$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30100/4lzamAaSJY6sN5ewQLHYWZlPaS8.roa File: 4lzamAaSJY6sN5ewQLHYWZlPaS8.roa (raw, json) Hash identifier: aq7yZbuiEC5CJKE8WDYYbTqnbkJ7ftyZeqsEzw9cK+8= Subject key identifier: E2:5C:DA:98:06:92:25:8E:AC:37:97:B0:40:B1:D8:59:99:4F:69:2F Certificate issuer: /CN=F04B78F0C21283217E0A9140D4678D974B3CE6BE Certificate serial: 3F Authority key identifier: F0:4B:78:F0:C2:12:83:21:7E:0A:91:40:D4:67:8D:97:4B:3C:E6:BE Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8Et48MISgyF-CpFA1GeNl0s85r4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30100/4lzamAaSJY6sN5ewQLHYWZlPaS8.roa Signing time: Tue 31 Mar 2026 08:23:22 +0000 ROA not before: Tue 31 Mar 2026 08:23:22 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 24257 IP address blocks: 2400:3000:70::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30100/8Et48MISgyF-CpFA1GeNl0s85r4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30100/8Et48MISgyF-CpFA1GeNl0s85r4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8Et48MISgyF-CpFA1GeNl0s85r4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F04B78F0C21283217E0A9140D4678D974B3CE6BE Validity Not Before: Mar 31 08:23:22 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E25CDA980692258EAC3797B040B1D859994F692F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d5:03:24:12:71:16:38:45:bc:c1:2c:08:57: fa:e9:c6:16:57:d1:2e:6e:41:d3:e7:a5:fc:02:d8: dc:e2:4c:5c:a7:51:31:d3:76:09:f8:d5:7c:b5:28: 21:8c:54:0d:06:32:d5:6f:2e:a8:d4:b2:e4:e8:e7: fd:67:a8:b2:53:a1:bc:df:dc:05:df:23:50:c1:ca: d1:08:29:09:51:08:ec:19:dc:c1:9a:46:e9:31:c0: e9:f2:75:ef:4b:65:f0:e7:d0:ec:79:bf:32:28:b7: 7b:ea:ec:5c:ef:45:ce:da:31:3a:2c:d1:75:10:bc: ba:08:25:b7:01:45:ea:31:58:f8:35:0b:95:5b:25: 92:39:39:4c:c0:f7:57:50:2b:94:61:d4:05:ec:28: f0:8d:9b:12:de:b0:c7:66:27:66:07:ce:52:89:a2: 33:66:ad:1c:94:a5:0d:9c:11:69:09:f6:61:6b:15: 13:9b:90:68:fc:f7:a1:ce:22:52:c6:fe:9d:7b:0f: ce:57:3a:f5:f5:c0:2e:e1:a3:7f:b8:16:61:20:06: 80:50:9b:e1:f8:ca:a9:fb:a7:3b:b8:28:43:9f:16: 37:89:52:3f:72:6e:69:89:28:67:b7:8e:75:00:0a: 3f:97:d7:9b:88:d2:41:d8:57:64:18:d4:34:47:99: 17:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:5C:DA:98:06:92:25:8E:AC:37:97:B0:40:B1:D8:59:99:4F:69:2F X509v3 Authority Key Identifier: keyid:F0:4B:78:F0:C2:12:83:21:7E:0A:91:40:D4:67:8D:97:4B:3C:E6:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30100/8Et48MISgyF-CpFA1GeNl0s85r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8Et48MISgyF-CpFA1GeNl0s85r4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30100/4lzamAaSJY6sN5ewQLHYWZlPaS8.roa sbgp-ipAddrBlock: critical IPv6: 2400:3000:70::/48 Signature Algorithm: sha256WithRSAEncryption 2f:27:28:0d:42:4a:76:01:df:86:ea:e2:a5:e4:ea:4f:1f:2a: ec:72:10:3c:f3:3e:3b:ab:6c:d9:49:18:66:b0:99:97:58:9d: 86:c4:e7:9d:70:ca:93:54:cd:7b:ef:c5:17:f0:72:ba:34:ed: a0:09:47:5a:7a:38:2c:01:ed:8e:be:c1:f1:3e:e4:55:af:4e: 1f:62:e8:0a:09:4b:0d:ed:ea:f2:b0:cc:c4:16:fa:0f:76:59: de:d9:b9:1e:a2:54:14:8a:81:88:db:70:73:6a:ba:cf:ef:54: e1:69:03:22:bc:25:fd:09:02:b9:5d:8b:0f:7a:35:b1:25:08: 16:23:a4:a2:0a:82:dd:c5:af:a2:25:02:b8:c8:75:1c:a8:bc: fa:45:88:a3:b6:91:54:6c:97:70:38:0c:90:d6:2a:65:9f:e8: d0:1c:a4:28:f1:b5:c7:0e:38:cd:50:96:8a:81:a2:70:15:c8: 2b:0b:b4:50:2e:5e:00:ad:e1:2a:6a:ae:5c:fc:2d:58:b0:1c: bf:78:7f:79:e2:2e:82:b8:24:e5:76:91:0f:02:85:cd:f7:27: 2d:f5:b3:c9:d7:da:ac:ac:88:e3:9e:3a:ce:6a:5d:e5:7f:fa: ad:c4:ed:db:04:50:91:25:95:fd:37:52:20:d8:cd:b5:f5:d5: 67:ed:a2:c2 -----BEGIN CERTIFICATE----- MIIEwzCCA6ugAwIBAgIBPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMDRC NzhGMEMyMTI4MzIxN0UwQTkxNDBENDY3OEQ5NzRCM0NFNkJFMB4XDTI2MDMzMTA4 MjMyMloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRTI1Q0RBOTgwNjkyMjU4 RUFDMzc5N0IwNDBCMUQ4NTk5OTRGNjkyRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPXVAyQScRY4RbzBLAhX+unGFlfRLm5B0+el/ALY3OJMXKdRMdN2 CfjVfLUoIYxUDQYy1W8uqNSy5Ojn/WeoslOhvN/cBd8jUMHK0QgpCVEI7BncwZpG 6THA6fJ170tl8OfQ7Hm/Mii3e+rsXO9FztoxOizRdRC8uggltwFF6jFY+DULlVsl kjk5TMD3V1ArlGHUBewo8I2bEt6wx2YnZgfOUomiM2atHJSlDZwRaQn2YWsVE5uQ aPz3oc4iUsb+nXsPzlc69fXALuGjf7gWYSAGgFCb4fjKqfunO7goQ58WN4lSP3Ju aYkoZ7eOdQAKP5fXm4jSQdhXZBjUNEeZF80CAwEAAaOCAeAwggHcMB0GA1UdDgQW BBTiXNqYBpIljqw3l7BAsdhZmU9pLzAfBgNVHSMEGDAWgBTwS3jwwhKDIX4KkUDU Z42XSzzmvjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxMDAvOEV0NDhNSVNneUYtQ3BGQTFHZU5sMHM4NXI0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvOEV0NDhNSVNneUYtQ3BGQTFHZU5s MHM4NXI0LmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMwMTAwLzRsemFtQWFTSlk2c041ZXdRTEhZV1psUGFTOC5yb2Ew IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkADAAAHAwDQYJKoZIhvcNAQEL BQADggEBAC8nKA1CSnYB34bq4qXk6k8fKuxyEDzzPjurbNlJGGawmZdYnYbE551w ypNUzXvvxRfwcro07aAJR1p6OCwB7Y6+wfE+5FWvTh9i6AoJSw3t6vKwzMQW+g92 Wd7ZuR6iVBSKgYjbcHNqus/vVOFpAyK8Jf0JArldiw96NbElCBYjpKIKgt3Fr6Il ArjIdRyovPpFiKO2kVRsl3A4DJDWKmWf6NAcpCjxtccOOM1QloqBonAVyCsLtFAu XgCt4Spqrlz8LViwHL94f3niLoK4JOV2kQ8Chc33Jy31s8nX2qysiOOeOs5qXeV/ +q3E7dsEUJEllf03UiDYzbX11WftosI= -----END CERTIFICATE-----Generated at Sun Apr 19 10:06:06 2026 by rpki-client