$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30380/Xq2Ovg6CF6AwXZfU8NaxB8SZDIQ.roa File: Xq2Ovg6CF6AwXZfU8NaxB8SZDIQ.roa (raw, json) Hash identifier: KBgwpHOMaAgUmQL3lcXaT0eui2Q0XKCMZIfQICzYpPo= Subject key identifier: 5E:AD:8E:BE:0E:82:17:A0:30:5D:97:D4:F0:D6:B1:07:C4:99:0C:84 Certificate issuer: /CN=1FDAA792A5FE0213BC4AC64EDF21DF2EAC40EB0E Certificate serial: 25 Authority key identifier: 1F:DA:A7:92:A5:FE:02:13:BC:4A:C6:4E:DF:21:DF:2E:AC:40:EB:0E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/H9qnkqX-AhO8SsZO3yHfLqxA6w4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30380/Xq2Ovg6CF6AwXZfU8NaxB8SZDIQ.roa Signing time: Tue 31 Mar 2026 08:41:56 +0000 ROA not before: Tue 31 Mar 2026 08:41:56 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 14618 IP address blocks: 2407:a6c0::/32 maxlen: 56 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30380/H9qnkqX-AhO8SsZO3yHfLqxA6w4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30380/H9qnkqX-AhO8SsZO3yHfLqxA6w4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/H9qnkqX-AhO8SsZO3yHfLqxA6w4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 07:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FDAA792A5FE0213BC4AC64EDF21DF2EAC40EB0E Validity Not Before: Mar 31 08:41:56 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5EAD8EBE0E8217A0305D97D4F0D6B107C4990C84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a6:86:c3:51:27:72:4a:ab:3a:52:10:e1:ba: 85:e0:36:c2:44:06:9c:25:0a:3e:86:ce:4a:8a:f7: 52:ef:38:50:5a:af:f7:e0:1b:2e:b5:aa:04:b2:67: 59:ea:af:fc:60:e6:19:52:eb:28:42:92:d8:b8:2e: d5:5b:0e:d2:08:90:8f:d1:18:30:7c:2f:37:62:88: f3:8b:93:ea:9f:37:2a:0b:b8:0a:28:0b:03:80:30: cc:7d:26:19:23:76:9f:a9:8e:b4:a9:88:e1:38:a9: a8:e1:c3:d9:8a:23:d9:32:8a:e8:1b:cd:71:97:aa: 26:8c:e5:c8:cd:41:ef:65:82:26:a3:80:1e:57:96: f3:d5:9a:95:00:db:56:06:da:d2:53:78:d8:ec:e1: 1b:3b:34:f3:7f:dc:bf:59:89:4c:bc:bb:7c:9d:a2: 23:3d:36:05:ab:c5:bb:7b:eb:c9:01:51:c1:73:de: c8:7c:cc:ba:31:f5:8e:86:f3:54:c9:6a:d8:53:b1: 14:f2:1e:54:b4:a8:20:04:ca:fe:b7:be:79:8c:77: ff:65:f2:44:11:f3:7c:e6:27:8b:45:fc:1c:34:fc: e1:bc:18:c8:0d:3b:d5:80:a8:90:bd:a9:0a:88:6d: 04:00:f7:e2:b0:38:6a:b4:79:f3:13:61:35:d7:ef: b6:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AD:8E:BE:0E:82:17:A0:30:5D:97:D4:F0:D6:B1:07:C4:99:0C:84 X509v3 Authority Key Identifier: keyid:1F:DA:A7:92:A5:FE:02:13:BC:4A:C6:4E:DF:21:DF:2E:AC:40:EB:0E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30380/H9qnkqX-AhO8SsZO3yHfLqxA6w4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/H9qnkqX-AhO8SsZO3yHfLqxA6w4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30380/Xq2Ovg6CF6AwXZfU8NaxB8SZDIQ.roa sbgp-ipAddrBlock: critical IPv6: 2407:a6c0::/32 Signature Algorithm: sha256WithRSAEncryption 22:36:85:70:b8:50:f2:0c:73:e0:a1:e3:81:90:84:1a:19:84: 62:27:28:68:31:8f:6c:9a:be:06:2e:c6:5c:08:50:cb:1c:ce: fb:c1:79:de:d8:b4:b6:f1:56:e0:59:87:20:dc:88:92:69:ce: 7d:87:c4:e7:0f:2b:68:27:c7:a4:97:a5:28:d5:4c:1d:d9:b2: e9:06:08:99:bd:ad:6d:17:81:2e:61:22:dc:eb:be:47:48:bd: bf:d2:32:ad:34:2e:1a:7c:fb:99:91:ca:cc:03:e6:ed:39:c0: f8:bf:3b:ec:80:6b:d3:b3:f7:7a:c1:46:82:a0:69:93:c9:06: 1a:3a:52:3f:80:40:80:48:72:44:92:07:f7:db:5f:39:5f:9f: 22:52:15:da:86:ad:84:ac:91:ec:96:39:91:dc:68:9b:09:83: b1:ec:df:a1:56:17:f7:70:28:8b:df:78:21:94:68:9b:01:7d: 6d:88:55:24:0d:08:b3:99:79:72:bf:a2:3a:85:19:a2:c5:61: c3:6b:a4:86:0b:77:d7:bd:5c:0c:48:1c:c5:99:de:a4:c5:58: 05:ef:d8:5b:1a:3c:7f:10:99:54:85:34:0b:c7:5e:7a:cb:48: 26:e2:61:87:e7:37:bd:4f:0b:aa:3d:48:01:e8:da:4f:e1:ff: 63:25:c4:07 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxRkRB QTc5MkE1RkUwMjEzQkM0QUM2NEVERjIxREYyRUFDNDBFQjBFMB4XDTI2MDMzMTA4 NDE1NloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNUVBRDhFQkUwRTgyMTdB MDMwNUQ5N0Q0RjBENkIxMDdDNDk5MEM4NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANWmhsNRJ3JKqzpSEOG6heA2wkQGnCUKPobOSor3Uu84UFqv9+Ab LrWqBLJnWeqv/GDmGVLrKEKS2Lgu1VsO0giQj9EYMHwvN2KI84uT6p83Kgu4CigL A4AwzH0mGSN2n6mOtKmI4TipqOHD2Yoj2TKK6BvNcZeqJozlyM1B72WCJqOAHleW 89WalQDbVgba0lN42OzhGzs083/cv1mJTLy7fJ2iIz02BavFu3vryQFRwXPeyHzM ujH1jobzVMlq2FOxFPIeVLSoIATK/re+eYx3/2XyRBHzfOYni0X8HDT84bwYyA07 1YCokL2pCohtBAD34rA4arR58xNhNdfvtnMCAwEAAaOCAd4wggHaMB0GA1UdDgQW BBRerY6+DoIXoDBdl9Tw1rEHxJkMhDAfBgNVHSMEGDAWgBQf2qeSpf4CE7xKxk7f Id8urEDrDjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzODAvSDlxbmtxWC1BaE84U3NaTzN5SGZMcXhBNnc0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvSDlxbmtxWC1BaE84U3NaTzN5SGZM cXhBNnc0LmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMwMzgwL1hxMk92ZzZDRjZBd1haZlU4TmF4QjhTWkRJUS5yb2Ew IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB6bAMA0GCSqGSIb3DQEBCwUA A4IBAQAiNoVwuFDyDHPgoeOBkIQaGYRiJyhoMY9smr4GLsZcCFDLHM77wXne2LS2 8VbgWYcg3IiSac59h8TnDytoJ8ekl6Uo1Uwd2bLpBgiZva1tF4EuYSLc675HSL2/ 0jKtNC4afPuZkcrMA+btOcD4vzvsgGvTs/d6wUaCoGmTyQYaOlI/gECASHJEkgf3 2185X58iUhXahq2ErJHsljmR3GibCYOx7N+hVhf3cCiL33ghlGibAX1tiFUkDQiz mXlyv6I6hRmixWHDa6SGC3fXvVwMSBzFmd6kxVgF79hbGjx/EJlUhTQLx156y0gm 4mGH5ze9TwuqPUgB6NpP4f9jJcQH -----END CERTIFICATE-----Generated at Tue Apr 7 10:31:06 2026 by rpki-client