$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30419/qNF-W6rMHNO4j8txgZQIUg0pMhg.roa File: qNF-W6rMHNO4j8txgZQIUg0pMhg.roa (raw, json) Hash identifier: 8TJLrVPw3/KXHf983sP/hXfPpPX/kEk+kEnkUSZqhi4= Subject key identifier: A8:D1:7E:5B:AA:CC:1C:D3:B8:8F:CB:71:81:94:08:52:0D:29:32:18 Certificate issuer: /CN=5C94D460126D3E224B1DBD6646FAE9243A60EC41 Certificate serial: 27 Authority key identifier: 5C:94:D4:60:12:6D:3E:22:4B:1D:BD:66:46:FA:E9:24:3A:60:EC:41 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XJTUYBJtPiJLHb1mRvrpJDpg7EE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30419/qNF-W6rMHNO4j8txgZQIUg0pMhg.roa Signing time: Tue 31 Mar 2026 08:36:54 +0000 ROA not before: Tue 31 Mar 2026 08:36:54 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 150366 IP address blocks: 2400:fba0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30419/XJTUYBJtPiJLHb1mRvrpJDpg7EE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30419/XJTUYBJtPiJLHb1mRvrpJDpg7EE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XJTUYBJtPiJLHb1mRvrpJDpg7EE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C94D460126D3E224B1DBD6646FAE9243A60EC41 Validity Not Before: Mar 31 08:36:54 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A8D17E5BAACC1CD3B88FCB71819408520D293218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:71:ef:f1:6c:8c:af:d9:60:06:ed:7d:f0:1c: d1:fa:32:ca:6f:9f:42:18:f9:3c:3f:d5:ba:45:e4: 11:b3:ea:a7:e0:7d:f6:2d:21:07:c4:e2:47:60:bd: 79:0c:fb:df:8f:11:3d:55:a7:34:fb:8a:87:d6:cf: f1:6a:fa:36:ea:d9:48:ce:f9:0d:1f:fe:cb:aa:3f: 89:fe:83:e8:70:7f:90:17:82:3f:28:ff:59:1b:1e: e4:43:17:3d:3f:00:e0:68:33:e7:0a:f1:48:97:7b: e8:b8:b7:e8:cf:03:75:7f:88:8a:50:8a:ca:8e:84: f6:8a:6c:d9:95:1c:1d:61:64:f6:02:1c:91:f4:1f: 66:3c:d4:12:52:38:fc:6a:a1:26:65:4f:c9:64:d5: 83:4b:d3:c6:fa:f5:3a:ab:0b:c4:47:17:ae:e0:c8: 77:f8:14:d2:0d:ee:07:b3:90:8c:4c:83:1d:4c:4a: e6:53:13:71:4d:92:aa:5c:d7:ba:5d:64:5c:bc:75: c8:ce:f3:06:81:ab:4b:61:96:dc:f1:c6:19:bc:f7: 5b:0c:da:7c:46:3e:aa:21:a6:3c:28:16:24:5b:a0: 59:af:f4:69:94:f0:00:30:2b:d0:9b:4f:ac:57:ec: da:b1:35:fe:81:0e:e6:c2:84:e7:d4:aa:21:ba:5e: 3a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D1:7E:5B:AA:CC:1C:D3:B8:8F:CB:71:81:94:08:52:0D:29:32:18 X509v3 Authority Key Identifier: keyid:5C:94:D4:60:12:6D:3E:22:4B:1D:BD:66:46:FA:E9:24:3A:60:EC:41 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30419/XJTUYBJtPiJLHb1mRvrpJDpg7EE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XJTUYBJtPiJLHb1mRvrpJDpg7EE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30419/qNF-W6rMHNO4j8txgZQIUg0pMhg.roa sbgp-ipAddrBlock: critical IPv6: 2400:fba0::/32 Signature Algorithm: sha256WithRSAEncryption 8a:7c:82:e1:67:61:cc:01:96:ef:8f:ae:19:91:61:b8:fe:8b: 5f:11:a1:6b:65:56:f8:e3:04:14:4b:87:14:7b:27:f8:a1:d7: ce:68:58:e0:28:9e:42:b9:f5:54:2f:c6:43:5d:49:49:71:67: d9:c3:7d:d5:fa:d0:9a:b5:be:ad:74:13:b7:f8:ca:19:21:58: ae:53:41:77:54:3e:b2:be:f2:a4:1f:18:03:87:36:68:5a:5b: f9:06:ed:1f:b3:98:02:b3:a1:ef:c5:69:0d:6a:6c:79:1d:3f: ee:f8:13:ca:8e:0b:50:4a:89:80:02:2d:58:c7:ae:85:f9:73: 8d:e6:04:47:11:f8:8a:5a:94:c5:14:30:b3:ce:c1:4a:ee:f4: 3d:fd:6e:c2:2a:6e:11:d1:87:39:7f:81:6c:7f:be:8d:13:d5: 33:c4:6e:60:48:bf:63:a1:dd:99:7d:67:be:37:01:a7:1e:ee: c7:ea:85:c2:36:6a:ae:14:be:a8:44:86:c5:ef:47:82:ec:d9: 09:9a:f0:0e:14:a0:5d:d2:e5:53:3e:8a:b8:a2:92:56:03:40: 69:7c:fa:a6:89:bc:8c:34:f0:c5:ae:f3:96:c1:23:41:3c:e5: f4:a4:5a:d0:c2:b1:72:88:5a:d6:1c:1a:f5:af:bf:8b:5c:e5: 37:dc:28:73 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1Qzk0 RDQ2MDEyNkQzRTIyNEIxREJENjY0NkZBRTkyNDNBNjBFQzQxMB4XDTI2MDMzMTA4 MzY1NFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQThEMTdFNUJBQUNDMUNE M0I4OEZDQjcxODE5NDA4NTIwRDI5MzIxODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOhx7/FsjK/ZYAbtffAc0foyym+fQhj5PD/VukXkEbPqp+B99i0h B8TiR2C9eQz7348RPVWnNPuKh9bP8Wr6NurZSM75DR/+y6o/if6D6HB/kBeCPyj/ WRse5EMXPT8A4Ggz5wrxSJd76Li36M8DdX+IilCKyo6E9ops2ZUcHWFk9gIckfQf ZjzUElI4/GqhJmVPyWTVg0vTxvr1OqsLxEcXruDId/gU0g3uB7OQjEyDHUxK5lMT cU2SqlzXul1kXLx1yM7zBoGrS2GW3PHGGbz3WwzafEY+qiGmPCgWJFugWa/0aZTw ADAr0JtPrFfs2rE1/oEO5sKE59SqIbpeOg8CAwEAAaOCAd4wggHaMB0GA1UdDgQW BBSo0X5bqswc07iPy3GBlAhSDSkyGDAfBgNVHSMEGDAWgBRclNRgEm0+IksdvWZG +ukkOmDsQTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MTkvWEpUVVlCSnRQaUpMSGIxbVJ2cnBKRHBnN0VFLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWEpUVVlCSnRQaUpMSGIxbVJ2cnBK RHBnN0VFLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMwNDE5L3FORi1XNnJNSE5PNGo4dHhnWlFJVWcwcE1oZy5yb2Ew IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAPugMA0GCSqGSIb3DQEBCwUA A4IBAQCKfILhZ2HMAZbvj64ZkWG4/otfEaFrZVb44wQUS4cUeyf4odfOaFjgKJ5C ufVUL8ZDXUlJcWfZw33V+tCatb6tdBO3+MoZIViuU0F3VD6yvvKkHxgDhzZoWlv5 Bu0fs5gCs6HvxWkNamx5HT/u+BPKjgtQSomAAi1Yx66F+XON5gRHEfiKWpTFFDCz zsFK7vQ9/W7CKm4R0Yc5f4Fsf76NE9UzxG5gSL9jod2ZfWe+NwGnHu7H6oXCNmqu FL6oRIbF70eC7NkJmvAOFKBd0uVTPoq4opJWA0BpfPqmibyMNPDFrvOWwSNBPOX0 pFrQwrFyiFrWHBr1r7+LXOU33Chz -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:05 2026 by rpki-client