw3J0+nA9DW0rgtrV5HQQr4lytFC8TtJjTG0ZoWTp9bJ 1IUy4ShW1bLcDPgAFOv+72f71q43iROo7tMZA992ppjwKJZab0s6PlOKMWFbC++n 9wO0oqkV02i+suqDw92WjKzrfH6VtESRa7fjAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUoyXQAv7hzxIU8LXS8lrpucOi0dswHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9veVhRQXY3aHp4SVU4TFhTOGxycHVjT2kwZHMucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoPjMMA0GCSqGSIb3DQEBCwUAA4IBAQBZ WN0jLyT8qARfkK/QuKjYH4ObSB/c/sH1xmQZNX9Np0G87bpEWvumj6/mJ99dBl9p lSZbgLjviXEfq6DBnBm61PjXrtf7RXI99wUKstc2ck44AL1H8Y+ngyFPBqQI+YP3 ipj/6rIwjbYMA1ImTODf9yuW74X85euW1JUH1yYI6E4bNEo0ULoQAb0m+qcYHhfG 0/LHukAfKN2Pk+xNc/fMnSC5SJhRnLQFROvm8Sg5F5GoTelGCXCI8mQaKKLVohOH H/9k0ljj7AX6PgMIvYIHQKp7o9TjHorKGtm6VhnsLpIqarxkiTu6zsK/XgQIL9Gt YVsAyLCr9cGr034gjD3V -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:19 2026 by rpki-client