$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/qnQ3zxXsIWf1rM9aGqoX5l7cMLI.roa File: qnQ3zxXsIWf1rM9aGqoX5l7cMLI.roa (raw, json) Hash identifier: Ma7ywiGWRpj5x6hSF2SW0sNp/HZBBePFLr+2IfHb1n4= Subject key identifier: AA:74:37:CF:15:EC:21:67:F5:AC:CF:5A:1A:AA:17:E6:5E:DC:30:B2 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: FB Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/qnQ3zxXsIWf1rM9aGqoX5l7cMLI.roa Signing time: Tue 31 Mar 2026 08:17:06 +0000 ROA not before: Tue 31 Mar 2026 08:17:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Mar 31 08:17:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=AA7437CF15EC2167F5ACCF5A1AAA17E65EDC30B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:46:c3:b3:44:ab:ce:99:ff:8f:d8:48:24:83: 85:89:61:6e:a3:3b:8f:e0:8f:53:38:b1:72:90:0e: 20:fd:cc:e0:bb:f4:04:50:42:1e:9a:1b:4e:66:2d: 1b:fc:d4:65:58:63:61:71:05:9b:3f:63:2e:bc:26: 9b:20:28:97:dd:19:f6:6d:9e:4a:3f:91:03:d3:b8: 78:f8:95:44:f7:9a:ab:b3:c5:70:c2:24:13:16:9e: c7:ba:34:ea:d2:4c:45:37:99:19:d0:3b:00:f7:1b: c5:af:11:11:c5:c1:60:2c:7f:dd:7c:a3:23:b5:4f: dc:67:ef:7c:cc:83:3d:9d:e7:a4:de:b0:1b:b5:cf: 5d:4a:f3:f0:e6:2d:da:d9:8d:8a:0c:7e:57:74:8b: be:3f:d4:77:56:0a:d5:88:9e:72:0a:e3:c2:25:ad: 75:99:de:d9:66:8a:47:71:40:bd:57:3d:2a:5c:1e: 8f:43:f3:3f:36:ef:b0:48:6d:f8:27:f6:9c:53:67: d3:07:ae:e1:14:dd:ff:af:f9:8a:70:be:90:d8:31: 21:c0:de:58:56:2f:44:2e:dc:aa:dd:21:c9:8b:c8: 2b:d3:69:34:e2:d1:36:b9:e7:26:23:e1:34:fc:7f: e1:7e:32:4c:20:45:f2:e9:cd:0b:43:7e:96:d3:33: 73:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:74:37:CF:15:EC:21:67:F5:AC:CF:5A:1A:AA:17:E6:5E:DC:30:B2 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/qnQ3zxXsIWf1rM9aGqoX5l7cMLI.roa sbgp-ipAddrBlock: critical IPv4: 160.248.8.0/22 Signature Algorithm: sha256WithRSAEncryption 03:38:da:af:0a:93:36:ed:f9:9e:35:d1:16:db:cc:39:6c:63: f5:95:f5:b0:b4:a8:51:ec:d1:8a:cf:58:28:d3:60:3b:61:60: e9:78:95:e3:81:4e:7b:76:7f:95:81:5a:51:ed:84:bc:d5:24: 82:6b:a0:cd:2e:f6:66:6f:93:32:77:69:8e:4f:d9:ab:02:6c: 9d:99:1f:76:f6:93:11:a6:2d:cd:41:c9:48:99:82:c8:6f:99: 87:33:7b:f6:dc:dc:bf:e6:84:91:54:22:70:18:c5:42:bf:bf: 1c:89:b5:bc:7c:28:fd:39:8b:5e:99:04:7b:90:31:53:15:f9: ee:4e:6f:43:c3:fe:91:6b:5a:e4:d4:6c:8b:fb:7a:e9:23:2b: b3:68:3c:7b:1e:92:5f:7f:70:74:eb:6c:fa:c4:c7:3b:f8:2e: 28:2c:61:43:af:78:49:38:e3:d9:f3:5a:be:63:e9:dd:f2:98: c0:15:65:39:ec:92:94:e5:f5:88:5e:12:9e:30:42:7b:59:e4: 60:c6:9c:60:af:02:d7:4d:66:58:9a:cb:8d:5c:54:dd:3f:49: 1e:30:86:96:6a:ed:75:05:02:79:8c:b8:b3:7a:73:3d:39:72: 97:f2:09:fa:e8:fc:26:60:f8:3b:9b:8b:d5:fc:20:db:8d:fe: ae:ac:11:01 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNjAzMzEw ODE3MDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFBNzQzN0NGMTVFQzIx NjdGNUFDQ0Y1QTFBQUExN0U2NUVEQzMwQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkRsOzRKvOmf+P2Egkg4WJYW6jO4/gj1M4sXKQDiD9zOC79ARQ Qh6aG05mLRv81GVYY2FxBZs/Yy68JpsgKJfdGfZtnko/kQPTuHj4lUT3mquzxXDC JBMWnse6NOrSTEU3mRnQOwD3G8WvERHFwWAsf918oyO1T9xn73zMgz2d56TesBu1 z11K8/DmLdrZjYoMfld0i74/1HdWCtWInnIK48IlrXWZ3tlmikdxQL1XPSpcHo9D 8z8277BIbfgn9pxTZ9MHruEU3f+v+YpwvpDYMSHA3lhWL0Qu3KrdIcmLyCvTaTTi 0Ta55yYj4TT8f+F+MkwgRfLpzQtDfpbTM3PFAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUqnQ3zxXsIWf1rM9aGqoX5l7cMLIwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9xblEzenhYc0lXZjFyTTlhR3FvWDVsN2NNTEkucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCoPgIMA0GCSqGSIb3DQEBCwUAA4IBAQAD ONqvCpM27fmeNdEW28w5bGP1lfWwtKhR7NGKz1go02A7YWDpeJXjgU57dn+VgVpR 7YS81SSCa6DNLvZmb5Myd2mOT9mrAmydmR929pMRpi3NQclImYLIb5mHM3v23Ny/ 5oSRVCJwGMVCv78cibW8fCj9OYtemQR7kDFTFfnuTm9Dw/6Ra1rk1GyL+3rpIyuz aDx7HpJff3B062z6xMc7+C4oLGFDr3hJOOPZ81q+Y+nd8pjAFWU57JKU5fWIXhKe MEJ7WeRgxpxgrwLXTWZYmsuNXFTdP0keMIaWau11BQJ5jLizenM9OXKX8gn66Pwm YPg7m4vV/CDbjf6urBEB -----END CERTIFICATE-----Generated at Fri Apr 17 13:02:19 2026 by rpki-client