$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/bFltUr05wtIr-uq-tBecPnuqsm4.roa File: bFltUr05wtIr-uq-tBecPnuqsm4.roa (raw, json) Hash identifier: m4g4p8/QGGYOzxAoGIYwthx5dI1VtxMnJUQEgwJXVic= Subject key identifier: 6C:59:6D:52:BD:39:C2:D2:2B:FA:EA:BE:B4:17:9C:3E:7B:AA:B2:6E Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 41 Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/bFltUr05wtIr-uq-tBecPnuqsm4.roa Signing time: Tue 31 Mar 2026 08:49:26 +0000 ROA not before: Tue 31 Mar 2026 08:49:26 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 202.60.32.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 31 08:49:26 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=6C596D52BD39C2D22BFAEABEB4179C3E7BAAB26E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:58:e5:8e:bb:c8:29:e3:c9:a9:a2:eb:0c:3e: 39:f5:8d:f4:1a:e7:17:12:10:52:30:8a:93:5c:c4: 50:f2:3a:05:5d:c6:8d:dd:c6:0e:4a:83:07:8d:9c: 93:96:95:da:44:09:93:66:e3:f3:dd:33:65:23:7a: 4a:9e:72:32:af:64:ea:95:3d:27:7b:e4:5f:5f:52: f4:8b:7f:75:17:44:6f:b8:48:ef:bd:5d:e9:ab:ab: 7d:e7:7d:11:37:d0:c2:c1:e5:6f:05:c0:f1:a8:2a: f4:33:89:86:21:ac:3d:71:8c:e6:cc:e4:5f:33:a8: c2:db:8b:2d:36:89:02:a7:2d:d4:d0:ed:9a:24:1e: ed:ac:8f:f5:1d:63:f2:b7:f1:5b:87:fa:60:aa:74: a1:7e:94:e9:e8:f1:02:5e:7a:d1:31:d6:19:46:71: 52:27:09:65:2f:3c:3c:df:7e:d4:f6:39:1a:26:1e: e9:e1:fc:1f:67:04:ad:e3:ff:c8:fc:5e:14:5c:c9: 2f:88:b4:65:3c:8d:71:42:77:91:ac:c3:f1:a5:6c: 25:5f:2b:31:99:b8:c1:7b:47:72:21:b5:bc:d7:66: 49:40:b3:d8:38:9a:70:89:0e:64:69:45:41:8e:3a: ac:83:6d:66:1d:1d:98:33:7b:23:3e:17:31:ab:06: 3b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:59:6D:52:BD:39:C2:D2:2B:FA:EA:BE:B4:17:9C:3E:7B:AA:B2:6E X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/bFltUr05wtIr-uq-tBecPnuqsm4.roa sbgp-ipAddrBlock: critical IPv4: 202.60.32.0/20 Signature Algorithm: sha256WithRSAEncryption 34:f8:1e:8b:87:8b:32:9e:3a:9f:4c:44:8d:25:81:a8:9e:de: 86:43:af:20:bf:3e:c9:1b:49:52:3e:6f:38:2e:33:f0:df:f1: 5b:c9:d9:e0:30:41:42:78:8c:f8:e3:09:7f:11:da:98:89:02: f4:56:02:87:2d:bd:5e:c0:80:1c:76:28:64:ca:09:4f:27:23: 4e:20:de:97:13:a8:58:9d:41:ad:34:40:b7:0c:a8:1f:90:d3: ae:c1:3d:28:18:3e:df:63:50:63:61:22:a4:37:ea:14:62:5b: b9:b8:a6:63:1a:bd:11:bf:28:33:a3:56:66:73:74:02:f6:dc: 5b:92:31:62:5b:e6:59:0a:a8:7d:59:35:34:a7:dc:ff:6d:26: e4:30:54:d0:30:ef:88:d8:21:57:d7:0b:1a:46:33:dc:29:d0: 85:a8:e7:b8:fc:e8:ab:21:68:6e:07:18:30:82:96:3d:13:a4: 4d:a0:92:52:69:cd:83:d1:d3:77:0d:3e:84:42:fc:a3:e6:d1: 7a:f0:9d:49:7f:3c:77:8d:33:ad:cb:7c:7f:f3:f0:32:17:df: da:67:e9:6a:a1:0b:d6:e3:dd:22:8a:4a:fe:a0:6c:f5:6b:f4: 20:ce:ff:60:ab:a2:c8:1f:da:b5:26:be:68:1f:ec:45:8a:62: 00:89:91:3b -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMzMTA4 NDkyNloXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoNkM1OTZENTJCRDM5QzJE MjJCRkFFQUJFQjQxNzlDM0U3QkFBQjI2RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN5Y5Y67yCnjyami6ww+OfWN9BrnFxIQUjCKk1zEUPI6BV3Gjd3G DkqDB42ck5aV2kQJk2bj890zZSN6Sp5yMq9k6pU9J3vkX19S9It/dRdEb7hI771d 6aurfed9ETfQwsHlbwXA8agq9DOJhiGsPXGM5szkXzOowtuLLTaJAqct1NDtmiQe 7ayP9R1j8rfxW4f6YKp0oX6U6ejxAl560THWGUZxUicJZS88PN9+1PY5GiYe6eH8 H2cEreP/yPxeFFzJL4i0ZTyNcUJ3kazD8aVsJV8rMZm4wXtHciG1vNdmSUCz2Dia cIkOZGlFQY46rINtZh0dmDN7Iz4XMasGO+UCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBRsWW1SvTnC0iv66r60F5w+e6qybjAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80OTMvYkZsdFVyMDV3dElyLXVxLXRCZWNQbnVxc200LnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMo8IDANBgkqhkiG9w0BAQsFAAOCAQEA NPgei4eLMp46n0xEjSWBqJ7ehkOvIL8+yRtJUj5vOC4z8N/xW8nZ4DBBQniM+OMJ fxHamIkC9FYChy29XsCAHHYoZMoJTycjTiDelxOoWJ1BrTRAtwyoH5DTrsE9KBg+ 32NQY2EipDfqFGJbubimYxq9Eb8oM6NWZnN0AvbcW5IxYlvmWQqofVk1NKfc/20m 5DBU0DDviNghV9cLGkYz3CnQhajnuPzoqyFobgcYMIKWPROkTaCSUmnNg9HTdw0+ hEL8o+bRevCdSX88d40zrct8f/PwMhff2mfpaqEL1uPdIopK/qBs9Wv0IM7/YKui yB/atSa+aB/sRYpiAImROw== -----END CERTIFICATE-----Generated at Tue Apr 7 19:33:49 2026 by rpki-client