$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/939/XdFXK9eWF0q-oReNP03R9xwZYes.roa File: XdFXK9eWF0q-oReNP03R9xwZYes.roa (raw, json) Hash identifier: AmCvfcJkpgFf27AcQ4JeTvf7Sf4XxoD0tk31GjE+Rq0= Subject key identifier: 5D:D1:57:2B:D7:96:17:4A:BE:A1:17:8D:3F:4D:D1:F7:1C:19:61:EB Certificate issuer: /CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Certificate serial: 0106 Authority key identifier: 7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/XdFXK9eWF0q-oReNP03R9xwZYes.roa Signing time: Tue 31 Mar 2026 07:39:14 +0000 ROA not before: Tue 31 Mar 2026 07:39:14 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2518 IP address blocks: 27.127.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Validity Not Before: Mar 31 07:39:14 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5DD1572BD796174ABEA1178D3F4DD1F71C1961EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1a:29:73:27:59:70:4f:c6:44:49:8e:8a:92: 6f:33:46:14:01:cc:23:c4:69:f7:29:7f:e2:b0:29: 77:3d:c6:e0:a7:3c:eb:76:ec:f1:1e:94:26:c6:fc: e6:c5:7c:da:ca:d9:fa:da:f2:4d:01:18:94:a7:b8: c7:dd:55:c5:ee:18:10:87:76:99:50:7c:a0:41:00: 49:37:04:43:6f:ea:b6:6f:a5:88:15:b3:03:52:d2: 05:64:02:b0:2b:07:1c:7f:d5:db:58:8a:d7:52:3f: 14:0b:60:66:82:85:a3:cd:07:77:26:1d:74:2b:35: 5c:b1:2b:f9:67:50:3e:cf:df:df:e2:38:f9:e1:22: 6b:c7:33:d7:36:04:59:4a:36:ed:51:e7:d6:52:81: b5:16:37:5b:10:98:98:d8:f4:a8:35:dc:42:6a:cd: c9:ad:a4:c6:3c:63:15:4a:03:15:30:aa:b6:a8:55: 32:86:3e:91:0c:65:ba:c6:27:0a:3c:02:a4:ae:69: 33:f6:87:03:5b:9e:0f:15:3a:00:bb:35:97:f9:d7: f8:d7:4e:a2:e5:5c:eb:9c:07:26:87:cc:22:db:56: 61:e6:17:89:7f:10:50:34:e1:3d:66:ba:44:ec:9e: 06:0f:6a:98:7c:3e:12:ec:27:a0:e9:4b:68:fc:fc: 3f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D1:57:2B:D7:96:17:4A:BE:A1:17:8D:3F:4D:D1:F7:1C:19:61:EB X509v3 Authority Key Identifier: keyid:7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/XdFXK9eWF0q-oReNP03R9xwZYes.roa sbgp-ipAddrBlock: critical IPv4: 27.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 28:6d:9a:2e:b0:bc:43:9d:e9:28:3c:b5:da:ef:a7:0c:c5:11: 34:05:13:89:82:32:37:ea:21:c2:2e:40:2c:e6:4f:24:14:53: 31:76:d7:82:0c:f9:4d:57:bb:4a:24:e8:58:d9:5a:b0:76:53: d8:69:b5:ab:eb:9c:88:dc:d1:23:b2:86:6c:20:f7:c9:a2:b4: df:68:20:a2:d6:35:fc:48:91:2a:df:9c:d4:e3:c0:8f:26:a6: 60:fc:ef:99:2c:bb:4b:b9:f8:49:6a:53:e9:5b:05:43:c5:57: 62:ac:83:8a:48:77:af:68:48:49:e7:57:03:bd:11:6d:f9:19: 83:a1:57:6a:ee:3b:84:22:23:a3:ab:ce:b5:ef:09:6b:f4:6e: d1:71:68:35:2d:f3:5d:8f:bb:32:49:10:04:69:49:07:9e:96: 8d:76:d9:5e:e5:ba:2b:9d:10:70:c3:82:bd:7b:c1:58:bd:2c: 21:d3:63:83:34:63:70:70:f2:18:6e:f6:6c:c9:82:6e:94:df: b1:0e:4a:7a:88:c5:ad:df:20:01:08:6d:55:fa:d1:52:64:cd: bc:fc:55:7f:90:48:4a:e5:dd:05:cb:99:ff:0b:e4:24:d2:bc: 0b:54:4d:e9:62:51:fd:bb:f0:9a:69:0b:ed:9f:ed:9e:cc:a3: 0e:2b:5f:d0 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0M2 MDI5NUM4NUZGMzdFMkRDRjc1QUYwMTRENDRBRDNCRjhDMzNBNDAeFw0yNjAzMzEw NzM5MTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVERDE1NzJCRDc5NjE3 NEFCRUExMTc4RDNGNEREMUY3MUMxOTYxRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFGilzJ1lwT8ZESY6Kkm8zRhQBzCPEafcpf+KwKXc9xuCnPOt2 7PEelCbG/ObFfNrK2fra8k0BGJSnuMfdVcXuGBCHdplQfKBBAEk3BENv6rZvpYgV swNS0gVkArArBxx/1dtYitdSPxQLYGaChaPNB3cmHXQrNVyxK/lnUD7P39/iOPnh ImvHM9c2BFlKNu1R59ZSgbUWN1sQmJjY9Kg13EJqzcmtpMY8YxVKAxUwqraoVTKG PpEMZbrGJwo8AqSuaTP2hwNbng8VOgC7NZf51/jXTqLlXOucByaHzCLbVmHmF4l/ EFA04T1mukTsngYPaph8PhLsJ6DpS2j8/D9fAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUXdFXK9eWF0q+oReNP03R9xwZYeswHwYDVR0jBBgwFoAUfGApXIX/N+Lc91rw FNRK07+MM6QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzkzOS9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3LU1NNlEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3 LU1NNlEuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvOTM5L1hkRlhLOWVXRjBxLW9SZU5QMDNSOXh3Wlllcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAcbfwAwDQYJKoZIhvcNAQELBQADggEB AChtmi6wvEOd6Sg8tdrvpwzFETQFE4mCMjfqIcIuQCzmTyQUUzF214IM+U1Xu0ok 6FjZWrB2U9hptavrnIjc0SOyhmwg98mitN9oIKLWNfxIkSrfnNTjwI8mpmD875ks u0u5+ElqU+lbBUPFV2Ksg4pId69oSEnnVwO9EW35GYOhV2ruO4QiI6OrzrXvCWv0 btFxaDUt812PuzJJEARpSQeelo122V7luiudEHDDgr17wVi9LCHTY4M0Y3Bw8hhu 9mzJgm6U37EOSnqIxa3fIAEIbVX60VJkzbz8VX+QSErl3QXLmf8L5CTSvAtUTeli Uf278JppC+2f7Z7Mow4rX9A= -----END CERTIFICATE-----Generated at Fri Apr 17 22:11:28 2026 by rpki-client