$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/524/hylkIQoaAOK22-vA-V35kKLNXno.roa File: hylkIQoaAOK22-vA-V35kKLNXno.roa (raw, json) Hash identifier: sizt/Rmuxz/R8+5LOMSan1eccNoBm3VA+7PHnCmLnes= Subject key identifier: 87:29:64:21:0A:1A:00:E2:B6:DB:EB:C0:F9:5D:F9:90:A2:CD:5E:7A Certificate issuer: /CN=EE13ACCF7E77B0292AE17B05340211C8F971760B Certificate serial: 68 Authority key identifier: EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/hylkIQoaAOK22-vA-V35kKLNXno.roa Signing time: Tue 31 Mar 2026 08:31:41 +0000 ROA not before: Tue 31 Mar 2026 08:31:41 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 24257 IP address blocks: 202.90.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE13ACCF7E77B0292AE17B05340211C8F971760B Validity Not Before: Mar 31 08:31:41 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=872964210A1A00E2B6DBEBC0F95DF990A2CD5E7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:75:e6:cd:36:cc:33:52:9d:4c:75:43:34:5f: 08:81:13:fb:7e:55:6a:fe:a5:27:8a:6a:c6:f5:1d: c1:bf:f2:e8:20:b9:d9:14:46:bc:ab:35:f6:89:88: 28:ba:a0:af:9c:5a:16:2f:94:d1:6e:b4:96:51:5c: a3:e8:fd:d7:01:00:2b:ac:62:b7:ba:4d:64:3c:81: 12:ab:ae:67:45:01:71:1f:cc:d4:80:55:9b:44:fa: c3:a7:a8:ed:b6:ef:a8:83:a9:6d:2e:78:c6:20:63: 25:31:e8:89:f9:e6:dc:7c:f4:29:c4:95:0b:ef:1a: 1d:87:ac:eb:28:9e:0c:8f:06:92:6a:44:eb:09:b3: a7:0c:7a:a0:79:08:65:6d:7c:32:1a:24:ba:0d:f1: 50:f7:37:09:43:28:26:6c:fb:81:c7:fc:31:fc:92: 80:de:8c:52:7f:ec:da:42:08:93:fa:99:87:12:a3: 9b:7e:b5:dc:23:f8:81:09:02:84:5e:0e:a4:d8:cb: a0:d8:b3:ae:b2:0a:e1:21:e8:7b:27:82:bd:eb:89: 7d:98:70:5c:50:46:a1:35:92:d4:b9:f2:9b:37:7b: 8b:be:bf:91:55:95:b6:0c:aa:ec:20:b0:c8:35:21: 32:c3:be:6d:15:f5:48:d5:67:d1:c6:5e:58:23:d3: 4e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:29:64:21:0A:1A:00:E2:B6:DB:EB:C0:F9:5D:F9:90:A2:CD:5E:7A X509v3 Authority Key Identifier: keyid:EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/hylkIQoaAOK22-vA-V35kKLNXno.roa sbgp-ipAddrBlock: critical IPv4: 202.90.13.0/24 Signature Algorithm: sha256WithRSAEncryption 92:4d:61:6a:b4:51:33:3e:a2:ec:31:59:45:c0:5f:d9:61:5e: 2d:a1:a5:2e:60:05:e5:61:28:7a:91:b9:94:97:41:b9:13:66: 5c:5d:7c:1e:ae:60:7b:22:ef:c7:ac:82:0a:21:38:ca:c3:74: 71:92:cd:e1:ea:4a:c5:07:0d:26:83:ec:1c:c2:5f:45:cc:44: 9a:3b:77:1c:c4:9a:15:22:85:15:e7:3b:3e:38:42:31:84:60: c4:7b:47:a9:18:73:72:f5:b9:08:25:00:de:bd:1e:2c:44:92: cc:1a:dc:5b:d2:bb:b8:6d:b4:e7:56:bf:93:41:96:28:7d:b5: e3:53:b2:8a:44:f5:f5:5d:4e:85:9c:2f:2d:e2:7e:49:9c:81: 68:34:69:e9:c6:5d:b9:3e:d8:ea:6a:0f:3b:3e:f8:9f:35:ef: 70:38:50:d7:fe:a6:cd:f5:31:2c:ed:d1:0d:77:e0:25:ec:f8: 8e:0b:59:10:f3:1b:37:5a:06:60:27:55:06:26:3b:37:6a:79: 1b:03:50:a8:0c:7d:5a:86:4a:34:4c:e5:53:18:93:15:4b:af: 21:ed:35:92:82:30:d9:f9:7d:9e:8f:3b:24:fb:e1:96:91:ad: fa:5b:4a:14:ec:6f:97:c3:f8:05:23:9c:bf:d6:0e:14:3d:bd: 0d:5b:fc:b5 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTEz QUNDRjdFNzdCMDI5MkFFMTdCMDUzNDAyMTFDOEY5NzE3NjBCMB4XDTI2MDMzMTA4 MzE0MVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODcyOTY0MjEwQTFBMDBF MkI2REJFQkMwRjk1REY5OTBBMkNENUU3QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANx15s02zDNSnUx1QzRfCIET+35Vav6lJ4pqxvUdwb/y6CC52RRG vKs19omIKLqgr5xaFi+U0W60llFco+j91wEAK6xit7pNZDyBEquuZ0UBcR/M1IBV m0T6w6eo7bbvqIOpbS54xiBjJTHoifnm3Hz0KcSVC+8aHYes6yieDI8GkmpE6wmz pwx6oHkIZW18Mhokug3xUPc3CUMoJmz7gcf8MfySgN6MUn/s2kIIk/qZhxKjm361 3CP4gQkChF4OpNjLoNizrrIK4SHoeyeCveuJfZhwXFBGoTWS1Lnymzd7i76/kVWV tgyq7CCwyDUhMsO+bRX1SNVn0cZeWCPTToMCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSHKWQhChoA4rbb68D5XfmQos1eejAfBgNVHSMEGDAWgBTuE6zPfnewKSrhewU0 AhHI+XF2CzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTI0LzdoT3N6MzUzc0NrcTRYc0ZOQUlSeVBseGRncy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzdoT3N6MzUzc0NrcTRYc0ZOQUlSeVBs eGRncy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC81MjQvaHlsa0lRb2FBT0syMi12QS1WMzVrS0xOWG5vLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpaDTANBgkqhkiG9w0BAQsFAAOCAQEA kk1harRRMz6i7DFZRcBf2WFeLaGlLmAF5WEoepG5lJdBuRNmXF18Hq5geyLvx6yC CiE4ysN0cZLN4epKxQcNJoPsHMJfRcxEmjt3HMSaFSKFFec7PjhCMYRgxHtHqRhz cvW5CCUA3r0eLESSzBrcW9K7uG2051a/k0GWKH2141OyikT19V1OhZwvLeJ+SZyB aDRp6cZduT7Y6moPOz74nzXvcDhQ1/6mzfUxLO3RDXfgJez4jgtZEPMbN1oGYCdV BiY7N2p5GwNQqAx9WoZKNEzlUxiTFUuvIe01koIw2fl9no87JPvhlpGt+ltKFOxv l8P4BSOcv9YOFD29DVv8tQ== -----END CERTIFICATE-----Generated at Fri Apr 17 07:02:49 2026 by rpki-client