$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20034/2S9sgzBHZWg3Zt-OFP0L3gaQ1Xc.roa File: 2S9sgzBHZWg3Zt-OFP0L3gaQ1Xc.roa (raw, json) Hash identifier: In5FpqGjn8BnaeXXYEGuuKQkgPUmqgO7/hcNRBvmer4= Subject key identifier: D9:2F:6C:83:30:47:65:68:37:66:DF:8E:14:FD:0B:DE:06:90:D5:77 Certificate issuer: /CN=8D62A86EAB39FC40E319BE7346F22CC8F5B191A3 Certificate serial: 5C Authority key identifier: 8D:62:A8:6E:AB:39:FC:40:E3:19:BE:73:46:F2:2C:C8:F5:B1:91:A3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/2S9sgzBHZWg3Zt-OFP0L3gaQ1Xc.roa Signing time: Tue 31 Mar 2026 08:31:07 +0000 ROA not before: Tue 31 Mar 2026 08:31:07 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 131923 IP address blocks: 133.88.87.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D62A86EAB39FC40E319BE7346F22CC8F5B191A3 Validity Not Before: Mar 31 08:31:07 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D92F6C83304765683766DF8E14FD0BDE0690D577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:05:32:40:bd:71:48:fc:cd:0a:4c:26:e9:f1: 9d:e7:82:cc:b4:96:ac:a5:c2:31:92:26:e4:98:2a: 9b:69:99:9e:3b:85:cb:d9:01:97:a0:cc:98:98:23: 19:3d:b2:83:97:bd:91:ca:41:9b:7c:c6:c0:b6:73: 51:74:85:20:b7:90:f7:9a:83:27:1f:cb:c6:5c:ba: e7:64:11:56:6c:8c:e4:90:16:89:49:9f:44:d7:3c: b9:a8:59:4f:61:8e:c3:45:f3:ac:24:7b:63:34:bf: a7:91:11:f5:da:91:1e:8d:f9:96:a0:9e:eb:68:09: 88:fd:14:0e:66:5a:a0:40:3d:25:61:ca:53:09:76: 64:df:61:db:74:b7:63:12:7e:6b:3d:31:c8:1c:62: b5:6d:1f:2d:2b:be:a4:33:22:6e:83:9f:9a:4c:9b: 38:5f:be:f9:07:60:40:c3:e2:7f:56:3c:d1:97:89: e5:f9:34:52:f7:46:90:c1:4e:6a:d7:7b:e1:4d:60: 01:80:fb:a7:7e:8a:c2:ba:73:b0:34:b4:b6:b6:27: 2f:7e:12:07:44:19:59:b2:c7:c6:a1:fb:31:3f:c5: d7:94:bc:22:d0:27:b1:0f:f5:d1:61:68:f7:99:18: 68:8e:51:1d:f1:00:ce:76:b1:bd:ef:b3:9f:48:35: cd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:2F:6C:83:30:47:65:68:37:66:DF:8E:14:FD:0B:DE:06:90:D5:77 X509v3 Authority Key Identifier: keyid:8D:62:A8:6E:AB:39:FC:40:E3:19:BE:73:46:F2:2C:C8:F5:B1:91:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/2S9sgzBHZWg3Zt-OFP0L3gaQ1Xc.roa sbgp-ipAddrBlock: critical IPv4: 133.88.87.0/24 Signature Algorithm: sha256WithRSAEncryption 70:13:47:eb:c4:bb:3e:df:7b:fc:d9:ab:77:04:10:b0:ff:d8: 76:79:97:a9:27:48:b2:59:dd:28:92:71:31:17:7e:c3:62:ec: 65:ae:1e:c4:6a:43:2e:d4:9b:ce:41:ec:5f:65:ba:3c:cc:1e: 0b:21:77:1f:a5:03:47:bc:0d:8d:b8:b3:03:32:a2:95:e8:31: 3e:4c:a8:0a:52:32:9f:d1:08:5a:ca:1c:7c:f2:b9:7b:78:7b: 82:4e:1b:90:1a:4d:5d:62:9e:f4:4e:cb:ff:c3:0a:8c:1b:ff: ed:90:f2:43:38:e8:c1:93:49:11:15:9f:af:63:a6:01:2e:9b: a3:7a:f3:55:17:49:cb:e7:d7:a8:d9:15:ae:88:31:07:57:a6: d9:6f:20:2b:ec:e8:2b:ee:ef:54:bb:f4:d3:97:a4:19:59:2b: d9:e6:04:e0:5f:c2:df:9b:82:bb:ea:5b:a7:ca:c2:8b:0d:64: 45:d3:47:0e:e1:0d:7d:9b:a3:79:14:fe:96:85:2a:c0:47:57: 1a:1f:bc:26:fc:e0:66:0f:9e:66:13:d5:b6:63:b0:4f:f5:46: 63:48:14:0a:6b:46:dc:72:5f:ac:cf:54:2c:10:15:c1:5d:74: a2:1d:55:65:d7:e9:93:1e:11:0d:8a:f3:df:74:34:b6:bc:54: b0:d0:6e:77 -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDYy QTg2RUFCMzlGQzQwRTMxOUJFNzM0NkYyMkNDOEY1QjE5MUEzMB4XDTI2MDMzMTA4 MzEwN1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRDkyRjZDODMzMDQ3NjU2 ODM3NjZERjhFMTRGRDBCREUwNjkwRDU3NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKgFMkC9cUj8zQpMJunxneeCzLSWrKXCMZIm5Jgqm2mZnjuFy9kB l6DMmJgjGT2yg5e9kcpBm3zGwLZzUXSFILeQ95qDJx/Lxly652QRVmyM5JAWiUmf RNc8uahZT2GOw0XzrCR7YzS/p5ER9dqRHo35lqCe62gJiP0UDmZaoEA9JWHKUwl2 ZN9h23S3YxJ+az0xyBxitW0fLSu+pDMiboOfmkybOF+++QdgQMPif1Y80ZeJ5fk0 UvdGkMFOatd74U1gAYD7p36KwrpzsDS0trYnL34SB0QZWbLHxqH7MT/F15S8ItAn sQ/10WFo95kYaI5RHfEAznaxve+zn0g1zRkCAwEAAaOCAd0wggHZMB0GA1UdDgQW BBTZL2yDMEdlaDdm344U/QveBpDVdzAfBgNVHSMEGDAWgBSNYqhuqzn8QOMZvnNG 8izI9bGRozAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwMzQvaldLb2JxczVfRURqR2I1elJ2SXN5UFd4a2FNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaldLb2JxczVfRURqR2I1elJ2SXN5 UFd4a2FNLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIwMDM0LzJTOXNnekJIWldnM1p0LU9GUDBMM2dhUTFYYy5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACFWFcwDQYJKoZIhvcNAQELBQAD ggEBAHATR+vEuz7fe/zZq3cEELD/2HZ5l6knSLJZ3SiScTEXfsNi7GWuHsRqQy7U m85B7F9lujzMHgshdx+lA0e8DY24swMyopXoMT5MqApSMp/RCFrKHHzyuXt4e4JO G5AaTV1invROy//DCowb/+2Q8kM46MGTSREVn69jpgEum6N681UXScvn16jZFa6I MQdXptlvICvs6Cvu71S79NOXpBlZK9nmBOBfwt+bgrvqW6fKwosNZEXTRw7hDX2b o3kU/paFKsBHVxofvCb84GYPnmYT1bZjsE/1RmNIFAprRtxyX6zPVCwQFcFddKId VWXX6ZMeEQ2K8990NLa8VLDQbnc= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:10 2026 by rpki-client