$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/KhFHmXJ_7uXLTxDAOnSDiscZ4aY.roa File: KhFHmXJ_7uXLTxDAOnSDiscZ4aY.roa (raw, json) Hash identifier: eCBl1+LL++GsM3/kL1VgnaMFItatgIkF0iAengoFJJc= Subject key identifier: 2A:11:47:99:72:7F:EE:E5:CB:4F:10:C0:3A:74:83:8A:C7:19:E1:A6 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 04CF Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KhFHmXJ_7uXLTxDAOnSDiscZ4aY.roa Signing time: Tue 31 Mar 2026 08:18:51 +0000 ROA not before: Tue 31 Mar 2026 08:18:51 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 27.120.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:18:51 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2A114799727FEEE5CB4F10C03A74838AC719E1A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d4:9d:ab:72:c2:5a:ec:df:00:f8:67:bb:37: 66:3e:6a:5b:4a:24:a4:57:ac:9a:9a:13:74:0b:0f: b4:2f:13:db:9e:41:d1:f7:77:e7:d5:58:a3:d3:c4: b9:10:14:c3:47:0f:79:31:10:0e:3e:3f:21:21:15: 78:04:75:5c:ac:db:c5:6e:d2:a7:cb:cc:4a:ab:8b: cf:cd:14:1a:0c:a7:f0:1d:74:6d:db:59:67:9d:6b: 12:0b:89:9a:30:e1:9c:3a:62:66:cd:20:3e:97:e1: 47:07:82:d1:f2:87:fa:43:91:a1:75:7b:ec:74:5b: 5c:91:f1:19:47:a4:78:68:de:db:d3:d9:82:d0:3b: af:65:42:8c:65:36:7e:5f:e0:08:d9:60:aa:91:75: 89:58:a4:54:68:17:65:2b:6e:81:58:9a:4a:1d:fe: 7c:d2:e8:2d:da:17:ce:ff:28:f7:db:cd:55:17:60: 5c:a7:49:24:4b:1c:b4:ea:61:67:1b:c0:53:9a:03: 99:7c:e3:6b:f7:ef:15:47:db:26:ca:8d:2c:b5:64: 68:24:05:81:07:69:9c:28:1b:b3:a3:f0:45:cf:f1: e3:ad:d2:0b:c9:39:c8:71:cc:fa:58:b3:27:05:6e: 77:e3:2c:37:c1:de:24:1f:f0:80:e4:82:6d:c1:f6: ea:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:11:47:99:72:7F:EE:E5:CB:4F:10:C0:3A:74:83:8A:C7:19:E1:A6 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KhFHmXJ_7uXLTxDAOnSDiscZ4aY.roa sbgp-ipAddrBlock: critical IPv4: 27.120.128.0/20 Signature Algorithm: sha256WithRSAEncryption 18:a1:2a:ee:73:66:e6:f1:d3:0d:eb:7d:16:fb:d8:fa:b8:a0: 3c:da:8e:a2:6c:fb:9a:d0:19:e9:a9:e4:23:93:02:36:9b:75: ab:46:a1:9d:9d:db:07:27:d0:a5:20:ae:6b:c5:60:34:3c:07: 33:8a:ff:e7:d5:f1:45:ba:ec:2e:b4:0e:6d:88:ec:8d:b4:a3: 6a:70:6d:b1:64:a2:fa:8e:1e:bc:30:9c:5f:2d:c5:64:48:24: fd:5c:a5:6d:be:74:de:36:5f:a8:d0:1f:bd:35:05:6b:b5:55: 22:c4:11:fa:87:1c:32:f0:00:46:14:89:de:a0:67:4a:1c:a1: 83:48:fb:6e:33:41:5c:5b:f1:5f:86:33:40:8e:8b:98:70:06: 97:8e:ba:8d:03:51:13:42:88:dc:33:a2:1b:4a:9a:08:d4:48: 3c:d3:ca:f3:65:37:e9:fc:9e:92:87:28:e3:c6:de:2f:bd:97: 39:b3:d1:68:31:99:02:da:f0:39:7d:ba:28:54:09:93:e3:0b: 87:a3:7c:e5:e2:39:86:59:0c:44:01:b4:41:df:eb:25:50:4e: 6f:48:8c:2d:71:9b:a6:5b:c0:5a:02:93:a1:68:52:24:9e:a7: 13:52:e7:ff:4d:99:b1:dc:73:d1:9a:77:69:38:6a:df:fe:1b: 95:54:e9:41 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODE4NTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBMTE0Nzk5NzI3RkVF RTVDQjRGMTBDMDNBNzQ4MzhBQzcxOUUxQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC41J2rcsJa7N8A+Ge7N2Y+altKJKRXrJqaE3QLD7QvE9ueQdH3 d+fVWKPTxLkQFMNHD3kxEA4+PyEhFXgEdVys28Vu0qfLzEqri8/NFBoMp/AddG3b WWedaxILiZow4Zw6YmbNID6X4UcHgtHyh/pDkaF1e+x0W1yR8RlHpHho3tvT2YLQ O69lQoxlNn5f4AjZYKqRdYlYpFRoF2UrboFYmkod/nzS6C3aF87/KPfbzVUXYFyn SSRLHLTqYWcbwFOaA5l842v37xVH2ybKjSy1ZGgkBYEHaZwoG7Oj8EXP8eOt0gvJ OchxzPpYsycFbnfjLDfB3iQf8IDkgm3B9uqBAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKhFHmXJ/7uXLTxDAOnSDiscZ4aYwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L0toRkhtWEpfN3VYTFR4REFPblNEaXNjWjRhWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQbeIAwDQYJKoZIhvcNAQELBQADggEB ABihKu5zZubx0w3rfRb72Pq4oDzajqJs+5rQGemp5COTAjabdatGoZ2d2wcn0KUg rmvFYDQ8BzOK/+fV8UW67C60Dm2I7I20o2pwbbFkovqOHrwwnF8txWRIJP1cpW2+ dN42X6jQH701BWu1VSLEEfqHHDLwAEYUid6gZ0ocoYNI+24zQVxb8V+GM0COi5hw BpeOuo0DURNCiNwzohtKmgjUSDzTyvNlN+n8npKHKOPG3i+9lzmz0WgxmQLa8Dl9 uihUCZPjC4ejfOXiOYZZDEQBtEHf6yVQTm9IjC1xm6ZbwFoCk6FoUiSepxNS5/9N mbHcc9Gad2k4at/+G5VU6UE= -----END CERTIFICATE-----Generated at Fri Apr 17 02:20:29 2026 by rpki-client