$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/2pqm-GQcFbsuuELur0ZBYiG5a_Y.roa File: 2pqm-GQcFbsuuELur0ZBYiG5a_Y.roa (raw, json) Hash identifier: KwlZuH+V6BKewgpr6eMDbv0yR7UaVD/8SSePtLMwiuo= Subject key identifier: DA:9A:A6:F8:64:1C:15:BB:2E:B8:42:EE:AF:46:41:62:21:B9:6B:F6 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 0686 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/2pqm-GQcFbsuuELur0ZBYiG5a_Y.roa Signing time: Tue 31 Mar 2026 07:28:03 +0000 ROA not before: Tue 31 Mar 2026 07:28:03 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10010 IP address blocks: 220.216.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Mar 31 07:28:03 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DA9AA6F8641C15BB2EB842EEAF46416221B96BF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a8:93:c1:44:73:e1:4a:cd:8b:fa:cf:4d:be: ba:01:b5:08:37:01:3a:c3:d7:d2:05:b9:64:c2:e9: de:36:c9:3d:77:50:64:b6:ac:a6:1e:fd:59:28:e2: 13:9b:8d:d3:7b:f5:be:b8:7f:3b:61:c3:82:9a:3a: 37:59:aa:1b:67:91:d0:e8:72:d8:9e:4e:1b:f9:bc: 86:29:32:36:0a:db:ee:7c:39:0b:75:60:78:41:4e: 26:31:0a:37:17:88:6d:c0:ba:c7:f0:ac:cb:14:c7: 3b:d9:52:20:95:e7:26:dd:2a:a7:ae:8b:7e:d4:8a: f2:7f:10:16:98:7f:06:24:da:7a:21:3b:e2:d9:e1: fa:25:ca:7c:09:89:a0:4d:28:b4:a8:c2:6e:5b:8e: d7:c3:2b:a4:0a:89:2d:f2:b2:38:e3:90:33:b6:5b: f6:df:97:98:51:17:48:6f:c7:7d:f0:37:b1:2d:66: 17:f4:31:34:cf:65:67:ee:dc:1f:b7:34:01:af:32: 9c:cc:6d:f7:fc:e9:8b:1c:68:d4:f4:8d:a3:af:9b: b5:08:36:45:05:98:54:a6:3e:91:3e:05:5c:ce:a7: 40:48:0f:50:ad:01:95:c3:48:a8:3f:91:f4:42:ae: 2a:0a:52:fd:86:a5:ca:05:4a:48:c8:60:f4:16:12: 6b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:9A:A6:F8:64:1C:15:BB:2E:B8:42:EE:AF:46:41:62:21:B9:6B:F6 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/2pqm-GQcFbsuuELur0ZBYiG5a_Y.roa sbgp-ipAddrBlock: critical IPv4: 220.216.120.0/22 Signature Algorithm: sha256WithRSAEncryption 96:39:3c:94:04:f9:31:8f:09:66:6a:ee:b0:6f:f4:4c:d5:a5: 7a:90:5f:b4:a8:3b:75:88:1b:5a:80:e0:1d:a2:46:c8:fc:95: 68:d7:38:2b:f9:32:ab:59:26:3d:17:57:4d:8e:7f:66:ca:86: 54:df:db:45:8d:a6:52:f3:d8:13:b4:aa:ca:aa:5a:6d:95:5b: 05:11:de:34:d7:d5:d4:ad:59:7b:4b:54:0e:db:19:33:2c:85: 2b:8f:a3:e9:18:f1:8a:be:92:e8:1e:c2:d4:39:35:b2:af:4d: 07:2a:43:45:72:92:f9:fd:06:3a:10:8b:97:50:57:be:82:24: 3a:56:df:0e:9c:58:f9:ee:7f:53:d6:14:4c:c9:1e:1c:eb:00: db:fe:25:f9:3d:a6:2b:73:68:ed:39:01:92:04:14:f3:08:73: e4:cc:98:23:57:34:f6:6d:78:f8:d9:f4:b8:52:c8:16:2b:5f: 93:7d:61:e4:fe:a8:c9:00:30:e0:54:3d:8f:d7:c2:dc:73:a6: 64:ca:72:36:dc:07:0a:ba:5c:9c:9d:0a:ed:30:b3:75:98:bc: 78:2a:08:9c:9c:e7:28:24:61:6b:7d:80:da:f9:8a:37:87:e2: 05:31:52:4f:4a:b5:c6:77:f1:65:7e:06:ca:51:b3:7b:a7:89: 0e:48:fc:fe -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNjAzMzEw NzI4MDNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERBOUFBNkY4NjQxQzE1 QkIyRUI4NDJFRUFGNDY0MTYyMjFCOTZCRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaqJPBRHPhSs2L+s9NvroBtQg3ATrD19IFuWTC6d42yT13UGS2 rKYe/Vko4hObjdN79b64fzthw4KaOjdZqhtnkdDoctieThv5vIYpMjYK2+58OQt1 YHhBTiYxCjcXiG3AusfwrMsUxzvZUiCV5ybdKqeui37UivJ/EBaYfwYk2nohO+LZ 4folynwJiaBNKLSowm5bjtfDK6QKiS3ysjjjkDO2W/bfl5hRF0hvx33wN7EtZhf0 MTTPZWfu3B+3NAGvMpzMbff86YscaNT0jaOvm7UINkUFmFSmPpE+BVzOp0BID1Ct AZXDSKg/kfRCrioKUv2GpcoFSkjIYPQWEmt5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU2pqm+GQcFbsuuELur0ZBYiG5a/YwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTQ1LzJwcW0tR1FjRmJzdXVFTHVyMFpCWWlHNWFfWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALc2HgwDQYJKoZIhvcNAQELBQADggEB AJY5PJQE+TGPCWZq7rBv9EzVpXqQX7SoO3WIG1qA4B2iRsj8lWjXOCv5MqtZJj0X V02Of2bKhlTf20WNplLz2BO0qsqqWm2VWwUR3jTX1dStWXtLVA7bGTMshSuPo+kY 8Yq+kugewtQ5NbKvTQcqQ0Vykvn9BjoQi5dQV76CJDpW3w6cWPnuf1PWFEzJHhzr ANv+Jfk9pitzaO05AZIEFPMIc+TMmCNXNPZtePjZ9LhSyBYrX5N9YeT+qMkAMOBU PY/XwtxzpmTKcjbcBwq6XJydCu0ws3WYvHgqCJyc5ygkYWt9gNr5ijeH4gUxUk9K tcZ38WV+BspRs3uniQ5I/P4= -----END CERTIFICATE-----Generated at Fri Apr 17 07:49:48 2026 by rpki-client