$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/xHY98KAW_B7VYp5uqeYCtV1rmMk.roa File: xHY98KAW_B7VYp5uqeYCtV1rmMk.roa (raw, json) Hash identifier: BjHBPfMEyiSLklhH5mkfAPBNaKiPKeoLDjYx0Fh4ptQ= Subject key identifier: C4:76:3D:F0:A0:16:FC:1E:D5:62:9E:6E:A9:E6:02:B5:5D:6B:98:C9 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 8D Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/xHY98KAW_B7VYp5uqeYCtV1rmMk.roa Signing time: Tue 31 Mar 2026 08:24:36 +0000 ROA not before: Tue 31 Mar 2026 08:24:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 10000 IP address blocks: 219.100.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 14:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Mar 31 08:24:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C4763DF0A016FC1ED5629E6EA9E602B55D6B98C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:f0:8d:c0:b9:0d:c6:54:1a:ac:fb:4e:e6: 73:6b:72:21:94:13:d1:90:a1:f1:36:64:55:ab:b7: c9:3b:54:1e:60:9f:ca:6c:f6:b4:c6:ad:86:99:36: 25:bb:c7:d0:f1:e9:8c:d8:99:75:6a:b5:77:a2:ed: ac:eb:7c:a2:8b:11:9f:2a:df:2a:a5:3b:d1:46:d1: 77:7f:32:0b:e3:e5:8c:36:59:7c:9f:a0:9e:f1:0c: ac:ab:a0:ce:b6:8d:bf:dc:f4:64:98:11:b8:90:b0: 07:68:f4:a0:b0:c3:b9:99:f5:5f:b2:e2:73:5c:e4: 94:53:d1:9f:05:32:b0:f7:8a:cf:37:07:f5:d0:5f: 83:e9:30:2d:8c:ef:f8:67:54:29:f0:2b:c0:7c:d9: bf:61:85:9f:ef:55:a0:59:23:7b:b9:25:81:b5:a8: 54:71:54:ee:3d:73:3d:d6:36:ee:92:32:2e:11:46: cc:74:8b:40:e2:fe:19:6c:a5:0a:5f:81:6b:e7:08: d3:2b:82:43:ec:a3:f8:90:d3:b7:33:00:26:47:56: 43:8d:40:55:f1:b0:47:e6:f4:fe:bb:bd:1c:ac:3e: 30:5f:da:9a:74:09:e5:df:a7:83:0a:47:cd:a4:db: ae:db:80:ac:18:5d:13:fc:ac:79:eb:72:b1:68:1a: 02:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:76:3D:F0:A0:16:FC:1E:D5:62:9E:6E:A9:E6:02:B5:5D:6B:98:C9 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/xHY98KAW_B7VYp5uqeYCtV1rmMk.roa sbgp-ipAddrBlock: critical IPv4: 219.100.0.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:e5:11:71:79:82:88:90:e9:00:ea:97:47:02:24:ae:32:c6: a3:c7:bf:93:2c:f0:39:19:f0:c2:e1:fd:ef:f0:3e:ef:cb:c7: 39:de:51:a1:9b:46:02:52:72:7e:88:4b:bb:6c:32:8e:c9:36: 38:b8:56:36:30:3a:a9:fc:ff:a4:06:3c:ea:0f:65:47:28:47: 5b:ef:9a:80:33:a1:a8:a1:0f:40:0e:a4:75:3d:3c:bb:9c:43: ca:b6:50:35:06:dd:f4:d1:3a:c8:1d:f6:e8:0e:3c:1d:cd:22: 1e:7c:bc:89:f2:21:3e:71:40:d5:b5:2e:6c:0a:e1:1e:10:1d: 13:80:b8:3b:44:ed:d7:38:c5:39:c9:37:00:71:2f:94:29:5f: 9f:3a:e9:69:2f:44:80:9a:f3:c4:75:31:78:43:b1:e4:8f:a1: a8:34:5d:fe:de:44:92:f2:7a:02:c7:66:de:d5:a8:01:06:2e: 81:d1:50:ef:7e:17:f2:7d:fb:02:b2:cc:fc:3d:03:f2:96:33: 70:1f:11:e5:d8:a8:6c:3b:0d:5f:48:e5:79:f6:6e:24:57:33: 82:b1:7e:b8:c5:0e:bc:98:24:36:f1:25:0a:02:3a:79:f2:f0: dc:1b:53:0c:8b:db:5c:8a:81:ee:f7:0a:e9:2c:e5:67:56:ac: 91:26:17:72 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUQ0 NzQxRjAzNDlGQkMxNUE3MDhFMjhBMkNFMzA3OTA2Q0FDNURFMDAeFw0yNjAzMzEw ODI0MzZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM0NzYzREYwQTAxNkZD MUVENTYyOUU2RUE5RTYwMkI1NUQ2Qjk4QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpdPCNwLkNxlQarPtO5nNrciGUE9GQofE2ZFWrt8k7VB5gn8ps 9rTGrYaZNiW7x9Dx6YzYmXVqtXei7azrfKKLEZ8q3yqlO9FG0Xd/Mgvj5Yw2WXyf oJ7xDKyroM62jb/c9GSYEbiQsAdo9KCww7mZ9V+y4nNc5JRT0Z8FMrD3is83B/XQ X4PpMC2M7/hnVCnwK8B82b9hhZ/vVaBZI3u5JYG1qFRxVO49cz3WNu6SMi4RRsx0 i0Di/hlspQpfgWvnCNMrgkPso/iQ07czACZHVkONQFXxsEfm9P67vRysPjBf2pp0 CeXfp4MKR82k267bgKwYXRP8rHnrcrFoGgJpAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUxHY98KAW/B7VYp5uqeYCtV1rmMkwHwYDVR0jBBgwFoAUrUdB8DSfvBWnCOKK LOMHkGysXeAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ1NC9yVWRCOERTZnZCV25DT0tLTE9NSGtHeXNYZUEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9yVWRCOERTZnZCV25DT0tLTE9NSGtH eXNYZUEuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNDU0L3hIWTk4S0FXX0I3VllwNXVxZVlDdFYxcm1Nay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALbZAAwDQYJKoZIhvcNAQELBQADggEB AJrlEXF5goiQ6QDql0cCJK4yxqPHv5Ms8DkZ8MLh/e/wPu/LxzneUaGbRgJScn6I S7tsMo7JNji4VjYwOqn8/6QGPOoPZUcoR1vvmoAzoaihD0AOpHU9PLucQ8q2UDUG 3fTROsgd9ugOPB3NIh58vInyIT5xQNW1LmwK4R4QHROAuDtE7dc4xTnJNwBxL5Qp X5866WkvRICa88R1MXhDseSPoag0Xf7eRJLyegLHZt7VqAEGLoHRUO9+F/J9+wKy zPw9A/KWM3AfEeXYqGw7DV9I5Xn2biRXM4KxfrjFDryYJDbxJQoCOnny8NwbUwyL 21yKge73Cuks5WdWrJEmF3I= -----END CERTIFICATE-----Generated at Tue Apr 7 16:28:46 2026 by rpki-client