$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1455/4cNgykdKQGPZdV-9xJF8R3wgd_w.roa File: 4cNgykdKQGPZdV-9xJF8R3wgd_w.roa (raw, json) Hash identifier: /co5y8h2wOX4SQMP38LPEuzxsRSdusskrRykLAvk6f8= Subject key identifier: E1:C3:60:CA:47:4A:40:63:D9:75:5F:BD:C4:91:7C:47:7C:20:77:FC Certificate issuer: /CN=20D7C331FBC35D08554D41BE2E9C3BF04B075FC9 Certificate serial: 16 Authority key identifier: 20:D7:C3:31:FB:C3:5D:08:55:4D:41:BE:2E:9C:3B:F0:4B:07:5F:C9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/INfDMfvDXQhVTUG-Lpw78EsHX8k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1455/4cNgykdKQGPZdV-9xJF8R3wgd_w.roa Signing time: Tue 31 Mar 2026 08:45:04 +0000 ROA not before: Tue 31 Mar 2026 08:45:04 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 0 IP address blocks: 139.154.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1455/INfDMfvDXQhVTUG-Lpw78EsHX8k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1455/INfDMfvDXQhVTUG-Lpw78EsHX8k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/INfDMfvDXQhVTUG-Lpw78EsHX8k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20D7C331FBC35D08554D41BE2E9C3BF04B075FC9 Validity Not Before: Mar 31 08:45:04 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E1C360CA474A4063D9755FBDC4917C477C2077FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:9f:a0:95:3f:63:d2:c1:e2:dd:1a:17:f0: 91:78:ff:a5:ba:f1:83:03:37:c9:42:3d:4e:13:7c: 46:db:76:e2:10:1d:6b:3e:a9:a8:ba:41:c3:e3:40: fb:d7:00:d0:e0:22:52:28:6d:18:1a:6b:8a:f1:b8: 90:fa:6b:03:ea:65:36:5b:eb:4f:29:67:52:42:1c: fa:c3:67:13:1b:8a:0d:f2:43:94:2e:6d:05:9f:06: 89:c7:57:85:24:15:ee:b9:0c:cc:9e:36:c3:5e:74: 8a:5d:73:59:56:89:68:e1:7d:ee:8e:e3:14:db:70: 05:5b:7d:5b:42:78:c1:8c:cd:a9:64:a3:d5:e9:a7: 8d:15:0a:52:08:64:cf:92:1f:23:bf:fc:0f:51:8f: 44:a1:ce:7f:7d:30:38:dc:64:6a:9d:46:09:a0:f5: cc:21:e3:27:7b:bc:a8:77:e2:7c:cc:96:fb:b8:41: b7:24:44:04:8a:01:c4:f4:fd:eb:d1:44:da:33:1b: a3:4d:2b:3b:da:2d:40:d2:78:c3:b9:9c:20:cf:9a: 54:7d:8d:6b:2a:3c:41:34:7f:81:41:2b:34:79:4f: 9f:28:e2:4e:d7:09:e2:50:a4:01:1b:ed:fa:d8:9a: bf:7b:6c:c2:77:ca:90:9a:c9:b7:12:f0:cc:20:95: 74:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C3:60:CA:47:4A:40:63:D9:75:5F:BD:C4:91:7C:47:7C:20:77:FC X509v3 Authority Key Identifier: keyid:20:D7:C3:31:FB:C3:5D:08:55:4D:41:BE:2E:9C:3B:F0:4B:07:5F:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1455/INfDMfvDXQhVTUG-Lpw78EsHX8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/INfDMfvDXQhVTUG-Lpw78EsHX8k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1455/4cNgykdKQGPZdV-9xJF8R3wgd_w.roa sbgp-ipAddrBlock: critical IPv4: 139.154.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:a5:3e:1c:93:ab:99:9e:6d:c8:01:eb:a1:03:df:7a:9f:5b: f3:8e:92:aa:88:ba:f3:6d:a5:b1:6a:63:aa:20:cb:c5:1b:1c: 17:1c:9a:59:f1:86:03:68:3d:93:c1:ce:51:8d:e0:0a:6c:8c: 34:11:cd:75:b8:95:dc:86:25:c6:9b:ee:ed:6d:13:a7:38:aa: 81:15:9f:63:e1:33:f9:6c:da:84:51:43:19:9b:be:f5:c7:2a: 83:b4:3e:2a:9d:23:dc:35:37:99:68:c9:af:fe:2d:8b:fe:14: 7e:f1:18:8a:eb:64:6d:bf:ac:b8:97:54:e1:cc:13:ef:77:ad: 7d:d9:5f:e1:11:5a:a0:05:fa:1b:d2:8b:54:f7:c8:be:ea:ae: cc:e1:d1:d0:a2:ae:13:83:88:23:44:96:a3:e3:fb:d0:5f:da: f7:6e:3a:03:f0:62:d0:24:06:26:61:56:2c:0a:90:04:8c:1b: a3:28:c4:69:30:86:2a:5c:68:c1:e8:7d:fe:14:45:e8:cb:67: 8a:f5:ad:2c:e1:1d:36:2a:0a:2b:1d:5d:e0:8f:b1:fd:9c:b0: ea:66:49:e9:ce:ab:6d:91:d7:b0:da:a0:50:72:a6:d5:fe:57: 26:81:76:87:0b:6e:f5:38:c4:91:2e:8a:52:12:ea:a2:5c:4f: 6e:00:70:50 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgIBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMEQ3 QzMzMUZCQzM1RDA4NTU0RDQxQkUyRTlDM0JGMDRCMDc1RkM5MB4XDTI2MDMzMTA4 NDUwNFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRTFDMzYwQ0E0NzRBNDA2 M0Q5NzU1RkJEQzQ5MTdDNDc3QzIwNzdGQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMCyn6CVP2PSweLdGhfwkXj/pbrxgwM3yUI9ThN8Rtt24hAdaz6p qLpBw+NA+9cA0OAiUihtGBprivG4kPprA+plNlvrTylnUkIc+sNnExuKDfJDlC5t BZ8GicdXhSQV7rkMzJ42w150il1zWVaJaOF97o7jFNtwBVt9W0J4wYzNqWSj1emn jRUKUghkz5IfI7/8D1GPRKHOf30wONxkap1GCaD1zCHjJ3u8qHfifMyW+7hBtyRE BIoBxPT969FE2jMbo00rO9otQNJ4w7mcIM+aVH2Nayo8QTR/gUErNHlPnyjiTtcJ 4lCkARvt+tiav3tswnfKkJrJtxLwzCCVdNECAwEAAaOCAdowggHWMB0GA1UdDgQW BBThw2DKR0pAY9l1X73EkXxHfCB3/DAfBgNVHSMEGDAWgBQg18Mx+8NdCFVNQb4u nDvwSwdfyTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTQ1NS9JTmZETWZ2RFhRaFZUVUctTHB3NzhFc0hYOGsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9JTmZETWZ2RFhRaFZUVUctTHB3NzhF c0hYOGsuY2VyMA4GA1UdDwEB/wQEAwIHgDByBggrBgEFBQcBCwRmMGQwYgYIKwYB BQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTQ1NS80Y05neWtkS1FHUFpkVi05eEpGOFIzd2dkX3cucm9hMB4G CCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAi5owDQYJKoZIhvcNAQELBQADggEB ABOlPhyTq5mebcgB66ED33qfW/OOkqqIuvNtpbFqY6ogy8UbHBccmlnxhgNoPZPB zlGN4ApsjDQRzXW4ldyGJcab7u1tE6c4qoEVn2PhM/ls2oRRQxmbvvXHKoO0Piqd I9w1N5loya/+LYv+FH7xGIrrZG2/rLiXVOHME+93rX3ZX+ERWqAF+hvSi1T3yL7q rszh0dCirhODiCNElqPj+9Bf2vduOgPwYtAkBiZhViwKkASMG6MoxGkwhipcaMHo ff4URejLZ4r1rSzhHTYqCisdXeCPsf2csOpmSenOq22R17DaoFByptX+VyaBdocL bvU4xJEuilIS6qJcT24AcFA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:40:08 2026 by rpki-client