$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/-kU1CiRPsv77kvJwVpZiLHT7gy0.roa File: -kU1CiRPsv77kvJwVpZiLHT7gy0.roa (raw, json) Hash identifier: /JcCUqK5RDRiTTKR2PmcI0SvS8zuNe93TtbhUOnRU/8= Subject key identifier: FA:45:35:0A:24:4F:B2:FE:FB:92:F2:70:56:96:62:2C:74:FB:83:2D Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 48 Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/-kU1CiRPsv77kvJwVpZiLHT7gy0.roa Signing time: Tue 31 Mar 2026 08:49:30 +0000 ROA not before: Tue 31 Mar 2026 08:49:30 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 218.228.128.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 31 08:49:30 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=FA45350A244FB2FEFB92F2705696622C74FB832D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1f:e6:16:76:81:1a:e6:3d:8e:9a:c2:18:34: 00:6a:d2:e2:1f:03:82:cb:25:1b:49:64:5f:f6:61: 84:25:b7:45:e2:77:59:ee:93:7c:68:0d:9b:33:53: 04:bf:b3:be:28:a6:ac:c9:44:d1:3b:45:8e:7e:76: 7b:a4:0d:88:53:5d:83:4b:46:b0:71:27:54:6b:67: 73:07:95:84:66:6f:54:ef:bf:90:86:bd:d6:2c:cb: bd:a8:40:60:cb:53:e2:2f:82:5e:17:5d:bb:26:12: cd:6d:31:ee:d5:7e:4f:2b:77:f1:b2:ff:1a:72:5d: a9:fe:6b:16:da:bd:48:d4:6b:e4:c9:3b:f4:ff:2c: a5:89:3d:57:98:bc:70:9b:06:7d:12:04:4d:87:d7: 86:97:52:1f:ea:87:bc:bd:67:ee:78:bb:3c:2a:b1: e3:e2:6a:3d:0b:46:36:75:5f:03:ac:b4:72:bb:d8: 37:4c:6b:68:4a:7b:4d:06:e6:21:58:b3:08:06:c4: 82:d0:9d:ea:79:91:fa:ca:2a:b4:dd:3e:ed:83:f1: 26:1b:85:6d:5c:b1:6d:25:86:e9:59:15:c1:08:4d: 64:55:df:01:a2:27:c6:8d:27:83:af:e3:cd:52:12: 11:2c:b0:b2:f5:51:85:7c:3d:67:c2:62:3d:3a:7e: 51:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:45:35:0A:24:4F:B2:FE:FB:92:F2:70:56:96:62:2C:74:FB:83:2D X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/-kU1CiRPsv77kvJwVpZiLHT7gy0.roa sbgp-ipAddrBlock: critical IPv4: 218.228.128.0/17 Signature Algorithm: sha256WithRSAEncryption 16:ac:3e:7c:c7:63:e4:db:fb:2e:b5:3f:4f:20:93:70:7b:b0: 87:eb:df:0b:0c:5a:fd:f2:b4:2c:f4:b6:5d:f9:42:2d:90:ce: 1c:d1:4b:86:0c:c3:f4:16:92:20:1b:21:e1:99:51:8a:c5:b8: 8b:26:ba:77:ba:d8:8a:38:a9:04:26:fe:12:aa:e6:ac:37:95: c3:ee:92:d5:ba:5d:01:a9:9d:6c:0a:3d:2e:c6:2b:bc:61:41: 7d:9c:b2:da:a0:3e:96:33:d9:68:7c:9b:9b:d2:64:85:a6:4c: 28:e1:aa:79:10:59:5b:3e:74:d1:c7:8f:68:f8:bb:63:90:e3: b8:58:59:ac:e9:42:bb:bc:1a:f1:7f:64:70:bf:51:37:c2:75: c2:ec:ee:99:1d:ee:13:21:f7:58:6f:5f:16:4e:9e:6d:18:81: 93:cf:74:f4:3e:7d:95:a6:71:c9:bd:65:98:71:4a:b5:21:91: b8:f8:82:5b:33:65:d8:5e:b4:72:92:a1:71:37:e9:05:62:b6: d9:6c:f0:d9:9c:7f:0c:80:33:6a:74:6c:d1:e6:55:8f:70:c0: 2f:f6:bd:38:5c:c6:d8:55:f6:74:44:9c:03:37:e2:69:a3:51: 2d:59:ed:85:f6:65:2c:16:a2:62:ee:34:59:15:71:71:8f:49: 4a:e0:d0:4d -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMzMTA4 NDkzMFoXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoRkE0NTM1MEEyNDRGQjJG RUZCOTJGMjcwNTY5NjYyMkM3NEZCODMyRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL4f5hZ2gRrmPY6awhg0AGrS4h8DgsslG0lkX/ZhhCW3ReJ3We6T fGgNmzNTBL+zviimrMlE0TtFjn52e6QNiFNdg0tGsHEnVGtncweVhGZvVO+/kIa9 1izLvahAYMtT4i+CXhdduyYSzW0x7tV+Tyt38bL/GnJdqf5rFtq9SNRr5Mk79P8s pYk9V5i8cJsGfRIETYfXhpdSH+qHvL1n7ni7PCqx4+JqPQtGNnVfA6y0crvYN0xr aEp7TQbmIVizCAbEgtCd6nmR+soqtN0+7YPxJhuFbVyxbSWG6VkVwQhNZFXfAaIn xo0ng6/jzVISESywsvVRhXw9Z8JiPTp+UYsCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBT6RTUKJE+y/vuS8nBWlmIsdPuDLTAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80OTMvLWtVMUNpUlBzdjc3a3ZKd1ZwWmlMSFQ3Z3kwLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9rkgDANBgkqhkiG9w0BAQsFAAOCAQEA Fqw+fMdj5Nv7LrU/TyCTcHuwh+vfCwxa/fK0LPS2XflCLZDOHNFLhgzD9BaSIBsh 4ZlRisW4iya6d7rYijipBCb+EqrmrDeVw+6S1bpdAamdbAo9LsYrvGFBfZyy2qA+ ljPZaHybm9JkhaZMKOGqeRBZWz500cePaPi7Y5DjuFhZrOlCu7wa8X9kcL9RN8J1 wuzumR3uEyH3WG9fFk6ebRiBk8909D59laZxyb1lmHFKtSGRuPiCWzNl2F60cpKh cTfpBWK22Wzw2Zx/DIAzanRs0eZVj3DAL/a9OFzG2FX2dEScAzfiaaNRLVnthfZl LBaiYu40WRVxcY9JSuDQTQ== -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:31 2026 by rpki-client