$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/UmQxapuk5AXF7yQxGq3_Ukh92pA.roa File: UmQxapuk5AXF7yQxGq3_Ukh92pA.roa (raw, json) Hash identifier: K31ujL0krohtMGXXdlKSp7Uf0jbLlzk05PNbYmcLv/8= Subject key identifier: 52:64:31:6A:9B:A4:E4:05:C5:EF:24:31:1A:AD:FF:52:48:7D:DA:90 Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Certificate serial: 7A Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/UmQxapuk5AXF7yQxGq3_Ukh92pA.roa Signing time: Tue 31 Mar 2026 07:52:01 +0000 ROA not before: Tue 31 Mar 2026 07:52:01 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 63789 IP address blocks: 202.9.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Validity Not Before: Mar 31 07:52:01 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5264316A9BA4E405C5EF24311AADFF52487DDA90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:55:ec:f8:98:1f:92:ba:90:36:35:e8:d5:95: e7:fd:56:e9:73:0a:77:b9:95:4a:6a:1d:85:02:a6: 27:f3:ee:06:53:75:c0:14:77:d3:04:d9:62:47:4c: 1d:50:a1:55:15:16:b8:a0:1c:46:2d:ce:b4:a1:60: e7:8d:d1:f6:ca:2b:01:a6:f3:e0:63:b1:90:3b:8b: db:56:e2:6e:fb:55:e2:7c:04:7f:74:6b:b0:0a:96: 33:51:04:6f:b4:c5:96:b2:1f:66:84:91:e6:a9:49: e8:7c:60:37:8f:02:16:31:f7:59:cd:0d:c6:42:69: 6a:8c:41:53:72:99:86:02:82:9d:7d:40:51:3b:bd: 59:6e:43:de:d3:0c:9a:f5:ce:b6:63:d3:2c:fb:5a: 8c:7e:8c:b0:4a:58:4f:28:e0:fb:4c:1a:d2:92:dc: 9a:02:b0:e0:28:04:d9:81:a9:c4:58:28:31:f4:ff: 99:a1:54:82:cd:be:b7:f1:48:54:18:65:01:9a:5b: 1e:ca:74:77:4b:fd:df:86:8f:99:fc:3d:04:89:e8: 31:b7:9b:30:e8:33:d3:d6:ca:48:09:b8:cd:7d:b9: 3b:8c:ed:16:78:5f:50:b3:34:79:cf:85:02:10:bd: 1c:5c:12:23:82:20:a8:17:22:81:bd:24:21:83:00: 3d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:64:31:6A:9B:A4:E4:05:C5:EF:24:31:1A:AD:FF:52:48:7D:DA:90 X509v3 Authority Key Identifier: keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/UmQxapuk5AXF7yQxGq3_Ukh92pA.roa sbgp-ipAddrBlock: critical IPv4: 202.9.208.0/22 Signature Algorithm: sha256WithRSAEncryption 70:c0:b0:ff:65:c3:c5:46:3f:4d:bb:e3:ce:8f:bf:56:79:af: 56:58:3a:76:2c:46:56:de:51:34:7e:6e:57:81:59:4c:2a:c8: d1:a9:41:87:c6:56:c7:a2:c4:cc:6b:ab:ba:6c:9e:a3:f3:63: 1e:0c:db:d0:f2:65:6f:c6:ce:68:98:39:f5:90:86:1c:0c:a0: 2f:ae:e4:04:0f:fe:a8:bc:4a:0c:cb:1b:4d:eb:2d:04:ef:c7: c8:a2:17:6b:96:8e:ac:5b:fa:20:cc:17:7e:5d:9b:e6:b8:fa: 83:39:5d:fd:dd:95:8a:a5:fb:37:86:0c:25:a6:8c:6f:e7:07: 12:69:6d:f5:68:3b:fe:8e:45:17:db:15:8e:18:02:17:2a:1c: 9d:a0:25:bb:c8:e2:ac:26:7b:bb:8b:ab:07:23:08:38:94:ea: 44:c6:43:11:66:1a:6c:7e:14:d9:35:fd:20:51:ee:46:07:c4: 33:a3:f6:07:fa:b5:78:93:bf:8e:5f:88:59:db:04:65:fe:eb: 97:d6:5b:e1:fd:91:ad:26:86:b8:b1:79:cd:87:e1:05:f4:96: 95:7b:0f:30:b8:22:53:d6:62:9d:dc:a6:da:45:14:50:e0:e0: 5a:67:f7:6c:27:c0:2b:34:5e:6d:73:46:e9:b6:29:68:96:e8: 53:e7:93:93 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTI2MDMzMTA3 NTIwMVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNTI2NDMxNkE5QkE0RTQw NUM1RUYyNDMxMUFBREZGNTI0ODdEREE5MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMxV7PiYH5K6kDY16NWV5/1W6XMKd7mVSmodhQKmJ/PuBlN1wBR3 0wTZYkdMHVChVRUWuKAcRi3OtKFg543R9sorAabz4GOxkDuL21bibvtV4nwEf3Rr sAqWM1EEb7TFlrIfZoSR5qlJ6HxgN48CFjH3Wc0NxkJpaoxBU3KZhgKCnX1AUTu9 WW5D3tMMmvXOtmPTLPtajH6MsEpYTyjg+0wa0pLcmgKw4CgE2YGpxFgoMfT/maFU gs2+t/FIVBhlAZpbHsp0d0v934aPmfw9BInoMbebMOgz09bKSAm4zX25O4ztFnhf ULM0ec+FAhC9HFwSI4IgqBcigb0kIYMAPTUCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBRSZDFqm6TkBcXvJDEarf9SSH3akDAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1 i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3 ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOTkvVW1ReGFwdWs1QVhGN3lReEdxM19Va2g5MnBBLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsoJ0DANBgkqhkiG9w0BAQsFAAOCAQEA cMCw/2XDxUY/Tbvjzo+/VnmvVlg6dixGVt5RNH5uV4FZTCrI0alBh8ZWx6LEzGur umyeo/NjHgzb0PJlb8bOaJg59ZCGHAygL67kBA/+qLxKDMsbTestBO/HyKIXa5aO rFv6IMwXfl2b5rj6gzld/d2ViqX7N4YMJaaMb+cHEmlt9Wg7/o5FF9sVjhgCFyoc naAlu8jirCZ7u4urByMIOJTqRMZDEWYabH4U2TX9IFHuRgfEM6P2B/q1eJO/jl+I WdsEZf7rl9Zb4f2RrSaGuLF5zYfhBfSWlXsPMLgiU9Zindym2kUUUODgWmf3bCfA KzRebXNG6bYpaJboU+eTkw== -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:03 2026 by rpki-client