$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/YxuxPNp5_KPFV2dJ3_BED9ulQ1Y.roa File: YxuxPNp5_KPFV2dJ3_BED9ulQ1Y.roa (raw, json) Hash identifier: GF3ybX8l3BzXUUvHX4je12GK3CgyUS2e9g0cQ0zK/VE= Subject key identifier: 63:1B:B1:3C:DA:79:FC:A3:C5:57:67:49:DF:F0:44:0F:DB:A5:43:56 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 0677 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/YxuxPNp5_KPFV2dJ3_BED9ulQ1Y.roa Signing time: Tue 31 Mar 2026 07:27:55 +0000 ROA not before: Tue 31 Mar 2026 07:27:55 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10010 IP address blocks: 116.68.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Mar 31 07:27:55 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=631BB13CDA79FCA3C5576749DFF0440FDBA54356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:71:71:bb:d0:d3:cb:72:89:70:e7:f7:c0:0a: f0:ce:26:45:d2:e2:ae:ec:e6:a2:2e:bf:b2:20:49: b0:31:80:d6:74:04:d2:d4:20:31:55:0d:9f:bb:5c: 93:70:01:03:05:4a:91:bc:ea:2c:74:1a:72:be:2c: 97:8b:69:81:f0:32:6a:93:8e:2a:b4:2e:07:a8:47: 1c:fb:fe:0d:c2:6b:93:f3:6e:95:fd:04:6a:68:c6: dd:d8:2c:cb:8f:96:32:1f:df:a2:14:1a:db:60:31: 3f:b2:2d:e1:31:b4:1e:13:d1:dd:5e:30:bf:d3:28: 98:82:a4:cf:55:fa:f6:d7:2d:b4:f6:a7:f7:fa:51: e9:ea:71:15:14:ba:2c:c7:fc:cb:3a:15:b2:6b:70: 45:bc:50:02:6b:cf:8a:da:68:38:47:a1:fb:63:2c: 1b:45:35:7c:5c:43:54:8e:6b:d5:45:e1:05:28:5f: 17:63:58:cc:ba:81:4e:73:64:e0:0f:39:38:57:a5: 72:fe:39:38:3c:c4:88:aa:1c:d0:bf:ae:28:4c:7d: 78:f9:90:c1:f4:ac:6d:a2:91:da:60:9a:6c:ea:df: d9:4a:55:cb:6d:2e:d5:10:75:5c:a4:11:3a:ca:f0: d2:d9:49:c2:f4:7b:fc:eb:66:74:99:53:2b:fa:78: 98:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1B:B1:3C:DA:79:FC:A3:C5:57:67:49:DF:F0:44:0F:DB:A5:43:56 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/YxuxPNp5_KPFV2dJ3_BED9ulQ1Y.roa sbgp-ipAddrBlock: critical IPv4: 116.68.218.0/23 Signature Algorithm: sha256WithRSAEncryption 41:31:c6:68:3b:cf:d1:a9:66:a5:71:75:5a:66:92:4b:93:5f: b2:9d:b1:71:44:8b:80:4e:af:8e:29:e7:83:c6:5d:cb:f7:88: e4:a3:3e:77:47:a9:80:8d:2d:fa:74:d1:c9:f9:86:d5:19:83: af:b9:f9:35:24:ef:14:35:4a:83:cf:8f:c5:ca:b4:4b:2d:57: 0f:a7:c1:ea:7a:f1:80:97:91:88:88:d5:7f:0c:39:bc:a4:4c: 90:02:9f:f0:33:47:2c:bc:ce:cc:e5:48:54:87:24:35:82:ac: f4:04:3a:51:78:a2:53:3a:93:23:48:73:0d:86:0c:5c:83:8e: e3:f8:7e:64:78:5e:f8:f6:51:d4:cf:a8:8e:43:93:15:b2:a8: 3e:f6:48:e7:98:15:c3:4b:9f:b5:32:78:51:f1:51:49:1d:5e: 59:cd:c7:07:9a:8b:32:9d:ee:74:fd:bb:03:13:78:7e:f0:d9: 47:cf:e5:2e:48:72:c0:e7:50:d8:24:8c:26:91:2d:4a:b9:88: 50:96:cc:99:33:a4:86:dc:ff:7e:2c:5a:71:19:0b:b4:c6:86: 36:7d:c1:6c:89:ae:ab:38:42:74:e8:6d:2d:01:38:cb:95:5a: 24:c2:bc:9b:ea:00:4e:ac:41:9e:7b:76:52:c9:9a:b1:95:11: 30:d5:e4:f6 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNjAzMzEw NzI3NTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYzMUJCMTNDREE3OUZD QTNDNTU3Njc0OURGRjA0NDBGREJBNTQzNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDecXG70NPLcolw5/fACvDOJkXS4q7s5qIuv7IgSbAxgNZ0BNLU IDFVDZ+7XJNwAQMFSpG86ix0GnK+LJeLaYHwMmqTjiq0LgeoRxz7/g3Ca5PzbpX9 BGpoxt3YLMuPljIf36IUGttgMT+yLeExtB4T0d1eML/TKJiCpM9V+vbXLbT2p/f6 UenqcRUUuizH/Ms6FbJrcEW8UAJrz4raaDhHoftjLBtFNXxcQ1SOa9VF4QUoXxdj WMy6gU5zZOAPOThXpXL+OTg8xIiqHNC/rihMfXj5kMH0rG2ikdpgmmzq39lKVctt LtUQdVykETrK8NLZScL0e/zrZnSZUyv6eJhJAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUYxuxPNp5/KPFV2dJ3/BED9ulQ1YwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTQ1L1l4dXhQTnA1X0tQRlYyZEozX0JFRDl1bFExWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF0RNowDQYJKoZIhvcNAQELBQADggEB AEExxmg7z9GpZqVxdVpmkkuTX7KdsXFEi4BOr44p54PGXcv3iOSjPndHqYCNLfp0 0cn5htUZg6+5+TUk7xQ1SoPPj8XKtEstVw+nwep68YCXkYiI1X8MObykTJACn/Az Ryy8zszlSFSHJDWCrPQEOlF4olM6kyNIcw2GDFyDjuP4fmR4Xvj2UdTPqI5DkxWy qD72SOeYFcNLn7UyeFHxUUkdXlnNxweaizKd7nT9uwMTeH7w2UfP5S5IcsDnUNgk jCaRLUq5iFCWzJkzpIbc/34sWnEZC7TGhjZ9wWyJrqs4QnTobS0BOMuVWiTCvJvq AE6sQZ57dlLJmrGVETDV5PY= -----END CERTIFICATE-----Generated at Fri Apr 17 04:34:23 2026 by rpki-client