$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/939/cTN9x4YG6CXwVcinCVv0RgXmqDg.roa File: cTN9x4YG6CXwVcinCVv0RgXmqDg.roa (raw, json) Hash identifier: 3AOsgWZS83XvM4Ldg4m3F+RHopA56w3mAw1iAPJOmzw= Subject key identifier: 71:33:7D:C7:86:06:E8:25:F0:55:C8:A7:09:5B:F4:46:05:E6:A8:38 Certificate issuer: /CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Certificate serial: FE Authority key identifier: 7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/cTN9x4YG6CXwVcinCVv0RgXmqDg.roa Signing time: Tue 31 Mar 2026 07:39:10 +0000 ROA not before: Tue 31 Mar 2026 07:39:10 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2518 IP address blocks: 111.168.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Validity Not Before: Mar 31 07:39:10 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=71337DC78606E825F055C8A7095BF44605E6A838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d1:b5:b6:64:26:f0:3f:fc:e6:cf:10:aa:9c: e3:08:08:2e:4f:12:1e:1b:4a:b9:df:11:bb:d5:2a: 47:af:83:f3:70:dc:83:45:d9:38:2a:ef:0c:0f:e8: 9f:19:53:cb:51:d4:c7:15:2b:13:81:13:ca:5b:ab: 8b:32:87:7e:c9:73:17:57:b8:af:ad:72:bb:70:0f: 8f:b5:85:4b:7a:0f:e7:26:1d:ac:01:db:b8:bd:63: df:90:8f:48:50:8e:7a:c0:eb:44:9c:c0:0d:55:e5: ee:35:02:a3:16:9a:ec:6c:15:01:a2:54:9e:03:ce: d9:f3:20:95:70:fc:f1:06:d5:6b:60:c6:60:92:93: b3:2e:d3:f2:41:2d:1a:fc:8e:52:de:1c:67:97:2e: 8b:43:26:17:59:eb:f4:0d:33:a3:ac:d1:10:fa:8c: 17:34:26:7c:8d:d1:af:07:fe:62:e4:8a:d5:48:c8: d3:ba:c1:11:ea:3f:a6:c5:6e:28:bb:d0:41:c3:f0: 55:f2:83:f4:12:1c:09:c4:fc:85:64:a8:72:c5:3f: 18:eb:d0:1e:b6:01:69:70:4e:d8:d4:48:d8:6e:61: 16:6d:68:23:22:f5:94:b9:6c:ee:06:fb:29:5f:08: f4:2c:ce:52:ee:08:15:5c:76:a0:81:0b:02:b8:b0: a7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:33:7D:C7:86:06:E8:25:F0:55:C8:A7:09:5B:F4:46:05:E6:A8:38 X509v3 Authority Key Identifier: keyid:7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/cTN9x4YG6CXwVcinCVv0RgXmqDg.roa sbgp-ipAddrBlock: critical IPv4: 111.168.0.0/15 Signature Algorithm: sha256WithRSAEncryption 27:27:2c:66:5d:1e:e5:89:df:f1:45:de:da:d7:8f:8f:4d:7d: 08:3d:76:4f:61:55:8a:de:77:df:77:a3:7d:36:6b:2d:a7:6c: 2c:09:de:52:64:15:a0:a2:59:89:94:b8:4c:3e:40:f4:a8:81: 5c:e7:b8:44:d8:2c:28:61:2c:1a:93:cc:d1:41:da:c6:c6:dc: 51:a7:c9:51:8b:91:5d:1d:d6:a0:c0:76:04:14:dc:05:55:f9: f1:4d:fe:de:39:92:ba:2d:58:f9:33:3a:c3:de:f9:a5:6e:0f: 7b:43:93:e7:3c:3d:85:52:5c:6d:0a:5b:51:02:dc:2a:6e:66: d9:b4:da:46:b4:e1:37:70:88:ea:4c:f1:15:50:e9:84:28:d2: c8:72:77:5b:5f:e5:d3:e1:c3:56:78:b0:e5:79:ab:09:f0:c3: d8:66:2f:fa:cd:91:d4:fa:7b:e9:75:ae:3a:16:66:c5:24:7b: f7:b6:5a:f9:22:f5:2a:34:2c:62:b4:a5:2b:20:e1:47:ef:15: 1b:5d:68:95:8a:8e:40:42:79:ce:27:2b:94:1c:86:27:01:78: fc:c8:71:55:1c:48:b9:a5:87:a0:ba:c7:d0:c6:66:4b:c1:c8: a6:a1:e7:f3:1f:0c:10:a9:ee:f7:ae:61:8d:c6:b4:fe:44:4c: b6:d3:00:44 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0M2 MDI5NUM4NUZGMzdFMkRDRjc1QUYwMTRENDRBRDNCRjhDMzNBNDAeFw0yNjAzMzEw NzM5MTBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxMzM3REM3ODYwNkU4 MjVGMDU1QzhBNzA5NUJGNDQ2MDVFNkE4MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC0bW2ZCbwP/zmzxCqnOMICC5PEh4bSrnfEbvVKkevg/Nw3INF 2Tgq7wwP6J8ZU8tR1McVKxOBE8pbq4syh37JcxdXuK+tcrtwD4+1hUt6D+cmHawB 27i9Y9+Qj0hQjnrA60ScwA1V5e41AqMWmuxsFQGiVJ4DztnzIJVw/PEG1WtgxmCS k7Mu0/JBLRr8jlLeHGeXLotDJhdZ6/QNM6Os0RD6jBc0JnyN0a8H/mLkitVIyNO6 wRHqP6bFbii70EHD8FXyg/QSHAnE/IVkqHLFPxjr0B62AWlwTtjUSNhuYRZtaCMi 9ZS5bO4G+ylfCPQszlLuCBVcdqCBCwK4sKd5AgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUcTN9x4YG6CXwVcinCVv0RgXmqDgwHwYDVR0jBBgwFoAUfGApXIX/N+Lc91rw FNRK07+MM6QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzkzOS9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3LU1NNlEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3 LU1NNlEuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvOTM5L2NUTjl4NFlHNkNYd1ZjaW5DVnYwUmdYbXFEZy5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwFvqDANBgkqhkiG9w0BAQsFAAOCAQEA JycsZl0e5Ynf8UXe2tePj019CD12T2FVit5333ejfTZrLadsLAneUmQVoKJZiZS4 TD5A9KiBXOe4RNgsKGEsGpPM0UHaxsbcUafJUYuRXR3WoMB2BBTcBVX58U3+3jmS ui1Y+TM6w975pW4Pe0OT5zw9hVJcbQpbUQLcKm5m2bTaRrThN3CI6kzxFVDphCjS yHJ3W1/l0+HDVniw5XmrCfDD2GYv+s2R1Pp76XWuOhZmxSR797Za+SL1KjQsYrSl KyDhR+8VG11olYqOQEJ5zicrlByGJwF4/MhxVRxIuaWHoLrH0MZmS8HIpqHn8x8M EKnu965hjca0/kRMttMARA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:23:57 2026 by rpki-client