$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/h3I0fJfs-IVWBXb1Car_KqQy5a8.roa File: h3I0fJfs-IVWBXb1Car_KqQy5a8.roa (raw, json) Hash identifier: SG8nSCCdwqWVZE46Vzdd/ik94PBp5Y1ZAg3S9rEyAL8= Subject key identifier: 87:72:34:7C:97:EC:F8:85:56:05:76:F5:09:AA:FF:2A:A4:32:E5:AF Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 055F Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/h3I0fJfs-IVWBXb1Car_KqQy5a8.roa Signing time: Tue 31 Mar 2026 08:19:56 +0000 ROA not before: Tue 31 Mar 2026 08:19:56 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10013 IP address blocks: 220.150.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Mar 31 08:19:56 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8772347C97ECF885560576F509AAFF2AA432E5AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:7b:79:ce:d7:7d:cd:db:50:da:59:3c:f5: 87:b1:8d:be:6c:ed:dd:e8:0e:4d:f8:83:4b:d7:1b: 57:d7:d7:6d:f4:cd:67:af:75:ba:02:dc:31:3b:6a: 43:53:0f:f4:38:e2:16:29:f0:03:32:86:04:61:d6: 4b:43:91:22:14:0c:01:61:3c:95:f0:4b:b9:47:79: 54:ce:a2:8f:a5:3a:9f:07:93:97:d0:fa:ec:9a:7c: 75:86:03:47:f4:c1:05:9d:e2:99:69:0c:1c:8b:4c: e7:3b:54:63:52:2a:99:7e:63:d2:27:12:a5:f4:7c: a0:8f:ed:db:b9:e2:6c:ed:57:00:55:90:26:be:19: 86:45:49:19:b6:3a:9c:f6:8f:3f:6e:2a:60:cb:62: da:2b:74:c5:39:bd:5b:b1:68:29:ec:1f:f1:e3:91: 4d:2a:e7:ad:11:e5:17:4c:b8:40:b3:b8:94:dc:b0: b1:47:21:d7:bc:8f:c3:97:ad:2e:84:af:d3:36:da: 77:7d:d1:fe:15:11:2d:a8:17:13:d4:6f:f0:d0:ca: 9a:14:9b:0c:05:ed:94:0d:53:19:01:7f:95:97:1d: 94:ad:04:f7:f6:1a:ed:69:95:c2:8e:22:79:66:ab: 6b:e2:f9:58:77:0d:b9:4d:b0:77:e3:b7:4c:f1:7b: a4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:72:34:7C:97:EC:F8:85:56:05:76:F5:09:AA:FF:2A:A4:32:E5:AF X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/h3I0fJfs-IVWBXb1Car_KqQy5a8.roa sbgp-ipAddrBlock: critical IPv4: 220.150.208.0/21 Signature Algorithm: sha256WithRSAEncryption 22:36:96:7e:00:28:61:10:a9:9b:78:7d:16:fc:76:6f:a2:ea: 75:2b:4b:be:49:7c:80:2b:1f:38:6b:2f:cc:78:a2:36:28:9d: dc:c6:39:54:6d:52:bd:7d:6c:f2:ec:e9:c4:d1:e3:d4:65:5d: 4d:cc:29:f9:57:20:d2:bb:55:f2:6f:f0:b2:63:dc:fb:da:ae: 1a:25:6b:0d:fd:a2:7d:97:11:f1:30:1a:c6:ba:22:2b:c9:cc: 4d:6b:8c:e6:04:f7:5b:3c:ac:1b:7e:88:d3:c9:4b:c0:78:a6: 9f:2e:00:45:da:6a:cb:7d:0f:77:41:69:c8:1a:8b:83:6e:ad: 7c:2c:97:35:12:00:40:4a:c4:f0:00:33:f3:f3:5b:05:e3:ee: 59:04:68:74:cb:77:d3:be:90:f5:74:fb:4d:3f:c5:f8:44:ce: 6c:ee:e3:4f:05:76:63:6f:22:f8:88:4e:a7:9c:73:ea:72:c3: 54:65:e4:bf:fe:aa:92:8e:51:85:63:53:00:54:b2:7f:59:81: 99:bb:1f:3a:72:0a:23:69:80:91:00:88:c6:14:5e:2a:3d:04: 1a:aa:54:0f:82:5f:4f:91:77:88:78:5b:41:0e:73:d3:ac:1e: 8d:99:73:37:2b:24:9b:c3:bb:ca:fc:95:19:e5:d8:fb:91:5a: 93:ab:60:da -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNjAzMzEw ODE5NTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg3NzIzNDdDOTdFQ0Y4 ODU1NjA1NzZGNTA5QUFGRjJBQTQzMkU1QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC05Ht5ztd9zdtQ2lk89Yexjb5s7d3oDk34g0vXG1fX1230zWev dboC3DE7akNTD/Q44hYp8AMyhgRh1ktDkSIUDAFhPJXwS7lHeVTOoo+lOp8Hk5fQ +uyafHWGA0f0wQWd4plpDByLTOc7VGNSKpl+Y9InEqX0fKCP7du54mztVwBVkCa+ GYZFSRm2Opz2jz9uKmDLYtordMU5vVuxaCnsH/HjkU0q560R5RdMuECzuJTcsLFH Ide8j8OXrS6Er9M22nd90f4VES2oFxPUb/DQypoUmwwF7ZQNUxkBf5WXHZStBPf2 Gu1plcKOInlmq2vi+Vh3DblNsHfjt0zxe6QnAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUh3I0fJfs+IVWBXb1Car/KqQy5a8wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzk0L2gzSTBmSmZzLUlWV0JYYjFDYXJfS3FReTVhOC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPcltAwDQYJKoZIhvcNAQELBQADggEB ACI2ln4AKGEQqZt4fRb8dm+i6nUrS75JfIArHzhrL8x4ojYondzGOVRtUr19bPLs 6cTR49RlXU3MKflXINK7VfJv8LJj3Pvarholaw39on2XEfEwGsa6IivJzE1rjOYE 91s8rBt+iNPJS8B4pp8uAEXaast9D3dBacgai4NurXwslzUSAEBKxPAAM/PzWwXj 7lkEaHTLd9O+kPV0+00/xfhEzmzu408FdmNvIviITqecc+pyw1Rl5L/+qpKOUYVj UwBUsn9ZgZm7HzpyCiNpgJEAiMYUXio9BBqqVA+CX0+Rd4h4W0EOc9OsHo2Zczcr JJvDu8r8lRnl2PuRWpOrYNo= -----END CERTIFICATE-----Generated at Fri Apr 17 01:19:54 2026 by rpki-client