$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/wfR2kpv9kevyVmwxZsmt25nC8vY.roa File: wfR2kpv9kevyVmwxZsmt25nC8vY.roa (raw, json) Hash identifier: zyce60LrINYMwbbXb88umIO0u+WrE6awkgV4poyRFzI= Subject key identifier: C1:F4:76:92:9B:FD:91:EB:F2:56:6C:31:66:C9:AD:DB:99:C2:F2:F6 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 8D Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/wfR2kpv9kevyVmwxZsmt25nC8vY.roa Signing time: Tue 31 Mar 2026 08:37:40 +0000 ROA not before: Tue 31 Mar 2026 08:37:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17698 IP address blocks: 202.86.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 31 08:37:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C1F476929BFD91EBF2566C3166C9ADDB99C2F2F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:37:5b:89:1c:23:ec:f6:73:60:f9:7b:86: d7:bb:d9:b0:c8:88:af:15:6e:74:25:8a:aa:63:c1: f0:22:1c:e5:50:dc:19:a8:de:44:9b:ae:2e:2b:06: cd:92:27:45:36:04:f9:85:44:4a:fd:92:3e:42:aa: a4:2d:f2:23:6e:92:96:09:9f:01:98:d6:7b:d9:4f: f6:b5:82:0e:36:c7:b6:2e:82:15:8c:59:8b:33:c2: 97:96:33:00:b0:f7:c6:06:b1:23:0e:4f:69:33:dc: f7:bf:72:54:7d:1a:78:5a:25:23:fa:f5:34:3b:f7: 4a:62:ea:3b:c1:63:a8:74:94:10:57:b5:95:9a:c1: ef:8d:35:67:f2:18:5e:3e:9e:d2:9d:32:44:e8:3e: c7:4c:06:13:0b:58:48:d5:93:ae:2a:cf:c4:77:21: 5b:e6:23:6e:ee:88:81:16:bb:83:e9:a0:2d:fb:b0: 53:88:df:da:b7:a8:af:7c:d5:80:06:d8:e3:8e:8b: 71:44:00:d9:46:53:e8:ae:48:b0:aa:cd:ef:31:a0: 97:7a:4e:02:6f:a8:a5:57:b3:dc:e4:cd:57:78:f9: dc:da:14:7a:78:93:12:ab:a5:f5:ac:a4:4f:3f:d1: b6:f5:6a:b0:42:89:2f:85:7b:de:40:06:94:7d:f2: 4e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F4:76:92:9B:FD:91:EB:F2:56:6C:31:66:C9:AD:DB:99:C2:F2:F6 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/wfR2kpv9kevyVmwxZsmt25nC8vY.roa sbgp-ipAddrBlock: critical IPv4: 202.86.240.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:99:dd:c1:c1:2d:58:4e:49:37:4b:b3:53:2e:7a:f9:d5:5c: 20:5c:09:85:40:b1:4e:4c:73:48:44:48:28:8f:87:d5:ad:74: b3:5b:ab:8d:ed:74:3e:7d:bd:fa:7f:00:89:98:78:3d:d4:78: bb:a3:87:93:85:40:90:c5:97:d4:1d:6d:68:12:ec:38:be:1e: 47:00:ec:42:3f:bd:a5:13:60:4b:1b:91:bc:96:6d:06:cc:d9: ac:05:0c:7d:ed:15:bc:5e:f6:4a:04:bf:26:dc:61:02:ec:a9: 66:29:61:b5:98:49:d9:79:51:02:fa:27:de:e6:2e:92:a6:45: b2:19:04:77:b2:f8:e3:03:41:1c:56:51:53:4c:88:15:60:ec: 04:f9:d4:c7:fa:5c:ec:7a:17:a0:20:2c:7c:84:63:a7:12:e6: 26:be:d8:3b:49:c9:08:08:7a:63:41:18:49:05:16:c9:ab:92: d2:b5:97:6a:30:41:89:fe:12:6a:c5:38:28:84:42:6f:f0:51: 35:36:d0:9a:3b:23:79:b3:66:bc:c7:a4:26:c6:81:68:fa:f0: e1:ba:2b:1c:68:c1:0b:a4:ef:7d:1f:64:39:dc:bc:c7:69:5e: f1:89:6f:1b:4c:1e:59:7c:ee:a1:57:17:93:c0:66:a6:ee:93: c2:5d:bb:0b -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzNE RjlCMjRGNTNCQkNBQzM0N0JBNUI1QThDNDlCRkY0MTY2NkEyNjAeFw0yNjAzMzEw ODM3NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEMxRjQ3NjkyOUJGRDkx RUJGMjU2NkMzMTY2QzlBRERCOTlDMkYyRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD9jdbiRwj7PZzYPl7hte72bDIiK8VbnQliqpjwfAiHOVQ3Bmo 3kSbri4rBs2SJ0U2BPmFREr9kj5CqqQt8iNukpYJnwGY1nvZT/a1gg42x7YughWM WYszwpeWMwCw98YGsSMOT2kz3Pe/clR9GnhaJSP69TQ790pi6jvBY6h0lBBXtZWa we+NNWfyGF4+ntKdMkToPsdMBhMLWEjVk64qz8R3IVvmI27uiIEWu4PpoC37sFOI 39q3qK981YAG2OOOi3FEANlGU+iuSLCqze8xoJd6TgJvqKVXs9zkzVd4+dzaFHp4 kxKrpfWspE8/0bb1arBCiS+Fe95ABpR98k4dAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUwfR2kpv9kevyVmwxZsmt25nC8vYwHwYDVR0jBBgwFoAUM9+bJPU7vKw0e6W1 qMSb/0FmaiYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwODIyL005LWJKUFU3dkt3MGU2VzFxTVNiXzBGbWFpWS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL005LWJKUFU3dkt3MGU2VzFxTVNi XzBGbWFpWS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8xMDgyMi93ZlIya3B2OWtldnlWbXd4WnNtdDI1bkM4dlkucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDylbwMA0GCSqGSIb3DQEBCwUA A4IBAQAdmd3BwS1YTkk3S7NTLnr51VwgXAmFQLFOTHNIREgoj4fVrXSzW6uN7XQ+ fb36fwCJmHg91Hi7o4eThUCQxZfUHW1oEuw4vh5HAOxCP72lE2BLG5G8lm0GzNms BQx97RW8XvZKBL8m3GEC7KlmKWG1mEnZeVEC+ife5i6SpkWyGQR3svjjA0EcVlFT TIgVYOwE+dTH+lzsehegICx8hGOnEuYmvtg7SckICHpjQRhJBRbJq5LStZdqMEGJ /hJqxTgohEJv8FE1NtCaOyN5s2a8x6QmxoFo+vDhuiscaMELpO99H2Q53LzHaV7x iW8bTB5ZfO6hVxeTwGam7pPCXbsL -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:29 2026 by rpki-client