$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/y4ElZ3O4SsEPK_IT0tjDqdTWRtY.roa File: y4ElZ3O4SsEPK_IT0tjDqdTWRtY.roa (raw, json) Hash identifier: OIXSfcafZwr1XMereiTjIREnR82+uKguCF6qKExYZLM= Subject key identifier: CB:81:25:67:73:B8:4A:C1:0F:2B:F2:13:D2:D8:C3:A9:D4:D6:46:D6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 135E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y4ElZ3O4SsEPK_IT0tjDqdTWRtY.roa Signing time: Tue 31 Mar 2026 07:55:25 +0000 ROA not before: Tue 31 Mar 2026 07:55:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.54.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4958 (0x135e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CB81256773B84AC10F2BF213D2D8C3A9D4D646D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ce:e6:8d:10:13:24:3a:c0:c5:ea:10:d1:41: 8c:d0:a7:e2:3c:3a:63:43:e4:db:ac:00:b4:1f:d2: da:57:de:2a:9f:ba:f7:7d:34:f1:39:61:35:14:06: 78:82:ce:fa:ba:6d:f4:89:82:f2:d9:a5:47:e6:78: 6f:92:1e:71:35:f3:fa:c3:09:83:3d:d0:02:c4:cd: 6e:3a:71:c1:10:e9:be:e2:c8:da:91:55:59:5b:67: d9:49:0a:92:ff:e9:63:e8:0e:ff:05:9a:04:35:fb: 69:64:4f:9c:0a:9a:32:f7:6e:76:0b:3b:7a:cb:29: 04:77:68:37:d5:a5:36:2f:58:be:78:47:5b:23:5e: 2b:af:2a:4f:a8:97:a0:b7:fb:b4:07:08:82:c0:38: ba:5a:f0:8e:cb:f4:ac:9c:7e:c2:e8:0d:c5:b6:e4: 5d:52:27:e9:e6:5f:ab:de:3a:84:0a:9e:b0:31:a5: c7:be:a4:f2:5a:9c:60:29:31:c7:56:19:10:03:05: eb:33:77:87:bd:5d:2c:e0:22:06:34:e6:d4:5c:e6: 87:eb:d2:74:a4:90:72:86:a9:ee:26:c5:6c:40:7a: fa:2d:3d:73:ef:53:45:69:67:5e:68:a5:c9:26:57: 45:6f:54:01:0f:5b:f1:a9:52:3a:03:12:a7:46:1d: 7d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:81:25:67:73:B8:4A:C1:0F:2B:F2:13:D2:D8:C3:A9:D4:D6:46:D6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y4ElZ3O4SsEPK_IT0tjDqdTWRtY.roa sbgp-ipAddrBlock: critical IPv4: 220.159.54.0/23 Signature Algorithm: sha256WithRSAEncryption c9:2b:cf:c0:15:b6:6e:4b:3a:7e:2a:69:2b:0a:2a:0c:6a:e1: 2e:9b:68:a1:1a:f8:ff:ea:1d:b5:e2:96:07:25:15:b0:21:72: cc:80:47:41:a5:6b:23:17:38:9e:6f:02:07:34:5c:3d:34:55: 8f:3c:44:e0:01:c9:3d:1e:4d:2a:a9:5e:bf:b7:7f:26:ea:3f: 2a:27:03:66:c9:25:10:d1:4c:f0:54:18:9a:22:86:22:57:18: 4c:e7:72:ef:ca:eb:d3:2a:65:88:05:a3:05:5c:7d:fc:0e:83: 22:44:ee:68:18:d9:bb:41:76:cc:8b:0b:32:9c:be:14:fe:67: a4:e6:5f:c5:5b:da:db:0a:ee:df:5a:d4:b6:fe:11:38:1c:d1: c4:fc:6d:4b:17:dc:f4:f3:0e:44:72:05:6e:d5:05:d4:af:0a: 5f:e5:80:e1:dd:15:ab:97:bd:a3:84:94:52:f1:df:d2:ba:53: d4:8e:c9:dc:df:61:8d:3e:0d:62:9d:4a:68:32:74:42:c0:00: bd:bf:09:f5:31:aa:ac:3d:d9:31:9c:b3:08:42:70:4b:90:a3: 83:ec:0a:6c:82:a9:b3:a4:bf:2c:a6:84:d3:a1:66:61:f3:4a: 92:bc:c8:ad:02:46:e3:e1:0c:f1:d8:e7:ba:43:95:87:ae:f1: f1:a5:74:37 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1MjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKENCODEyNTY3NzNCODRB QzEwRjJCRjIxM0QyRDhDM0E5RDRENjQ2RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgzuaNEBMkOsDF6hDRQYzQp+I8OmND5NusALQf0tpX3iqfuvd9 NPE5YTUUBniCzvq6bfSJgvLZpUfmeG+SHnE18/rDCYM90ALEzW46ccEQ6b7iyNqR VVlbZ9lJCpL/6WPoDv8FmgQ1+2lkT5wKmjL3bnYLO3rLKQR3aDfVpTYvWL54R1sj XiuvKk+ol6C3+7QHCILAOLpa8I7L9KycfsLoDcW25F1SJ+nmX6veOoQKnrAxpce+ pPJanGApMcdWGRADBeszd4e9XSzgIgY05tRc5ofr0nSkkHKGqe4mxWxAevotPXPv U0VpZ15opckmV0VvVAEPW/GpUjoDEqdGHX0tAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUy4ElZ3O4SsEPK/IT0tjDqdTWRtYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3k0RWxaM080U3NFUEtfSVQwdGpEcWRUV1J0WS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHcnzYwDQYJKoZIhvcNAQELBQADggEB AMkrz8AVtm5LOn4qaSsKKgxq4S6baKEa+P/qHbXilgclFbAhcsyAR0GlayMXOJ5v Agc0XD00VY88ROAByT0eTSqpXr+3fybqPyonA2bJJRDRTPBUGJoihiJXGEzncu/K 69MqZYgFowVcffwOgyJE7mgY2btBdsyLCzKcvhT+Z6TmX8Vb2tsK7t9a1Lb+ETgc 0cT8bUsX3PTzDkRyBW7VBdSvCl/lgOHdFauXvaOElFLx39K6U9SOydzfYY0+DWKd SmgydELAAL2/CfUxqqw92TGcswhCcEuQo4PsCmyCqbOkvyymhNOhZmHzSpK8yK0C RuPhDPHY57pDlYeu8fGldDc= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:15 2026 by rpki-client