$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/qcYYKiXIf6SDtxMiPNJTGJtYX1U.roa File: qcYYKiXIf6SDtxMiPNJTGJtYX1U.roa (raw, json) Hash identifier: f0Lx0iTgk2bZ0bbaKP92MKp/U1aDRVzEA9loMPoPN0s= Subject key identifier: A9:C6:18:2A:25:C8:7F:A4:83:B7:13:22:3C:D2:53:18:9B:58:5F:55 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 0210 Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/qcYYKiXIf6SDtxMiPNJTGJtYX1U.roa Signing time: Tue 31 Mar 2026 07:35:39 +0000 ROA not before: Tue 31 Mar 2026 07:35:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2497 IP address blocks: 220.208.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Mar 31 07:35:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A9C6182A25C87FA483B713223CD253189B585F55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d5:ff:0d:c4:9a:88:50:79:fb:85:4c:90:ec: 7d:f7:34:d0:17:9c:3b:c6:d9:22:61:f4:d1:25:43: 1d:a1:68:53:e9:a4:78:c8:8c:77:49:c7:63:4e:27: 43:7e:c7:0e:ff:78:71:a1:9b:91:f9:c7:28:19:b0: 0c:19:fb:f7:26:c0:47:53:c7:c9:e1:0a:08:fa:51: 39:d5:c9:23:7d:f9:69:ad:43:ed:cc:f8:b3:6b:8a: 32:7d:79:0d:81:fb:5e:b4:ab:18:91:92:5a:6f:f3: 36:46:49:84:c5:99:0a:c1:42:f7:0b:7f:2e:ad:c9: 78:0f:bc:cc:51:58:d9:74:ee:9c:80:91:24:00:34: 9c:a8:12:91:4b:4d:a7:80:ea:bd:a9:0b:a0:fc:34: 4e:72:44:5e:b0:8e:f9:05:fd:6a:cd:bb:49:39:a5: 88:b7:c3:db:f3:9a:2c:1b:3c:a1:86:db:4a:a3:be: d8:d0:b5:cd:7e:a3:3d:08:b3:d2:b1:9b:73:1f:9d: 87:55:5c:0d:f1:27:c2:0e:68:97:47:31:4c:d3:5f: 79:8d:03:a6:00:59:34:a9:b1:88:7a:4d:f1:58:75: aa:1a:8f:6b:da:7a:7f:ef:35:74:b7:90:94:1e:0d: 41:7c:8b:c3:b9:7d:8e:a4:49:c3:24:b3:63:28:0a: 8d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C6:18:2A:25:C8:7F:A4:83:B7:13:22:3C:D2:53:18:9B:58:5F:55 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/qcYYKiXIf6SDtxMiPNJTGJtYX1U.roa sbgp-ipAddrBlock: critical IPv4: 220.208.192.0/19 Signature Algorithm: sha256WithRSAEncryption 81:43:63:6c:19:cc:e0:dc:f9:98:49:8d:4c:d6:21:63:0f:ae: 57:30:9c:66:86:e1:66:c8:d0:01:9f:df:4a:e6:01:05:90:9e: a4:9f:e1:cb:6b:81:90:b6:97:9c:08:8a:26:0c:3e:fc:84:54: 02:e8:22:c8:16:a9:b8:8f:d3:e3:9d:d3:0a:13:96:7e:d4:61: f4:12:c1:db:9d:85:17:e8:2b:c8:39:d0:cf:58:21:d9:ee:1c: b6:51:5a:85:67:72:0d:c7:9e:c9:c3:47:4a:ec:9b:08:7b:ae: 7b:b5:9d:ce:7e:12:9e:62:e3:32:18:1a:5a:6a:7a:e9:4d:2b: 3a:74:25:cd:f4:91:40:50:fb:58:22:3e:6f:23:c6:09:09:f7: 1b:97:57:e0:5c:de:6b:73:19:ef:4e:4f:e3:a0:dd:a7:8e:d4: 2d:2e:fd:ab:2b:cf:a4:4b:03:ac:3c:2b:51:93:0d:1e:70:5a: c2:72:31:6a:9d:c2:30:aa:fb:d5:e2:07:1d:74:cf:5a:bb:d8: 3a:73:5c:cb:14:d6:19:5d:1a:6d:d1:54:3b:e2:cc:3c:23:c9: e9:a8:0c:85:97:63:cb:09:d7:26:48:2d:d6:e3:a1:95:47:86: e7:9c:b1:a7:0b:db:b1:f9:e8:2c:fa:1b:39:2b:d9:46:76:a2: 84:7a:4d:a2 -----BEGIN CERTIFICATE----- MIIEuTCCA6GgAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNjAzMzEw NzM1MzlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE5QzYxODJBMjVDODdG QTQ4M0I3MTMyMjNDRDI1MzE4OUI1ODVGNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz1f8NxJqIUHn7hUyQ7H33NNAXnDvG2SJh9NElQx2haFPppHjI jHdJx2NOJ0N+xw7/eHGhm5H5xygZsAwZ+/cmwEdTx8nhCgj6UTnVySN9+WmtQ+3M +LNrijJ9eQ2B+160qxiRklpv8zZGSYTFmQrBQvcLfy6tyXgPvMxRWNl07pyAkSQA NJyoEpFLTaeA6r2pC6D8NE5yRF6wjvkF/WrNu0k5pYi3w9vzmiwbPKGG20qjvtjQ tc1+oz0Is9Kxm3MfnYdVXA3xJ8IOaJdHMUzTX3mNA6YAWTSpsYh6TfFYdaoaj2va en/vNXS3kJQeDUF8i8O5fY6kScMks2MoCo1JAgMBAAGjggHVMIIB0TAdBgNVHQ4E FgQUqcYYKiXIf6SDtxMiPNJTGJtYX1UwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUF BzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvcWNZWUtpWElmNlNEdHhNaVBOSlRHSnRZWDFVLnJvYTAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEBdzQwDANBgkqhkiG9w0BAQsFAAOCAQEAgUNj bBnM4Nz5mEmNTNYhYw+uVzCcZobhZsjQAZ/fSuYBBZCepJ/hy2uBkLaXnAiKJgw+ /IRUAugiyBapuI/T453TChOWftRh9BLB252FF+gryDnQz1gh2e4ctlFahWdyDcee ycNHSuybCHuue7Wdzn4SnmLjMhgaWmp66U0rOnQlzfSRQFD7WCI+byPGCQn3G5dX 4Fzea3MZ705P46Ddp47ULS79qyvPpEsDrDwrUZMNHnBawnIxap3CMKr71eIHHXTP WrvYOnNcyxTWGV0abdFUO+LMPCPJ6agMhZdjywnXJkgt1uOhlUeG55yxpwvbsfno LPobOSvZRnaihHpNog== -----END CERTIFICATE-----Generated at Tue Apr 7 13:24:57 2026 by rpki-client