$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/484/ofMkT5WIn0-ZITNDPkqTJvyJk0c.roa File: ofMkT5WIn0-ZITNDPkqTJvyJk0c.roa (raw, json) Hash identifier: BJgrvTW4GWqV0UYN4ZmpVT40bJTRnDt7wEq9fpA6OKE= Subject key identifier: A1:F3:24:4F:95:88:9F:4F:99:21:33:43:3E:4A:93:26:FC:89:93:47 Certificate issuer: /CN=C0986C0F2DB2D4FE707672C227937BEAA9F5D78A Certificate serial: 47 Authority key identifier: C0:98:6C:0F:2D:B2:D4:FE:70:76:72:C2:27:93:7B:EA:A9:F5:D7:8A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/ofMkT5WIn0-ZITNDPkqTJvyJk0c.roa Signing time: Tue 31 Mar 2026 08:43:36 +0000 ROA not before: Tue 31 Mar 2026 08:43:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9354 IP address blocks: 202.157.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 14:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0986C0F2DB2D4FE707672C227937BEAA9F5D78A Validity Not Before: Mar 31 08:43:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A1F3244F95889F4F992133433E4A9326FC899347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4c:9b:e1:5f:a3:73:6b:69:8c:32:51:50:f0: 33:cc:f3:d9:5a:21:0a:be:44:6d:bf:83:4a:d9:71: 48:07:e0:6e:e0:de:5b:98:12:d1:a9:ba:7d:d3:3c: 96:ff:05:a9:a2:c6:84:71:b9:28:21:5e:75:bd:69: ac:69:66:e2:a8:5e:ed:c9:8c:33:75:cc:9c:76:67: 47:ae:89:69:c0:99:06:96:37:71:27:aa:50:d0:f3: 5a:73:58:38:9f:c1:8d:dd:17:77:d7:0e:18:47:cb: 1b:3b:5e:d5:f5:34:da:d1:bd:22:39:6f:f4:62:ad: 7f:fb:1d:1a:35:75:d1:8e:ea:8e:96:66:50:7e:79: 4d:32:a4:0d:88:02:25:6a:aa:ac:4e:cb:50:bc:f4: 48:72:4f:92:b2:53:57:88:35:38:8d:eb:e5:50:fc: d4:30:2d:62:c1:81:e0:25:7b:89:1f:2d:45:ec:95: 21:26:f3:8c:5e:c3:57:85:03:c9:4c:1c:b0:d0:af: 86:d1:a2:72:da:af:62:29:eb:c4:24:bf:49:83:bc: 12:66:cd:6b:88:53:18:e9:db:8a:08:6a:e3:e8:a9: bf:d2:46:34:c6:d2:87:fe:ff:fc:b4:94:2f:73:63: 98:58:fe:d2:81:23:7b:a9:46:55:2d:c9:81:89:96: 2a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F3:24:4F:95:88:9F:4F:99:21:33:43:3E:4A:93:26:FC:89:93:47 X509v3 Authority Key Identifier: keyid:C0:98:6C:0F:2D:B2:D4:FE:70:76:72:C2:27:93:7B:EA:A9:F5:D7:8A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/ofMkT5WIn0-ZITNDPkqTJvyJk0c.roa sbgp-ipAddrBlock: critical IPv4: 202.157.240.0/22 Signature Algorithm: sha256WithRSAEncryption cc:16:ce:2b:1d:30:cf:a6:95:d1:2e:b7:c3:e2:8d:fa:2c:e3: 30:e5:65:87:37:dd:73:3f:7c:9f:db:0e:a0:b2:90:eb:c0:30: 36:d2:ed:a6:6c:93:72:67:74:3b:e2:73:cb:da:2b:a8:a8:0a: 83:fd:46:ed:a1:2b:da:f1:28:64:5d:71:00:9b:62:fd:11:81: 6a:c7:a2:28:5e:e7:cf:0a:77:df:b3:68:17:1d:34:fc:cc:b1: ce:49:ae:9b:7a:e4:de:0f:f3:f1:8e:7a:94:05:70:5f:0e:bd: e0:29:0d:b5:9c:98:8b:22:ea:e0:47:64:67:31:be:aa:a5:a6: 8e:1e:8a:8a:1e:5d:b9:59:98:dd:d1:4f:6c:68:9b:ae:a9:43: 10:1b:86:38:48:2c:d9:91:04:91:d2:28:08:53:8f:61:16:ed: 4b:ac:e5:51:c5:9b:73:38:cf:40:a7:95:0e:a6:1b:2d:d1:c9: d8:a8:17:c3:bc:1d:7f:61:d5:a8:be:1a:a6:dc:5c:26:f6:a4: e7:13:c6:e3:94:a7:3b:12:30:e2:1e:af:bc:48:c2:e3:41:62: b6:d8:a6:0a:38:9c:5d:d4:09:56:82:b3:97:b4:55:20:8b:62: bc:f7:69:66:cd:ec:5f:0b:e0:b6:c7:29:a7:4e:ff:4f:6c:2e: 61:9f:73:d5 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDMDk4 NkMwRjJEQjJENEZFNzA3NjcyQzIyNzkzN0JFQUE5RjVENzhBMB4XDTI2MDMzMTA4 NDMzNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTFGMzI0NEY5NTg4OUY0 Rjk5MjEzMzQzM0U0QTkzMjZGQzg5OTM0NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK1Mm+Ffo3NraYwyUVDwM8zz2VohCr5Ebb+DStlxSAfgbuDeW5gS 0am6fdM8lv8FqaLGhHG5KCFedb1prGlm4qhe7cmMM3XMnHZnR66JacCZBpY3cSeq UNDzWnNYOJ/Bjd0Xd9cOGEfLGzte1fU02tG9Ijlv9GKtf/sdGjV10Y7qjpZmUH55 TTKkDYgCJWqqrE7LULz0SHJPkrJTV4g1OI3r5VD81DAtYsGB4CV7iR8tReyVISbz jF7DV4UDyUwcsNCvhtGictqvYinrxCS/SYO8EmbNa4hTGOnbighq4+ipv9JGNMbS h/7//LSUL3NjmFj+0oEje6lGVS3JgYmWKl8CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSh8yRPlYifT5khM0M+SpMm/ImTRzAfBgNVHSMEGDAWgBTAmGwPLbLU/nB2csIn k3vqqfXXijAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDg0L3dKaHNEeTJ5MVA1d2RuTENKNU43NnFuMTE0by5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3dKaHNEeTJ5MVA1d2RuTENKNU43NnFu MTE0by5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80ODQvb2ZNa1Q1V0luMC1aSVRORFBrcVRKdnlKazBjLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsqd8DANBgkqhkiG9w0BAQsFAAOCAQEA zBbOKx0wz6aV0S63w+KN+izjMOVlhzfdcz98n9sOoLKQ68AwNtLtpmyTcmd0O+Jz y9orqKgKg/1G7aEr2vEoZF1xAJti/RGBaseiKF7nzwp337NoFx00/Myxzkmum3rk 3g/z8Y56lAVwXw694CkNtZyYiyLq4EdkZzG+qqWmjh6Kih5duVmY3dFPbGibrqlD EBuGOEgs2ZEEkdIoCFOPYRbtS6zlUcWbczjPQKeVDqYbLdHJ2KgXw7wdf2HVqL4a ptxcJvak5xPG45SnOxIw4h6vvEjC40FittimCjicXdQJVoKzl7RVIItivPdpZs3s Xwvgtscpp07/T2wuYZ9z1Q== -----END CERTIFICATE-----Generated at Fri Apr 17 17:27:17 2026 by rpki-client