$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/zaSSzYj388vIV4Mk3v-VLV5Xoxs.roa File: zaSSzYj388vIV4Mk3v-VLV5Xoxs.roa (raw, json) Hash identifier: SiesdfF3lj1U5eKhjuKo8S5sd6iOf8iN8tjXJpZPWZA= Subject key identifier: CD:A4:92:CD:88:F7:F3:CB:C8:57:83:24:DE:FF:95:2D:5E:57:A3:1B Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 068F Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/zaSSzYj388vIV4Mk3v-VLV5Xoxs.roa Signing time: Tue 31 Mar 2026 07:28:08 +0000 ROA not before: Tue 31 Mar 2026 07:28:08 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10010 IP address blocks: 220.216.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Mar 31 07:28:08 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CDA492CD88F7F3CBC8578324DEFF952D5E57A31B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ea:d1:77:ce:34:72:8b:4c:09:a5:b9:e7:97: e8:56:6a:af:00:29:33:b1:37:b5:e9:ea:0a:fb:c9: 21:c4:7a:84:37:9b:42:bc:fa:87:0a:56:46:81:cd: bb:77:3b:36:03:f4:fe:45:a9:52:b1:9a:fc:4b:9f: 53:0c:c6:0e:b9:a3:12:17:fa:4d:22:1a:0f:32:ce: bb:05:74:fd:ab:87:3e:07:be:b8:f6:7e:bb:1a:47: 47:b4:69:92:86:33:bb:4a:80:a7:88:26:49:47:f8: cf:08:2d:86:bc:86:bf:01:bc:15:91:38:ca:5f:57: db:bb:b3:31:fb:d6:76:54:fa:66:33:15:01:dc:7e: 06:7c:28:27:eb:71:02:42:0f:16:d5:59:97:21:8d: 8a:e8:ff:71:e8:03:8c:21:83:c5:69:3e:6b:38:75: 8b:a1:c0:6e:63:1b:19:23:93:53:cb:95:35:6b:2e: 39:20:03:ea:8b:34:eb:1d:c3:66:5b:74:d9:dc:90: 03:dd:6b:d3:ca:c8:96:31:64:12:93:84:10:ae:ed: cd:0d:86:0e:0e:4d:6e:c7:45:50:fb:63:b7:2f:3f: 8a:3e:7a:09:9a:93:dd:7e:b2:cb:54:e3:9c:fc:09: b1:24:43:fb:57:fc:e9:23:5d:5c:f2:a2:4c:c4:89: 85:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A4:92:CD:88:F7:F3:CB:C8:57:83:24:DE:FF:95:2D:5E:57:A3:1B X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/zaSSzYj388vIV4Mk3v-VLV5Xoxs.roa sbgp-ipAddrBlock: critical IPv4: 220.216.88.0/21 Signature Algorithm: sha256WithRSAEncryption 89:65:fe:e6:a3:fe:18:b2:c5:c1:0d:ff:a6:05:c0:78:47:a1: de:60:93:63:7e:66:74:66:97:9f:32:a0:81:2b:75:14:9d:97: ad:3e:6d:5e:44:e0:62:4a:b2:10:a0:70:2b:8c:8f:76:f6:ea: 1e:e9:06:13:e4:56:3f:31:6e:40:0f:0c:bd:a2:67:5d:3a:90: bd:bd:50:7e:ff:d9:2a:61:8b:85:ab:a4:b0:9f:c5:33:7f:a4: 52:08:97:27:8a:21:22:26:8a:07:2f:0b:cf:90:c2:47:77:77: 7c:99:bf:e1:18:83:64:c2:bc:a8:16:71:a8:b5:d9:23:51:52: 0d:7a:27:a4:4e:2c:24:dc:58:03:64:4f:93:e7:95:ab:7e:ea: 0d:97:20:ec:a5:48:9b:5f:f3:64:39:9a:20:8b:3e:cb:cf:9f: f0:ed:60:fa:e8:29:93:cb:af:02:b8:1c:56:ef:67:49:26:f1: 9e:33:4a:8c:a5:4c:fa:34:f3:75:29:46:36:aa:45:65:26:91: 37:3e:fc:d5:6a:79:4c:24:6d:4a:f6:34:4d:5c:c0:16:e7:31: 4b:f8:96:53:0a:d3:0d:56:99:5f:05:5d:66:8f:42:93:ab:66: c8:33:75:2d:8f:62:36:ee:4f:60:98:ae:18:25:07:85:fe:16: 6d:50:bf:ad -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNjAzMzEw NzI4MDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKENEQTQ5MkNEODhGN0Yz Q0JDODU3ODMyNERFRkY5NTJENUU1N0EzMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj6tF3zjRyi0wJpbnnl+hWaq8AKTOxN7Xp6gr7ySHEeoQ3m0K8 +ocKVkaBzbt3OzYD9P5FqVKxmvxLn1MMxg65oxIX+k0iGg8yzrsFdP2rhz4Hvrj2 frsaR0e0aZKGM7tKgKeIJklH+M8ILYa8hr8BvBWROMpfV9u7szH71nZU+mYzFQHc fgZ8KCfrcQJCDxbVWZchjYro/3HoA4whg8VpPms4dYuhwG5jGxkjk1PLlTVrLjkg A+qLNOsdw2ZbdNnckAPda9PKyJYxZBKThBCu7c0Nhg4OTW7HRVD7Y7cvP4o+egma k91+sstU45z8CbEkQ/tX/OkjXVzyokzEiYWvAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUzaSSzYj388vIV4Mk3v+VLV5XoxswHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTQ1L3phU1N6WWozODh2SVY0TWszdi1WTFY1WG94cy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPc2FgwDQYJKoZIhvcNAQELBQADggEB AIll/uaj/hiyxcEN/6YFwHhHod5gk2N+ZnRml58yoIErdRSdl60+bV5E4GJKshCg cCuMj3b26h7pBhPkVj8xbkAPDL2iZ106kL29UH7/2Sphi4WrpLCfxTN/pFIIlyeK ISImigcvC8+Qwkd3d3yZv+EYg2TCvKgWcai12SNRUg16J6ROLCTcWANkT5Pnlat+ 6g2XIOylSJtf82Q5miCLPsvPn/DtYProKZPLrwK4HFbvZ0km8Z4zSoylTPo083Up RjaqRWUmkTc+/NVqeUwkbUr2NE1cwBbnMUv4llMK0w1WmV8FXWaPQpOrZsgzdS2P YjbuT2CYrhglB4X+Fm1Qv60= -----END CERTIFICATE-----Generated at Fri Apr 17 06:52:13 2026 by rpki-client