$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30450/pSj9ufpsWsWBn7AS4fFutJLB2yI.roa File: pSj9ufpsWsWBn7AS4fFutJLB2yI.roa (raw, json) Hash identifier: x58zhMJ4Vas1Kxk3UFnw0hLUz+j/0kpb3y9UHD6xWk8= Subject key identifier: A5:28:FD:B9:FA:6C:5A:C5:81:9F:B0:12:E1:F1:6E:B4:92:C1:DB:22 Certificate issuer: /CN=CBA32F44BC32F1E1E192FE2C5473C0D729F88C4E Certificate serial: 11 Authority key identifier: CB:A3:2F:44:BC:32:F1:E1:E1:92:FE:2C:54:73:C0:D7:29:F8:8C:4E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y6MvRLwy8eHhkv4sVHPA1yn4jE4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30450/pSj9ufpsWsWBn7AS4fFutJLB2yI.roa Signing time: Tue 31 Mar 2026 08:47:35 +0000 ROA not before: Tue 31 Mar 2026 08:47:35 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 38646 IP address blocks: 2402:2f60::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30450/y6MvRLwy8eHhkv4sVHPA1yn4jE4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30450/y6MvRLwy8eHhkv4sVHPA1yn4jE4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y6MvRLwy8eHhkv4sVHPA1yn4jE4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBA32F44BC32F1E1E192FE2C5473C0D729F88C4E Validity Not Before: Mar 31 08:47:35 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A528FDB9FA6C5AC5819FB012E1F16EB492C1DB22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2e:e5:ed:27:31:3c:63:59:8b:9b:04:97:ad: 67:d4:88:0e:49:6c:58:ef:fd:ce:88:48:f1:8a:f2: 69:25:53:79:a9:25:65:e1:a9:67:d4:9c:0e:6a:2f: 1b:f0:5e:7b:f3:f3:57:67:45:4f:13:4c:97:d1:0c: d7:fb:f8:c7:90:80:58:35:5f:95:8d:18:d2:3e:74: c3:88:22:11:73:df:10:49:81:26:de:5d:58:93:05: b0:de:40:d9:94:9a:c0:fd:48:98:c1:d4:ea:f4:c0: 22:38:cd:72:13:ad:8e:6a:fe:d7:96:15:70:a8:0d: df:8d:78:18:98:57:a5:7e:8f:9c:a2:d6:f3:83:5f: a4:fc:35:eb:9d:94:0f:4b:2a:3a:e1:37:33:6d:47: b8:3b:e6:81:b2:8f:b5:4e:4e:47:f3:91:27:76:c2: 22:48:19:cf:07:13:fb:99:48:6a:17:d8:3b:8b:f0: b7:06:04:b5:3b:a4:e3:ad:76:97:95:9e:d6:aa:61: 08:15:d6:34:29:e4:21:7b:67:57:9c:a7:1b:a4:b1: 97:04:b2:41:fe:68:c2:8c:69:74:7b:9c:c2:22:9c: b1:cc:b7:f8:41:5f:4f:2c:24:29:80:bf:24:52:0a: b7:8e:21:02:08:b0:32:67:a4:cd:54:26:e4:72:f2: 06:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:28:FD:B9:FA:6C:5A:C5:81:9F:B0:12:E1:F1:6E:B4:92:C1:DB:22 X509v3 Authority Key Identifier: keyid:CB:A3:2F:44:BC:32:F1:E1:E1:92:FE:2C:54:73:C0:D7:29:F8:8C:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30450/y6MvRLwy8eHhkv4sVHPA1yn4jE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y6MvRLwy8eHhkv4sVHPA1yn4jE4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30450/pSj9ufpsWsWBn7AS4fFutJLB2yI.roa sbgp-ipAddrBlock: critical IPv6: 2402:2f60::/32 Signature Algorithm: sha256WithRSAEncryption 88:d8:4e:3c:31:63:c9:fc:06:5f:97:18:c2:17:f1:83:4c:c7: 6f:9e:aa:4b:71:ec:fe:78:b4:fc:52:eb:33:f4:ff:1f:30:f4: e4:84:b3:2b:10:63:78:e8:0a:9d:f3:24:ba:f4:4d:8e:d7:7b: d4:41:fe:67:09:0f:7c:ba:d6:b2:dc:01:e3:05:14:3a:8a:de: 92:97:1e:1c:7f:e3:fb:c2:c0:18:75:68:b4:16:5f:86:0d:22: b6:a5:c4:75:55:d9:a5:29:45:26:ad:84:ee:71:ad:8a:c7:7c: 49:64:12:b8:38:64:79:08:1a:ff:ad:e4:f4:a3:23:82:7d:bf: ad:87:cf:24:0a:5f:ec:6a:5b:66:8c:09:da:ea:e8:7f:29:a5: 57:04:b3:f1:02:57:c7:7a:ce:43:9b:06:cd:68:a2:29:99:3e: 00:00:2b:41:76:5d:a2:53:db:ee:ab:41:9d:52:5f:44:22:1a: 6b:4b:72:3b:9b:8c:5c:46:f2:a2:cb:57:4c:77:e3:86:9d:cb: ff:6d:75:3d:66:92:37:e9:1a:70:31:70:54:f6:8e:88:a4:27: c2:f2:a0:b0:ae:dd:57:fd:4e:6f:dc:39:bd:10:d1:b2:e1:ff: eb:6c:c6:0d:ec:e1:4f:37:a1:b2:8d:e1:a7:df:2e:df:69:49: 0d:18:f8:7a -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQkEz MkY0NEJDMzJGMUUxRTE5MkZFMkM1NDczQzBENzI5Rjg4QzRFMB4XDTI2MDMzMTA4 NDczNVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTUyOEZEQjlGQTZDNUFD NTgxOUZCMDEyRTFGMTZFQjQ5MkMxREIyMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALEu5e0nMTxjWYubBJetZ9SIDklsWO/9zohI8YryaSVTeaklZeGp Z9ScDmovG/Bee/PzV2dFTxNMl9EM1/v4x5CAWDVflY0Y0j50w4giEXPfEEmBJt5d WJMFsN5A2ZSawP1ImMHU6vTAIjjNchOtjmr+15YVcKgN3414GJhXpX6PnKLW84Nf pPw1652UD0sqOuE3M21HuDvmgbKPtU5OR/ORJ3bCIkgZzwcT+5lIahfYO4vwtwYE tTuk4612l5We1qphCBXWNCnkIXtnV5ynG6SxlwSyQf5owoxpdHucwiKcscy3+EFf TywkKYC/JFIKt44hAgiwMmekzVQm5HLyBmMCAwEAAaOCAd4wggHaMB0GA1UdDgQW BBSlKP25+mxaxYGfsBLh8W60ksHbIjAfBgNVHSMEGDAWgBTLoy9EvDLx4eGS/ixU c8DXKfiMTjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0NTAveTZNdlJMd3k4ZUhoa3Y0c1ZIUEExeW40akU0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveTZNdlJMd3k4ZUhoa3Y0c1ZIUEEx eW40akU0LmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMwNDUwL3BTajl1ZnBzV3NXQm43QVM0ZkZ1dEpMQjJ5SS5yb2Ew IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAi9gMA0GCSqGSIb3DQEBCwUA A4IBAQCI2E48MWPJ/AZflxjCF/GDTMdvnqpLcez+eLT8Uusz9P8fMPTkhLMrEGN4 6Aqd8yS69E2O13vUQf5nCQ98utay3AHjBRQ6it6Slx4cf+P7wsAYdWi0Fl+GDSK2 pcR1VdmlKUUmrYTuca2Kx3xJZBK4OGR5CBr/reT0oyOCfb+th88kCl/saltmjAna 6uh/KaVXBLPxAlfHes5DmwbNaKIpmT4AACtBdl2iU9vuq0GdUl9EIhprS3I7m4xc RvKiy1dMd+OGncv/bXU9ZpI36RpwMXBU9o6IpCfC8qCwrt1X/U5v3Dm9ENGy4f/r bMYN7OFPN6GyjeGn3y7faUkNGPh6 -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:39 2026 by rpki-client