$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/493/d0nNPWEO8vy5DGgds3RRpnVqvjc.roa File: d0nNPWEO8vy5DGgds3RRpnVqvjc.roa (raw, json) Hash identifier: f5XaL1a7kUMP0GIast1TtZcQCS5ArtM8t6arlgsdCHk= Subject key identifier: 77:49:CD:3D:61:0E:F2:FC:B9:0C:68:1D:B3:74:51:A6:75:6A:BE:37 Certificate issuer: /CN=677198612266777D83A2DB4A1E9E147C72A5D76D Certificate serial: 40 Authority key identifier: 67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/d0nNPWEO8vy5DGgds3RRpnVqvjc.roa Signing time: Tue 31 Mar 2026 08:49:26 +0000 ROA not before: Tue 31 Mar 2026 08:49:26 +0000 ROA not after: Wed 24 Mar 2027 01:46:06 +0000 asID: 17511 IP address blocks: 202.8.48.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=677198612266777D83A2DB4A1E9E147C72A5D76D Validity Not Before: Mar 31 08:49:26 2026 GMT Not After : Mar 24 01:46:06 2027 GMT Subject: CN=7749CD3D610EF2FCB90C681DB37451A6756ABE37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:56:b8:25:b6:c3:71:e2:d9:14:dd:91:ef:4e: a9:88:b5:77:e7:87:5d:8f:49:51:5a:39:fd:b0:ec: 01:fa:d7:09:e7:83:49:4c:9c:65:b9:7a:e2:81:8d: 53:7a:7a:28:ef:d0:1b:86:65:9a:21:ec:0c:f4:70: b1:af:53:c0:d5:09:83:70:1c:81:bd:a8:57:c0:a0: 1a:32:e4:07:0e:cc:b8:94:da:bd:4c:a9:09:67:c2: c4:b8:32:8e:fb:de:5d:02:a1:0f:6d:81:54:18:61: 0e:c4:f5:e1:30:82:6f:67:0a:2a:48:6f:7f:23:54: 6f:de:02:8f:8b:43:2e:1d:66:c2:d3:71:56:5a:db: e5:0a:60:e0:6c:fc:60:6f:66:87:cd:06:b7:22:6f: b8:e0:2e:4a:2c:39:86:77:d7:a5:e3:d7:39:88:0a: 32:b7:4a:d8:4c:06:fe:d1:94:15:33:20:54:ce:24: 38:2c:38:28:27:3b:0d:f2:5a:3b:f4:27:76:da:c9: 1c:15:f6:63:d9:b5:92:c0:42:48:e6:89:35:96:28: 57:f0:98:bc:81:84:f6:94:2f:77:bc:80:7d:78:eb: 84:51:7a:50:9c:ef:11:cb:75:47:55:50:56:ff:57: 5a:91:79:dc:ba:88:3c:75:a2:86:78:6b:34:5b:0c: 3e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:49:CD:3D:61:0E:F2:FC:B9:0C:68:1D:B3:74:51:A6:75:6A:BE:37 X509v3 Authority Key Identifier: keyid:67:71:98:61:22:66:77:7D:83:A2:DB:4A:1E:9E:14:7C:72:A5:D7:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/Z3GYYSJmd32DottKHp4UfHKl120.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z3GYYSJmd32DottKHp4UfHKl120.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/493/d0nNPWEO8vy5DGgds3RRpnVqvjc.roa sbgp-ipAddrBlock: critical IPv4: 202.8.48.0/20 Signature Algorithm: sha256WithRSAEncryption 45:9a:66:6d:a6:72:6e:31:0d:0f:51:ef:58:a7:b7:9e:a4:f9: a4:b1:62:f4:b1:28:99:c4:26:b1:99:5a:7f:2a:31:3d:95:8b: 9b:08:bd:ce:be:d6:f9:9b:53:d5:60:8a:74:df:e1:5e:5b:65: d8:df:6a:4e:c9:f4:88:2b:4b:42:82:87:85:59:1b:da:3f:82: e1:16:b3:6a:7f:f0:c3:03:56:e4:4c:ea:96:9a:88:ca:cd:06: 07:fc:8e:37:38:38:09:47:f0:c5:93:a1:93:91:58:2b:43:3c: 60:97:fb:5d:31:af:a9:9d:51:89:ad:db:94:54:78:7a:17:1c: 84:36:9d:df:b5:4e:c5:96:16:70:16:2a:e6:64:ff:51:be:47: 13:91:03:48:53:af:b3:7b:ca:9c:2e:c0:b5:cc:66:48:4a:26: f4:28:b3:76:af:15:11:d4:fd:98:9b:72:39:f1:8a:3b:d4:bc: 3b:5e:1c:77:cd:b5:e9:fd:d2:60:b7:73:9c:34:97:27:e8:ce: 83:34:04:a4:0a:3d:df:b6:d3:52:ad:ce:a7:5e:7b:d8:fc:e1: fa:9b:29:e2:e6:f6:19:14:87:95:44:08:b1:af:19:46:88:49: f8:2d:b6:8f:d9:46:03:90:34:e8:0c:1b:f4:2a:b4:b9:eb:8d: 7d:14:e4:42 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Nzcx OTg2MTIyNjY3NzdEODNBMkRCNEExRTlFMTQ3QzcyQTVENzZEMB4XDTI2MDMzMTA4 NDkyNloXDTI3MDMyNDAxNDYwNlowMzExMC8GA1UEAxMoNzc0OUNEM0Q2MTBFRjJG Q0I5MEM2ODFEQjM3NDUxQTY3NTZBQkUzNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALNWuCW2w3Hi2RTdke9OqYi1d+eHXY9JUVo5/bDsAfrXCeeDSUyc Zbl64oGNU3p6KO/QG4ZlmiHsDPRwsa9TwNUJg3Acgb2oV8CgGjLkBw7MuJTavUyp CWfCxLgyjvveXQKhD22BVBhhDsT14TCCb2cKKkhvfyNUb94Cj4tDLh1mwtNxVlrb 5Qpg4Gz8YG9mh80GtyJvuOAuSiw5hnfXpePXOYgKMrdK2EwG/tGUFTMgVM4kOCw4 KCc7DfJaO/QndtrJHBX2Y9m1ksBCSOaJNZYoV/CYvIGE9pQvd7yAfXjrhFF6UJzv Ect1R1VQVv9XWpF53LqIPHWihnhrNFsMPlkCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBR3Sc09YQ7y/LkMaB2zdFGmdWq+NzAfBgNVHSMEGDAWgBRncZhhImZ3fYOi20oe nhR8cqXXbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDkzL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhLbDEyMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ozR1lZU0ptZDMyRG90dEtIcDRVZkhL bDEyMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80OTMvZDBuTlBXRU84dnk1REdnZHMzUlJwblZxdmpjLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMoIMDANBgkqhkiG9w0BAQsFAAOCAQEA RZpmbaZybjEND1HvWKe3nqT5pLFi9LEomcQmsZlafyoxPZWLmwi9zr7W+ZtT1WCK dN/hXltl2N9qTsn0iCtLQoKHhVkb2j+C4Razan/wwwNW5EzqlpqIys0GB/yONzg4 CUfwxZOhk5FYK0M8YJf7XTGvqZ1Ria3blFR4ehcchDad37VOxZYWcBYq5mT/Ub5H E5EDSFOvs3vKnC7AtcxmSEom9Cizdq8VEdT9mJtyOfGKO9S8O14cd8216f3SYLdz nDSXJ+jOgzQEpAo937bTUq3Op1572Pzh+psp4ub2GRSHlUQIsa8ZRohJ+C22j9lG A5A06Awb9Cq0ueuNfRTkQg== -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:07 2026 by rpki-client