$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30428/0Q8tm34i6oSy1sw9_eQSpjNr9PA.roa File: 0Q8tm34i6oSy1sw9_eQSpjNr9PA.roa (raw, json) Hash identifier: bTOvo3hR8mosn4hbohPCUyzf1AhwIhXnI+as7+E9s48= Subject key identifier: D1:0F:2D:9B:7E:22:EA:84:B2:D6:CC:3D:FD:E4:12:A6:33:6B:F4:F0 Certificate issuer: /CN=CBAAB6E902A754AB20FF1256A2AFC679C413373E Certificate serial: 23 Authority key identifier: CB:AA:B6:E9:02:A7:54:AB:20:FF:12:56:A2:AF:C6:79:C4:13:37:3E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y6q26QKnVKsg_xJWoq_GecQTNz4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30428/0Q8tm34i6oSy1sw9_eQSpjNr9PA.roa Signing time: Sun 01 Mar 2026 01:35:42 +0000 ROA not before: Sun 01 Mar 2026 01:35:42 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 23831 IP address blocks: 2401:2f20::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30428/y6q26QKnVKsg_xJWoq_GecQTNz4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30428/y6q26QKnVKsg_xJWoq_GecQTNz4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y6q26QKnVKsg_xJWoq_GecQTNz4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBAAB6E902A754AB20FF1256A2AFC679C413373E Validity Not Before: Mar 1 01:35:42 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=D10F2D9B7E22EA84B2D6CC3DFDE412A6336BF4F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:73:a9:20:66:c8:49:f8:bb:56:ca:82:0a:94: 75:3e:d5:20:1a:c0:cb:8a:fa:e9:32:37:b8:f5:06: d9:c8:3c:3a:ec:f1:0c:e6:7b:93:fe:67:9f:04:7f: 9d:75:ea:3c:26:07:f5:a9:11:ea:40:9e:e2:35:50: 64:4b:2d:c3:0c:37:5a:4f:eb:26:0a:d5:36:db:dc: eb:ef:20:50:c7:a7:95:69:6b:af:66:49:23:60:79: 95:66:f1:2a:ed:96:a4:e3:3b:6b:62:ff:90:a1:97: 34:d8:3d:31:b5:72:4b:9c:7d:a9:6e:35:3c:db:7e: c1:1f:94:d0:3e:04:e0:b0:01:ad:0f:ea:fb:32:22: d9:06:b9:ab:cd:01:9f:58:68:40:65:e1:f1:95:91: 8d:99:f5:14:92:7b:ff:95:06:88:50:a1:b4:a5:06: 42:00:7d:12:95:09:ca:3e:a0:61:7b:5f:20:32:eb: bc:47:f1:51:69:e4:c6:fa:39:d9:8d:eb:7b:8f:68: 71:7a:67:ea:90:a2:e1:a9:14:9c:65:cb:f0:50:82: 60:38:ed:66:62:1e:f9:b1:7e:69:a0:27:7f:e0:cb: 4f:e3:55:31:e3:77:bc:f9:48:0e:2d:49:08:65:51: 8f:a8:17:a2:9b:79:87:07:7b:50:8c:2c:f6:12:04: 2d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0F:2D:9B:7E:22:EA:84:B2:D6:CC:3D:FD:E4:12:A6:33:6B:F4:F0 X509v3 Authority Key Identifier: keyid:CB:AA:B6:E9:02:A7:54:AB:20:FF:12:56:A2:AF:C6:79:C4:13:37:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30428/y6q26QKnVKsg_xJWoq_GecQTNz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y6q26QKnVKsg_xJWoq_GecQTNz4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30428/0Q8tm34i6oSy1sw9_eQSpjNr9PA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2f20::/32 Signature Algorithm: sha256WithRSAEncryption 76:b2:44:cf:05:de:7c:03:61:60:c8:a1:c1:eb:f2:d3:9b:12: 91:39:b6:80:23:2b:d3:a5:dd:76:9f:e1:33:67:2b:37:6b:f5: 82:07:5e:02:e8:c0:87:59:e7:b1:7f:b9:6b:39:08:18:f5:a5: 10:ef:f8:f1:9c:3d:fd:46:1e:4f:51:50:c9:12:c8:2b:1d:ab: a8:ad:33:e9:b0:55:8b:69:05:c0:77:75:35:b0:f3:f2:12:ac: aa:35:0c:65:7f:f0:c9:39:e5:ac:30:1f:60:f2:51:4e:4e:e3: 73:57:95:44:96:6c:9f:64:be:78:89:3c:6d:79:3e:e0:47:a5: ce:32:2b:e6:3c:96:ea:32:8d:8f:e8:ad:71:b5:20:a8:64:b1: 83:cc:66:bd:66:cf:d8:96:04:e1:fa:a8:5f:9d:b7:47:7c:81: 61:f0:ee:8d:17:77:2c:da:e0:d1:30:b2:c3:51:f2:1b:e9:52: 5f:2f:24:3b:78:90:4d:5a:a4:3e:17:a9:d8:33:22:a7:1b:61: a2:4c:17:3a:08:65:fc:7f:49:aa:81:05:0a:d0:81:62:95:e3: 4e:9d:d8:3f:7c:1b:7c:a3:ee:76:ef:3e:ae:73:32:24:93:11: 81:46:40:b0:6f:54:77:58:00:4d:a3:c6:b1:42:18:ae:64:8c: 10:60:ec:c6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQkFB QjZFOTAyQTc1NEFCMjBGRjEyNTZBMkFGQzY3OUM0MTMzNzNFMB4XDTI2MDMwMTAx MzU0MloXDTI3MDIxNTAxMzAwMlowMzExMC8GA1UEAxMoRDEwRjJEOUI3RTIyRUE4 NEIyRDZDQzNERkRFNDEyQTYzMzZCRjRGMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALZzqSBmyEn4u1bKggqUdT7VIBrAy4r66TI3uPUG2cg8OuzxDOZ7 k/5nnwR/nXXqPCYH9akR6kCe4jVQZEstwww3Wk/rJgrVNtvc6+8gUMenlWlrr2ZJ I2B5lWbxKu2WpOM7a2L/kKGXNNg9MbVyS5x9qW41PNt+wR+U0D4E4LABrQ/q+zIi 2Qa5q80Bn1hoQGXh8ZWRjZn1FJJ7/5UGiFChtKUGQgB9EpUJyj6gYXtfIDLrvEfx UWnkxvo52Y3re49ocXpn6pCi4akUnGXL8FCCYDjtZmIe+bF+aaAnf+DLT+NVMeN3 vPlIDi1JCGVRj6gXopt5hwd7UIws9hIELbECAwEAAaOCAikwggIlMB0GA1UdDgQW BBTRDy2bfiLqhLLWzD395BKmM2v08DAfBgNVHSMEGDAWgBTLqrbpAqdUqyD/Elai r8Z5xBM3PjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjgveTZxMjZRS25WS3NnX3hKV29xX0dlY1FUTno0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveTZxMjZRS25WS3NnX3hKV29xX0dl Y1FUTno0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDI4LzBROHRtMzRpNm9TeTFzdzlfZVFTcGpOcjlQQS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAS8gMA0GCSqGSIb3DQEBCwUAA4IBAQB2skTPBd58A2FgyKHB6/LT mxKRObaAIyvTpd12n+EzZys3a/WCB14C6MCHWeexf7lrOQgY9aUQ7/jxnD39Rh5P UVDJEsgrHauorTPpsFWLaQXAd3U1sPPyEqyqNQxlf/DJOeWsMB9g8lFOTuNzV5VE lmyfZL54iTxteT7gR6XOMivmPJbqMo2P6K1xtSCoZLGDzGa9Zs/YlgTh+qhfnbdH fIFh8O6NF3cs2uDRMLLDUfIb6VJfLyQ7eJBNWqQ+F6nYMyKnG2GiTBc6CGX8f0mq gQUK0IFileNOndg/fBt8o+527z6uczIkkxGBRkCwb1R3WABNo8axQhiuZIwQYOzG -----END CERTIFICATE-----Generated at Mon Mar 2 14:50:45 2026 by rpki-client