$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/vFiyT8B_Kfm1EiNusLtM8bXhXZc.roa File: vFiyT8B_Kfm1EiNusLtM8bXhXZc.roa (raw, json) Hash identifier: 9Y/kKiC5pcFB9hZk3qD9xiQ+4SPjPq36Lwf7jxwdmD4= Subject key identifier: BC:58:B2:4F:C0:7F:29:F9:B5:12:23:6E:B0:BB:4C:F1:B5:E1:5D:97 Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 81 Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/vFiyT8B_Kfm1EiNusLtM8bXhXZc.roa Signing time: Tue 31 Mar 2026 07:32:06 +0000 ROA not before: Tue 31 Mar 2026 07:32:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 59125 IP address blocks: 1.21.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 14:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Mar 31 07:32:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=BC58B24FC07F29F9B512236EB0BB4CF1B5E15D97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:59:f4:99:b9:a0:67:0b:50:cc:d1:d1:80:61: 33:6b:3d:97:b9:da:1f:95:68:59:99:63:dc:fd:19: 1b:da:12:a5:de:ad:a9:85:0a:2d:e2:67:40:73:72: f0:3c:a8:4b:db:8e:84:40:d6:51:b7:67:1b:eb:96: 4d:11:51:93:0e:f5:f9:f3:1a:1f:98:23:3d:73:df: 6d:79:ba:54:03:71:34:94:c4:e0:ef:16:7b:de:23: 8e:76:6b:81:56:9f:4d:27:19:09:f6:4c:33:41:e4: 9a:62:28:6b:53:49:45:44:3f:f2:cc:c4:6e:da:e7: 0f:1e:0c:f9:cc:07:09:05:e2:3b:c7:ad:ae:a8:59: fc:62:ab:09:58:6c:07:a2:a2:28:da:b6:aa:7d:c0: 6e:e1:26:78:e9:a5:bf:14:7f:8a:00:62:8d:75:c2: 58:38:77:b3:c0:14:f2:3f:10:2a:69:db:2e:8a:b2: 59:ba:ad:e9:b5:cb:65:a8:5f:a5:a4:a9:76:35:55: 19:d1:e4:46:73:06:70:3d:e6:3d:cc:37:78:5b:46: 9f:9a:ea:f4:37:76:2f:32:9d:bf:5e:be:cd:00:b0: dc:61:db:29:86:0b:1a:f2:a4:ed:ea:4f:dc:7e:a8: c6:4a:e0:32:91:23:c7:4e:3c:c4:e7:9e:d1:98:cb: d8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:58:B2:4F:C0:7F:29:F9:B5:12:23:6E:B0:BB:4C:F1:B5:E1:5D:97 X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/vFiyT8B_Kfm1EiNusLtM8bXhXZc.roa sbgp-ipAddrBlock: critical IPv4: 1.21.96.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:d4:ea:94:f1:c3:50:16:11:5f:f4:24:5e:45:56:5f:9d:79: a5:e6:4f:15:a1:3b:ab:53:65:53:2b:f5:ea:66:2c:34:93:a5: d2:18:90:5d:53:8b:89:b1:99:30:94:87:03:1f:f0:8b:c0:30: f9:f1:6b:78:d6:7a:ef:c1:88:39:85:41:4a:ae:82:03:25:75: d8:b5:c2:76:56:0f:a0:53:23:f5:25:f9:6b:d2:fd:cb:01:d3: 89:31:7e:3d:c7:f7:93:e3:8c:2e:23:be:72:1d:ff:d5:d2:53: 38:77:b2:32:70:ca:ff:c2:51:73:6f:a9:02:d5:7d:85:5e:6e: 19:0a:ad:86:76:2f:a9:bb:68:74:0c:56:94:e9:e6:9a:93:31: aa:4f:bb:4c:3a:d5:10:e5:09:1e:d7:1e:d0:45:26:0d:fe:f9: b7:0a:27:65:c4:02:af:c5:38:4a:0c:15:8e:3a:d2:a0:fb:af: eb:13:9c:c8:df:ba:e8:2b:69:2d:af:f9:d3:84:6b:e8:08:de: d9:68:fc:97:e9:6b:3c:5c:12:06:bc:24:bb:de:fd:1b:29:14: 4e:0a:2c:69:83:b3:36:27:d7:f8:10:91:d7:50:8b:0f:09:8b: d7:60:db:53:1e:f7:35:cf:4b:26:0e:7a:74:cd:83:ba:89:7b: 71:b4:09:6d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUIy MEEwNkEyMTIwNTgyMEIyOEZEMDZDRTBBODRGMDNGQ0RBRUJDNTAeFw0yNjAzMzEw NzMyMDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEJDNThCMjRGQzA3RjI5 RjlCNTEyMjM2RUIwQkI0Q0YxQjVFMTVEOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgWfSZuaBnC1DM0dGAYTNrPZe52h+VaFmZY9z9GRvaEqXeramF Ci3iZ0BzcvA8qEvbjoRA1lG3Zxvrlk0RUZMO9fnzGh+YIz1z3215ulQDcTSUxODv FnveI452a4FWn00nGQn2TDNB5JpiKGtTSUVEP/LMxG7a5w8eDPnMBwkF4jvHra6o WfxiqwlYbAeioijatqp9wG7hJnjppb8Uf4oAYo11wlg4d7PAFPI/ECpp2y6Kslm6 rem1y2WoX6WkqXY1VRnR5EZzBnA95j3MN3hbRp+a6vQ3di8ynb9evs0AsNxh2ymG CxrypO3qT9x+qMZK4DKRI8dOPMTnntGYy9jJAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUvFiyT8B/Kfm1EiNusLtM8bXhXZcwHwYDVR0jBBgwFoAUGyCgaiEgWCCyj9Bs 4KhPA/za68UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzMC9HeUNnYWlFZ1dDQ3lqOUJzNEtoUEFfemE2OFUuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9HeUNnYWlFZ1dDQ3lqOUJzNEtoUEFf emE2OFUuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNTMwL3ZGaXlUOEJfS2ZtMUVpTnVzTHRNOGJYaFhaYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQBFWAwDQYJKoZIhvcNAQELBQADggEB AHvU6pTxw1AWEV/0JF5FVl+deaXmTxWhO6tTZVMr9epmLDSTpdIYkF1Ti4mxmTCU hwMf8IvAMPnxa3jWeu/BiDmFQUquggMlddi1wnZWD6BTI/Ul+WvS/csB04kxfj3H 95PjjC4jvnId/9XSUzh3sjJwyv/CUXNvqQLVfYVebhkKrYZ2L6m7aHQMVpTp5pqT MapPu0w61RDlCR7XHtBFJg3++bcKJ2XEAq/FOEoMFY460qD7r+sTnMjfuugraS2v +dOEa+gI3tlo/JfpazxcEga8JLve/RspFE4KLGmDszYn1/gQkddQiw8Ji9dg21Me 9zXPSyYOenTNg7qJe3G0CW0= -----END CERTIFICATE-----Generated at Tue Apr 7 16:28:53 2026 by rpki-client