$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20075/D-qP--gif6eElKDimUadLZh4jKQ.roa File: D-qP--gif6eElKDimUadLZh4jKQ.roa (raw, json) Hash identifier: L6h2avp0PhQCDjIG4q8LHCX/82rUBprHe/shOB3GN4Y= Subject key identifier: 0F:EA:8F:FB:E8:22:7F:A7:84:94:A0:E2:99:46:9D:2D:98:78:8C:A4 Certificate issuer: /CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Certificate serial: 4D Authority key identifier: B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/D-qP--gif6eElKDimUadLZh4jKQ.roa Signing time: Tue 31 Mar 2026 07:49:43 +0000 ROA not before: Tue 31 Mar 2026 07:49:43 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 0 IP address blocks: 133.88.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Validity Not Before: Mar 31 07:49:43 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0FEA8FFBE8227FA78494A0E299469D2D98788CA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:66:70:d7:f0:6d:cb:d9:85:98:ce:fe:5a:86: f5:69:89:97:8f:1e:02:78:17:ac:54:ce:c9:87:d4: 07:12:ef:71:8b:92:86:2b:6d:02:ce:ca:8f:ae:2e: e9:51:eb:2c:33:ac:4e:a9:7c:04:d6:2a:fd:d5:10: 87:2d:39:d8:75:7b:b7:44:db:13:23:0a:70:f9:a2: 22:e5:5a:aa:58:8b:c5:40:31:69:ba:ca:c1:6c:f2: f9:67:4f:df:b2:95:7d:b9:ba:c9:e1:a2:bb:fa:9f: 42:25:17:83:03:ec:b2:dd:c4:99:ad:ad:09:94:e8: a8:3d:76:c6:c2:72:bb:20:34:b0:dc:f1:0d:42:3e: 23:47:53:05:e3:ef:b1:96:8d:0f:97:32:7e:ec:ae: 68:f5:19:cb:3a:8a:05:3a:4e:0e:a0:24:00:51:8f: 7c:4d:f6:95:10:66:78:57:e4:af:7e:62:e5:45:58: b7:5b:e6:a8:a9:2e:bd:a3:97:34:9f:47:dd:0a:11: 66:2f:d3:6e:32:e9:a9:ac:6e:a1:63:ef:5e:28:7f: 82:47:45:fe:3e:46:01:83:71:10:af:c2:bc:3e:a8: 4b:e8:96:dd:50:ac:0d:7f:a5:71:c6:a4:b7:79:90: d8:a4:0f:3b:3d:4b:4a:78:02:e1:76:52:2d:43:db: df:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:EA:8F:FB:E8:22:7F:A7:84:94:A0:E2:99:46:9D:2D:98:78:8C:A4 X509v3 Authority Key Identifier: keyid:B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/D-qP--gif6eElKDimUadLZh4jKQ.roa sbgp-ipAddrBlock: critical IPv4: 133.88.24.0/22 Signature Algorithm: sha256WithRSAEncryption af:cc:62:26:80:bc:fa:60:cc:18:e0:e7:84:9f:43:66:82:c4: 26:1c:80:1e:21:e9:8b:1e:0f:59:ec:5f:60:f9:20:f7:94:4e: aa:cb:a6:ed:ad:e6:2e:07:f5:03:75:5f:d9:5e:4a:54:ec:6b: 13:0a:d8:fa:45:90:96:f6:52:7d:61:1c:b5:89:a4:bc:27:8c: 9b:f4:09:5f:e3:b6:6b:2d:2d:f0:e9:c2:eb:ce:d2:47:68:02: 19:bb:c1:c3:d0:7d:8b:5e:a0:d6:8d:7a:c2:d2:e0:43:63:85: d8:c2:1a:b5:b5:0b:0b:2d:22:1e:60:34:0f:4b:a0:c5:4d:2a: 49:6b:c7:ae:5e:d0:d1:ed:71:40:15:22:50:df:f5:c8:45:b2: d4:0d:46:8f:64:a8:46:45:28:bb:ef:7d:69:36:87:85:e5:5d: 37:35:5b:32:83:50:c0:d9:ca:37:17:ff:38:07:4d:76:77:f0: 95:f0:77:3e:d1:08:c9:a6:a7:77:c0:0a:2d:c8:69:ab:ff:18: 11:55:1b:2c:77:47:b4:6d:b2:45:2a:be:cb:03:46:67:de:63: 96:a1:2b:a3:5a:3f:df:6b:f1:87:11:99:36:0f:e6:61:13:c9: 7c:81:79:6e:ff:64:67:37:b9:b3:2b:30:06:67:78:ef:10:e0: 0b:0b:49:02 -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEQw N0E1QTAyQjFCNDU5OTNFNkNBRUZCNDdEMUQ1RTc1REExOTNDMB4XDTI2MDMzMTA3 NDk0M1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMEZFQThGRkJFODIyN0ZB Nzg0OTRBMEUyOTk0NjlEMkQ5ODc4OENBNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALtmcNfwbcvZhZjO/lqG9WmJl48eAngXrFTOyYfUBxLvcYuShitt As7Kj64u6VHrLDOsTql8BNYq/dUQhy052HV7t0TbEyMKcPmiIuVaqliLxUAxabrK wWzy+WdP37KVfbm6yeGiu/qfQiUXgwPsst3Ema2tCZToqD12xsJyuyA0sNzxDUI+ I0dTBePvsZaND5cyfuyuaPUZyzqKBTpODqAkAFGPfE32lRBmeFfkr35i5UVYt1vm qKkuvaOXNJ9H3QoRZi/TbjLpqaxuoWPvXih/gkdF/j5GAYNxEK/CvD6oS+iW3VCs DX+lccakt3mQ2KQPOz1LSngC4XZSLUPb3y0CAwEAAaOCAd0wggHZMB0GA1UdDgQW BBQP6o/76CJ/p4SUoOKZRp0tmHiMpDAfBgNVHSMEGDAWgBS40HpaArG0WZPmyu+0 fR1eddoZPDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzUvdU5CNldnS3h0Rm1UNXNydnRIMGRYblhhR1R3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdU5CNldnS3h0Rm1UNXNydnRIMGRY blhhR1R3LmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIwMDc1L0QtcVAtLWdpZjZlRWxLRGltVWFkTFpoNGpLUS5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKFWBgwDQYJKoZIhvcNAQELBQAD ggEBAK/MYiaAvPpgzBjg54SfQ2aCxCYcgB4h6YseD1nsX2D5IPeUTqrLpu2t5i4H 9QN1X9leSlTsaxMK2PpFkJb2Un1hHLWJpLwnjJv0CV/jtmstLfDpwuvO0kdoAhm7 wcPQfYteoNaNesLS4ENjhdjCGrW1CwstIh5gNA9LoMVNKklrx65e0NHtcUAVIlDf 9chFstQNRo9kqEZFKLvvfWk2h4XlXTc1WzKDUMDZyjcX/zgHTXZ38JXwdz7RCMmm p3fACi3Iaav/GBFVGyx3R7RtskUqvssDRmfeY5ahK6NaP99r8YcRmTYP5mETyXyB eW7/ZGc3ubMrMAZneO8Q4AsLSQI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:40:10 2026 by rpki-client