$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/Nc8CkEf7Wzd2fLZzdTz5it2KtI8.roa File: Nc8CkEf7Wzd2fLZzdTz5it2KtI8.roa (raw, json) Hash identifier: GD8DYL0su1/r/OHji4/B7D/DrBp2pzn+PZp1udepatY= Subject key identifier: 35:CF:02:90:47:FB:5B:37:76:7C:B6:73:75:3C:F9:8A:DD:8A:B4:8F Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 017A Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/Nc8CkEf7Wzd2fLZzdTz5it2KtI8.roa Signing time: Tue 31 Mar 2026 07:38:09 +0000 ROA not before: Tue 31 Mar 2026 07:38:09 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10021 IP address blocks: 27.110.24.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Mar 31 07:38:09 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=35CF029047FB5B37767CB673753CF98ADD8AB48F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a8:07:a2:4c:6f:4a:e6:21:cb:b3:dc:4a:bd: 26:8d:0f:4f:c8:bd:3b:b0:ce:62:3b:bf:de:ce:a3: 02:87:0d:81:ae:9a:cf:1d:6f:b8:a6:16:3a:6c:62: 92:a5:60:7e:19:7e:fb:8f:71:ab:2c:d5:59:5f:1f: b7:3d:5d:04:94:d7:ac:f8:c6:75:81:20:77:2f:85: 2d:2f:82:6a:b8:74:3d:65:70:7d:0b:06:df:8c:e3: 0c:12:2c:ee:2b:36:81:49:2b:c0:05:b3:ee:9f:81: af:ee:71:8d:db:32:76:b0:70:34:18:d7:fc:db:60: 5b:68:be:e1:c4:7d:28:03:c4:df:6a:a3:ab:f3:73: 33:40:6a:ae:67:d1:2c:e2:90:3d:75:41:30:d9:98: 17:aa:c0:c9:8b:6f:0b:13:f5:a0:49:30:dd:ce:0d: c8:8f:ad:47:56:ed:16:fe:aa:89:1f:e4:98:33:24: 45:60:30:bd:d6:e7:0a:9f:af:63:82:92:38:e8:4e: fa:db:19:a5:0d:7f:54:52:5f:2c:a7:59:23:21:fe: 18:ef:2a:54:87:ff:58:b0:f4:01:2f:65:d1:51:e1: 31:42:fe:0a:7d:55:cb:62:32:89:88:1c:b9:04:4f: 00:7e:87:62:c1:dc:f8:b4:11:26:61:48:6b:9b:61: 20:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CF:02:90:47:FB:5B:37:76:7C:B6:73:75:3C:F9:8A:DD:8A:B4:8F X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/Nc8CkEf7Wzd2fLZzdTz5it2KtI8.roa sbgp-ipAddrBlock: critical IPv4: 27.110.24.0/22 Signature Algorithm: sha256WithRSAEncryption 20:97:9e:ac:a4:03:26:29:5a:d4:27:cd:c0:92:19:57:fe:dc: 07:54:3f:04:d6:92:f5:80:ec:43:2f:ba:a6:40:6c:63:9e:44: a4:0a:2e:8c:ea:8e:ba:35:a0:5a:38:f3:0b:07:74:0c:8b:3f: fd:8d:42:cd:b1:2d:09:cc:b3:19:b5:be:1d:63:e7:b4:69:87: 2d:d8:74:68:e5:30:f0:14:ba:cd:91:23:6d:4e:34:7b:3e:f1: b3:4a:19:47:23:29:2c:c0:b2:dd:de:44:68:45:5c:32:d3:5d: 67:77:02:a6:89:8a:21:83:40:71:1d:e4:6c:00:19:55:e9:1b: a6:78:ff:9e:40:e3:db:e8:e5:02:3e:a8:7a:ef:20:96:1b:b2: 73:6d:99:b6:76:51:87:13:b7:74:76:73:89:cb:68:86:35:37: 49:4b:e8:d0:b1:ed:8d:16:ac:0b:2d:12:7e:5d:ab:8c:c4:2a: 89:38:1a:15:37:ca:60:f8:b7:cd:ef:7a:66:54:d8:66:96:a0: 57:a5:b9:49:de:c8:85:38:da:58:01:ce:e2:80:5b:f8:1e:f4: 57:d4:e0:45:ea:a8:af:80:68:8d:34:1f:9a:37:8b:b5:22:c7: 84:bb:30:8a:23:57:a1:17:f2:25:f6:a0:6d:d7:ed:67:11:17: dd:6f:8f:ee -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNjAzMzEw NzM4MDlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM1Q0YwMjkwNDdGQjVC Mzc3NjdDQjY3Mzc1M0NGOThBREQ4QUI0OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxqAeiTG9K5iHLs9xKvSaND0/IvTuwzmI7v97OowKHDYGums8d b7imFjpsYpKlYH4ZfvuPcass1VlfH7c9XQSU16z4xnWBIHcvhS0vgmq4dD1lcH0L Bt+M4wwSLO4rNoFJK8AFs+6fga/ucY3bMnawcDQY1/zbYFtovuHEfSgDxN9qo6vz czNAaq5n0SzikD11QTDZmBeqwMmLbwsT9aBJMN3ODciPrUdW7Rb+qokf5JgzJEVg ML3W5wqfr2OCkjjoTvrbGaUNf1RSXyynWSMh/hjvKlSH/1iw9AEvZdFR4TFC/gp9 VctiMomIHLkETwB+h2LB3Pi0ESZhSGubYSAnAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUNc8CkEf7Wzd2fLZzdTz5it2KtI8wHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNDY5L05jOENrRWY3V3pkMmZMWnpkVHo1aXQyS3RJOC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIbbhgwDQYJKoZIhvcNAQELBQADggEB ACCXnqykAyYpWtQnzcCSGVf+3AdUPwTWkvWA7EMvuqZAbGOeRKQKLozqjro1oFo4 8wsHdAyLP/2NQs2xLQnMsxm1vh1j57Rphy3YdGjlMPAUus2RI21ONHs+8bNKGUcj KSzAst3eRGhFXDLTXWd3AqaJiiGDQHEd5GwAGVXpG6Z4/55A49vo5QI+qHrvIJYb snNtmbZ2UYcTt3R2c4nLaIY1N0lL6NCx7Y0WrAstEn5dq4zEKok4GhU3ymD4t83v emZU2GaWoFeluUneyIU42lgBzuKAW/ge9FfU4EXqqK+AaI00H5o3i7Uix4S7MIoj V6EX8iX2oG3X7WcRF91vj+4= -----END CERTIFICATE-----Generated at Fri Apr 17 23:23:31 2026 by rpki-client