$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30003/Kms8pr66nkgKu5Z9l8zM5FM0Huw.roa File: Kms8pr66nkgKu5Z9l8zM5FM0Huw.roa (raw, json) Hash identifier: annDLQgl/S2MhX50+30B3eitftoyqpLEJeQywKzYyM8= Subject key identifier: 2A:6B:3C:A6:BE:BA:9E:48:0A:BB:96:7D:97:CC:CC:E4:53:34:1E:EC Certificate issuer: /CN=EA6B49B0752AD3BE3DD683B8AEEA2205F5AFD279 Certificate serial: 75 Authority key identifier: EA:6B:49:B0:75:2A:D3:BE:3D:D6:83:B8:AE:EA:22:05:F5:AF:D2:79 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6mtJsHUq07491oO4ruoiBfWv0nk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/Kms8pr66nkgKu5Z9l8zM5FM0Huw.roa Signing time: Tue 31 Mar 2026 07:29:44 +0000 ROA not before: Tue 31 Mar 2026 07:29:44 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 0 IP address blocks: 2001:7fa:7::/48 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/6mtJsHUq07491oO4ruoiBfWv0nk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/6mtJsHUq07491oO4ruoiBfWv0nk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6mtJsHUq07491oO4ruoiBfWv0nk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 14:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EA6B49B0752AD3BE3DD683B8AEEA2205F5AFD279 Validity Not Before: Mar 31 07:29:44 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2A6B3CA6BEBA9E480ABB967D97CCCCE453341EEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:da:7c:77:67:62:15:a0:82:69:ab:5b:9a:c2: 84:98:f3:fa:f0:54:e4:12:ab:d3:86:e2:aa:55:56: 5c:38:96:99:f1:11:67:eb:59:0e:1f:4b:7a:f6:c7: 96:8e:52:70:99:d2:13:88:1f:24:b8:88:3e:d4:f0: e8:02:9d:8d:45:46:5d:9d:19:03:15:26:d5:d5:fe: fb:cb:2c:26:7e:5b:42:1f:11:54:e1:a0:a7:12:bc: c4:8c:59:6a:e7:ba:c5:08:9a:d3:a1:5e:e7:ca:d8: 90:c7:84:66:4d:e0:67:d5:2e:c2:9d:46:ae:92:d6: 21:11:46:12:57:cb:f7:6a:2b:95:6d:07:0d:00:2b: 42:0f:8b:65:f7:4a:2e:cb:8b:2c:c5:aa:54:0f:d8: 3e:cb:7b:37:42:0a:70:e4:1d:4e:5e:8b:e2:1e:aa: b0:8b:c4:76:b4:d5:2c:10:40:d4:0a:ea:3e:1f:a0: fa:b0:bd:a6:dd:2f:2a:f6:78:0b:df:27:b4:b6:1d: aa:33:a2:31:15:46:2f:19:87:bb:f2:fc:f5:30:b5: 94:b8:10:71:e6:bd:17:96:cd:36:29:20:a3:08:c5: 59:9c:a6:90:ef:0d:c5:05:d1:35:0c:fa:34:09:5b: 81:e6:9b:1f:d0:5a:82:b5:d9:dd:39:f7:f7:f9:de: e6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6B:3C:A6:BE:BA:9E:48:0A:BB:96:7D:97:CC:CC:E4:53:34:1E:EC X509v3 Authority Key Identifier: keyid:EA:6B:49:B0:75:2A:D3:BE:3D:D6:83:B8:AE:EA:22:05:F5:AF:D2:79 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/6mtJsHUq07491oO4ruoiBfWv0nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6mtJsHUq07491oO4ruoiBfWv0nk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/Kms8pr66nkgKu5Z9l8zM5FM0Huw.roa sbgp-ipAddrBlock: critical IPv6: 2001:7fa:7::/48 Signature Algorithm: sha256WithRSAEncryption 9c:83:11:0b:be:15:15:f7:b6:86:b3:c1:21:32:65:15:b1:b5: 24:53:01:1a:1c:5d:95:71:e4:54:5e:44:f8:3d:05:fc:24:ee: 5d:60:dc:c4:bf:81:51:f9:4a:00:c1:3b:df:1b:fc:4e:37:f4: 28:f0:27:d4:6b:6e:57:34:b3:29:5d:8b:e0:7c:95:dd:82:b6: 11:bd:29:79:9c:b2:be:57:71:1a:2a:6e:35:38:12:4a:33:7f: ac:dc:41:3a:b2:4f:a7:97:c0:45:c6:c1:a4:67:9c:f8:9e:81: 8e:cc:23:c5:15:8d:80:88:9d:c8:16:fb:59:69:36:cb:16:1b: bf:28:f1:15:92:51:0d:a2:aa:32:c2:ad:ea:0c:20:89:88:33: 5e:e1:37:50:be:70:14:fa:71:26:f0:c4:9a:b3:7a:33:fa:21: dd:f0:7b:da:63:0b:99:ac:96:cd:39:4b:a9:5d:6c:bc:d5:e2: a2:64:f1:13:83:b5:b5:02:88:fd:88:78:cf:58:f2:32:a2:db: e1:c0:63:4b:a4:d3:16:d2:85:ee:13:93:99:44:2b:a3:cd:ae: e7:bd:59:65:fd:8f:dc:33:13:42:52:46:b1:10:68:65:93:8c: f9:69:66:49:34:5f:75:4f:02:b9:cd:18:b2:9e:50:94:31:f3: f1:29:fd:e4 -----BEGIN CERTIFICATE----- MIIEwzCCA6ugAwIBAgIBdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFQTZC NDlCMDc1MkFEM0JFM0RENjgzQjhBRUVBMjIwNUY1QUZEMjc5MB4XDTI2MDMzMTA3 Mjk0NFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMkE2QjNDQTZCRUJBOUU0 ODBBQkI5NjdEOTdDQ0NDRTQ1MzM0MUVFQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMvafHdnYhWggmmrW5rChJjz+vBU5BKr04biqlVWXDiWmfERZ+tZ Dh9LevbHlo5ScJnSE4gfJLiIPtTw6AKdjUVGXZ0ZAxUm1dX++8ssJn5bQh8RVOGg pxK8xIxZaue6xQia06Fe58rYkMeEZk3gZ9Uuwp1GrpLWIRFGElfL92orlW0HDQAr Qg+LZfdKLsuLLMWqVA/YPst7N0IKcOQdTl6L4h6qsIvEdrTVLBBA1ArqPh+g+rC9 pt0vKvZ4C98ntLYdqjOiMRVGLxmHu/L89TC1lLgQcea9F5bNNikgowjFWZymkO8N xQXRNQz6NAlbgeabH9BagrXZ3Tn39/ne5rkCAwEAAaOCAeAwggHcMB0GA1UdDgQW BBQqazymvrqeSAq7ln2XzMzkUzQe7DAfBgNVHSMEGDAWgBTqa0mwdSrTvj3Wg7iu 6iIF9a/SeTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwMDMvNm10SnNIVXEwNzQ5MW9PNHJ1b2lCZld2MG5rLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvNm10SnNIVXEwNzQ5MW9PNHJ1b2lC Zld2MG5rLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMwMDAzL0ttczhwcjY2bmtnS3U1WjlsOHpNNUZNMEh1dy5yb2Ew IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQf6AAcwDQYJKoZIhvcNAQEL BQADggEBAJyDEQu+FRX3toazwSEyZRWxtSRTARocXZVx5FReRPg9Bfwk7l1g3MS/ gVH5SgDBO98b/E439CjwJ9Rrblc0syldi+B8ld2CthG9KXmcsr5XcRoqbjU4Ekoz f6zcQTqyT6eXwEXGwaRnnPiegY7MI8UVjYCIncgW+1lpNssWG78o8RWSUQ2iqjLC reoMIImIM17hN1C+cBT6cSbwxJqzejP6Id3we9pjC5msls05S6ldbLzV4qJk8ROD tbUCiP2IeM9Y8jKi2+HAY0uk0xbShe4Tk5lEK6PNrue9WWX9j9wzE0JSRrEQaGWT jPlpZkk0X3VPArnNGLKeUJQx8/Ep/eQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:39:47 2026 by rpki-client