$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/2jhn5VElz6vH668kSpahXLCttlc.roa File: 2jhn5VElz6vH668kSpahXLCttlc.roa (raw, json) Hash identifier: 3A/l97L/l60HrzahJmov42QdPu0I8VxrFvUsqj7tXZs= Subject key identifier: DA:38:67:E5:51:25:CF:AB:C7:EB:AF:24:4A:96:A1:5C:B0:AD:B6:57 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 04F7 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2jhn5VElz6vH668kSpahXLCttlc.roa Signing time: Tue 31 Mar 2026 08:19:11 +0000 ROA not before: Tue 31 Mar 2026 08:19:11 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 36.54.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:19:11 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DA3867E55125CFABC7EBAF244A96A15CB0ADB657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6e:8e:94:53:b5:02:c2:66:a5:f6:20:57:52: 16:cf:00:6f:52:6a:17:c0:fa:e9:ad:48:0c:4c:68: b9:2b:32:50:c4:fd:eb:3d:af:ca:c4:b7:f0:76:3c: bd:f4:96:c8:ca:3f:75:42:75:d1:12:9a:d8:b7:2a: ea:6c:dc:ed:ee:91:e1:74:ca:d9:16:a2:8b:3d:41: 9a:72:0e:db:4d:64:4c:cd:e9:54:3e:e5:ab:c9:af: e3:db:0b:23:cb:c3:dc:d8:79:2b:9c:94:3a:a8:43: 6f:4a:cf:9c:3f:8e:db:3a:f3:6b:30:95:11:1c:77: a3:ba:3a:52:17:af:ef:3b:f8:94:5d:b4:b7:33:fe: 04:65:3c:8d:84:09:bb:87:27:4e:9c:78:69:01:a7: 0a:49:cb:5d:2e:bc:31:ed:4e:87:1a:2d:c8:3f:91: 99:7e:a1:49:1f:a1:0e:f0:01:c9:70:cb:e5:4b:a5: bb:2c:ef:bd:79:23:32:7b:d5:78:50:d0:4d:32:f8: 63:4f:c2:6b:d7:a9:9d:48:16:1e:4e:89:97:66:1f: b5:34:e6:7d:4a:5e:d5:36:0c:84:1b:dc:7b:10:b6: 98:07:7b:9e:03:41:81:5a:99:7d:c9:c4:40:6d:77: e7:3c:d4:cf:68:e5:53:0a:45:ad:61:97:20:60:96: ae:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:38:67:E5:51:25:CF:AB:C7:EB:AF:24:4A:96:A1:5C:B0:AD:B6:57 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2jhn5VElz6vH668kSpahXLCttlc.roa sbgp-ipAddrBlock: critical IPv4: 36.54.32.0/19 Signature Algorithm: sha256WithRSAEncryption 8c:ed:7d:86:14:b3:14:23:c1:86:05:8d:0d:b4:36:73:6b:78: 39:b1:22:76:2e:57:3f:01:7c:c4:da:a4:8d:e9:77:60:ba:94: 43:a9:55:c3:6a:a1:6a:4b:81:16:b8:22:ff:b2:bf:1c:7b:74: 56:25:da:e0:8b:41:bc:c5:b4:c2:2f:7c:f4:27:33:6c:ee:52: af:42:8b:48:4b:ed:6a:5a:b1:47:8b:ce:b7:df:a1:f4:55:20: 4d:96:8b:fd:41:a9:79:9d:d3:fe:a8:a9:8d:59:f5:92:b2:ae: d3:00:15:d9:bd:38:a7:b6:00:cd:43:32:19:6c:14:ee:23:74: fa:4e:5f:d7:c9:c6:de:b4:41:8e:fc:47:06:3f:63:2c:0e:a1: 21:88:ed:a4:e4:e2:eb:89:97:4d:e0:21:ac:44:dd:87:1c:8a: c9:54:5e:4c:46:39:72:7c:52:57:da:f2:74:69:4a:fb:5a:e2: 09:34:16:98:fd:4b:79:b1:82:5a:c3:b4:0c:38:d0:d4:7b:d6: 97:e5:a3:82:e8:13:86:9e:b8:8d:93:5f:44:1d:72:1f:ba:28: 47:db:da:2f:5e:d7:0b:e9:fe:04:ef:13:f8:7b:21:31:2b:ee: fa:16:aa:19:90:e0:46:08:86:b8:2b:38:34:42:6a:f8:0a:f3: 76:36:16:4c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODE5MTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERBMzg2N0U1NTEyNUNG QUJDN0VCQUYyNDRBOTZBMTVDQjBBREI2NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDabo6UU7UCwmal9iBXUhbPAG9SahfA+umtSAxMaLkrMlDE/es9 r8rEt/B2PL30lsjKP3VCddESmti3Kups3O3ukeF0ytkWoos9QZpyDttNZEzN6VQ+ 5avJr+PbCyPLw9zYeSuclDqoQ29Kz5w/jts682swlREcd6O6OlIXr+87+JRdtLcz /gRlPI2ECbuHJ06ceGkBpwpJy10uvDHtTocaLcg/kZl+oUkfoQ7wAclwy+VLpbss 7715IzJ71XhQ0E0y+GNPwmvXqZ1IFh5OiZdmH7U05n1KXtU2DIQb3HsQtpgHe54D QYFamX3JxEBtd+c81M9o5VMKRa1hlyBglq7nAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU2jhn5VElz6vH668kSpahXLCttlcwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0LzJqaG41VkVsejZ2SDY2OGtTcGFoWExDdHRsYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUkNiAwDQYJKoZIhvcNAQELBQADggEB AIztfYYUsxQjwYYFjQ20NnNreDmxInYuVz8BfMTapI3pd2C6lEOpVcNqoWpLgRa4 Iv+yvxx7dFYl2uCLQbzFtMIvfPQnM2zuUq9Ci0hL7WpasUeLzrffofRVIE2Wi/1B qXmd0/6oqY1Z9ZKyrtMAFdm9OKe2AM1DMhlsFO4jdPpOX9fJxt60QY78RwY/YywO oSGI7aTk4uuJl03gIaxE3YccislUXkxGOXJ8Ulfa8nRpSvta4gk0Fpj9S3mxglrD tAw40NR71pflo4LoE4aeuI2TX0Qdch+6KEfb2i9e1wvp/gTvE/h7ITEr7voWqhmQ 4EYIhrgrODRCavgK83Y2Fkw= -----END CERTIFICATE-----Generated at Fri Apr 17 01:21:21 2026 by rpki-client