$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/HGDetIblT86OgnhVxRnZok4fthM.roa File: HGDetIblT86OgnhVxRnZok4fthM.roa (raw, json) Hash identifier: Vb3/3itI+0YPq5yPLUc313GjAdq7B0CuOostho7y+LM= Subject key identifier: 1C:60:DE:B4:86:E5:4F:CE:8E:82:78:55:C5:19:D9:A2:4E:1F:B6:13 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0272 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/HGDetIblT86OgnhVxRnZok4fthM.roa Signing time: Tue 31 Mar 2026 07:33:27 +0000 ROA not before: Tue 31 Mar 2026 07:33:27 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4713 IP address blocks: 211.130.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 07:33:27 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1C60DEB486E54FCE8E827855C519D9A24E1FB613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d6:d1:2f:f1:69:dd:4d:d7:9b:2c:17:01:8f: 3c:71:30:08:08:98:22:59:57:d7:57:98:fc:7a:d8: cc:52:4e:3e:a7:34:77:0a:7a:92:dc:68:68:32:13: 74:5a:30:20:12:3c:2b:e9:bf:4b:6f:b0:a4:e6:ba: 5d:fc:d8:61:20:f5:5d:33:e1:8c:3d:96:91:e6:5b: 3b:64:53:89:8b:85:b9:fe:d6:d1:45:f5:7e:23:2e: db:1b:d1:ad:3d:35:70:01:ac:47:13:64:b6:a2:54: 27:04:aa:b4:ef:df:0f:6a:d3:4a:7a:4d:56:29:fa: 91:24:0d:2e:4f:20:74:89:f9:45:81:ac:ae:84:bc: c9:58:96:5b:a2:45:7b:c1:59:20:0d:d1:74:01:83: c2:61:e3:ae:a2:3b:2b:54:29:5b:74:c1:10:3f:7c: 13:56:11:c3:61:da:f2:87:98:49:59:41:9b:2a:76: 78:71:6a:82:5b:75:8a:71:15:d7:b2:ba:ea:ac:e0: 73:f1:76:38:42:66:38:93:0e:4c:58:f9:d3:4f:ab: 51:8b:e6:46:4a:ce:03:f6:a3:94:50:1b:e4:28:2e: df:fa:d8:85:7f:7b:3b:8f:c4:b2:13:0f:33:20:0c: 2e:09:e1:a1:5d:fd:86:52:e8:64:50:6f:9f:1e:b0: b0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:60:DE:B4:86:E5:4F:CE:8E:82:78:55:C5:19:D9:A2:4E:1F:B6:13 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/HGDetIblT86OgnhVxRnZok4fthM.roa sbgp-ipAddrBlock: critical IPv4: 211.130.128.0/17 Signature Algorithm: sha256WithRSAEncryption d4:20:88:90:f1:1e:ec:87:63:91:d1:9b:f0:5b:e6:e1:18:dc: 17:59:b8:b2:66:92:9e:3b:36:6d:41:a6:72:22:d5:f9:af:a7: a1:f5:42:8a:d9:bb:83:4c:9f:d8:f0:ba:a9:a0:d9:ae:3f:6c: 3c:95:1e:8d:a9:67:a2:4b:06:9d:41:51:50:c8:41:ca:d1:d0: 03:df:e4:a1:17:b4:61:25:e1:6e:49:a6:24:6d:b3:47:03:2d: 25:c6:a5:d7:fd:61:7c:be:f2:53:d2:3e:f6:f0:09:52:fe:13: 6e:70:ed:cb:de:4b:aa:d2:cc:24:fd:8a:14:9a:b9:82:16:05: 76:10:35:8f:27:a2:e8:ee:d7:37:ab:01:ed:45:15:46:18:5b: 32:ed:00:da:92:6e:3a:89:20:26:57:9f:0c:14:b2:f2:ec:cb: 0e:04:88:33:7d:cb:f2:ae:11:ec:e4:4b:c9:db:24:15:84:79: 78:b2:ca:f1:6d:78:25:4b:0d:57:20:e0:8a:e2:6d:8f:91:66: a6:5c:59:e6:4b:15:c9:97:c9:64:c5:f6:af:e2:3a:f8:9c:33: bf:bf:fe:3e:7b:cc:19:31:70:0f:73:ee:3f:17:9c:8e:9f:9c: f4:67:35:8a:cd:5f:bb:5f:48:8f:53:0b:79:d3:32:2d:8b:18: a0:85:3a:4d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNjAzMzEw NzMzMjdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFDNjBERUI0ODZFNTRG Q0U4RTgyNzg1NUM1MTlEOUEyNEUxRkI2MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC71tEv8WndTdebLBcBjzxxMAgImCJZV9dXmPx62MxSTj6nNHcK epLcaGgyE3RaMCASPCvpv0tvsKTmul382GEg9V0z4Yw9lpHmWztkU4mLhbn+1tFF 9X4jLtsb0a09NXABrEcTZLaiVCcEqrTv3w9q00p6TVYp+pEkDS5PIHSJ+UWBrK6E vMlYlluiRXvBWSAN0XQBg8Jh466iOytUKVt0wRA/fBNWEcNh2vKHmElZQZsqdnhx aoJbdYpxFdeyuuqs4HPxdjhCZjiTDkxY+dNPq1GL5kZKzgP2o5RQG+QoLt/62IV/ ezuPxLITDzMgDC4J4aFd/YZS6GRQb58esLApAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUHGDetIblT86OgnhVxRnZok4fthMwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTMxL0hHRGV0SWJsVDg2T2duaFZ4Um5ab2s0ZnRoTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfTgoAwDQYJKoZIhvcNAQELBQADggEB ANQgiJDxHuyHY5HRm/Bb5uEY3BdZuLJmkp47Nm1BpnIi1fmvp6H1QorZu4NMn9jw uqmg2a4/bDyVHo2pZ6JLBp1BUVDIQcrR0APf5KEXtGEl4W5JpiRts0cDLSXGpdf9 YXy+8lPSPvbwCVL+E25w7cveS6rSzCT9ihSauYIWBXYQNY8nouju1zerAe1FFUYY WzLtANqSbjqJICZXnwwUsvLsyw4EiDN9y/KuEezkS8nbJBWEeXiyyvFteCVLDVcg 4IribY+RZqZcWeZLFcmXyWTF9q/iOvicM7+//j57zBkxcA9z7j8XnI6fnPRnNYrN X7tfSI9TC3nTMi2LGKCFOk0= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:56 2026 by rpki-client