$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/604/apPLM0NKqa9Tsn1f1H1LOMbJB1w.roa File: apPLM0NKqa9Tsn1f1H1LOMbJB1w.roa (raw, json) Hash identifier: zWH3IQptqMd6LOeK8mh3HNYOQxKaLpAb+5jZTHTAfMk= Subject key identifier: 6A:93:CB:33:43:4A:A9:AF:53:B2:7D:5F:D4:7D:4B:38:C6:C9:07:5C Certificate issuer: /CN=84F94F26AD23CBA93655AE34D806A8CE0A4C5907 Certificate serial: 48 Authority key identifier: 84:F9:4F:26:AD:23:CB:A9:36:55:AE:34:D8:06:A8:CE:0A:4C:59:07 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/apPLM0NKqa9Tsn1f1H1LOMbJB1w.roa Signing time: Tue 31 Mar 2026 08:34:20 +0000 ROA not before: Tue 31 Mar 2026 08:34:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17682 IP address blocks: 218.40.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84F94F26AD23CBA93655AE34D806A8CE0A4C5907 Validity Not Before: Mar 31 08:34:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=6A93CB33434AA9AF53B27D5FD47D4B38C6C9075C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dc:1b:6c:36:00:3f:83:e8:82:dd:d2:25:75: 81:5f:32:41:b3:1a:9a:c8:71:5b:25:29:59:d1:5f: fd:12:5d:d5:9f:e0:7a:8e:1e:ff:d6:5b:a0:90:e5: 7d:84:20:bf:b7:87:ea:fc:11:74:d4:1c:a2:2d:f8: d4:1a:52:59:d4:5e:99:87:7c:95:97:2a:0f:80:65: 05:d0:46:b6:69:30:25:c4:1c:78:99:53:c4:95:05: 6e:ce:ae:35:4e:89:d4:ba:f4:68:80:d5:d6:ca:7a: 04:53:d5:af:86:2f:64:18:eb:15:b6:ac:fa:1e:1f: 2c:3d:9d:c7:d0:a5:b9:6d:20:a4:0e:16:d5:3a:81: 7d:19:24:1f:6c:cf:2a:f3:a8:ca:49:e1:0f:5b:4d: 3a:78:ab:a2:25:01:37:9b:12:91:24:40:e9:9e:76: f2:58:48:a5:63:c7:4d:75:e0:85:4b:3c:34:38:e8: af:10:ad:bd:bd:68:d1:3f:43:a1:be:a9:b7:e9:85: 7e:e3:54:cf:21:a8:b0:6b:bb:a0:9b:93:46:eb:cf: a3:6b:8a:c5:7c:ef:fc:4a:29:e0:7f:04:88:0b:06: ca:6e:8c:89:ea:1b:93:bf:93:f1:2b:85:70:23:8b: fa:d7:8e:98:a6:9b:e1:bb:89:b1:f5:3f:4d:70:d0: 0a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:93:CB:33:43:4A:A9:AF:53:B2:7D:5F:D4:7D:4B:38:C6:C9:07:5C X509v3 Authority Key Identifier: keyid:84:F9:4F:26:AD:23:CB:A9:36:55:AE:34:D8:06:A8:CE:0A:4C:59:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/apPLM0NKqa9Tsn1f1H1LOMbJB1w.roa sbgp-ipAddrBlock: critical IPv4: 218.40.88.0/21 Signature Algorithm: sha256WithRSAEncryption d8:72:a0:52:e7:ae:7e:1c:d4:2b:84:28:e7:17:8b:99:99:cc: 26:e0:f1:47:1f:12:34:ba:d0:9a:15:5c:c3:53:0a:30:ae:d1: 99:4d:0c:61:18:a2:f6:d5:dc:eb:9d:c1:df:3a:97:4e:b9:0b: c9:4f:70:38:4e:76:da:f9:dd:0c:b2:19:b5:42:13:0d:02:dc: 32:7f:24:25:30:1a:07:60:88:cd:1d:36:f3:3f:2b:49:89:86: b2:2e:14:8e:5c:fe:fd:99:02:50:a7:9d:af:61:ae:65:75:2b: 4c:27:a3:6b:ae:0b:6a:56:61:00:28:7d:6c:6f:7b:2b:8d:ad: 89:f8:69:3f:1b:53:fd:70:1f:77:99:54:96:48:be:d7:72:42: 7a:9a:d2:cb:b8:a0:d2:a7:b8:ad:b7:df:3a:4b:bd:79:56:51: 8a:8d:d3:33:94:b4:01:28:17:3b:0b:e3:2a:f5:cf:e1:5d:1c: cc:b0:9f:36:69:49:91:f9:64:7a:75:c9:b5:44:23:fe:f7:05: f5:26:c4:f9:d5:97:e4:3e:b6:5b:f8:d9:a0:94:80:31:1f:07: 34:45:e5:ce:e0:64:f8:37:e5:3e:05:c1:6f:31:03:c3:f1:7c: b2:3f:25:31:ea:3a:19:fb:41:13:17:cb:2f:25:fc:cc:de:74: 0c:c4:a3:06 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NEY5 NEYyNkFEMjNDQkE5MzY1NUFFMzREODA2QThDRTBBNEM1OTA3MB4XDTI2MDMzMTA4 MzQyMFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNkE5M0NCMzM0MzRBQTlB RjUzQjI3RDVGRDQ3RDRCMzhDNkM5MDc1QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMrcG2w2AD+D6ILd0iV1gV8yQbMamshxWyUpWdFf/RJd1Z/geo4e /9ZboJDlfYQgv7eH6vwRdNQcoi341BpSWdRemYd8lZcqD4BlBdBGtmkwJcQceJlT xJUFbs6uNU6J1Lr0aIDV1sp6BFPVr4YvZBjrFbas+h4fLD2dx9CluW0gpA4W1TqB fRkkH2zPKvOoyknhD1tNOniroiUBN5sSkSRA6Z528lhIpWPHTXXghUs8NDjorxCt vb1o0T9Dob6pt+mFfuNUzyGosGu7oJuTRuvPo2uKxXzv/Eop4H8EiAsGym6Mieob k7+T8SuFcCOL+teOmKab4buJsfU/TXDQClsCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBRqk8szQ0qpr1OyfV/UfUs4xskHXDAfBgNVHSMEGDAWgBSE+U8mrSPLqTZVrjTY BqjOCkxZBzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjA0L2hQbFBKcTBqeTZrMlZhNDAyQWFvemdwTVdRYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hQbFBKcTBqeTZrMlZhNDAyQWFvemdw TVdRYy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82MDQvYXBQTE0wTktxYTlUc24xZjFIMUxPTWJKQjF3LnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9ooWDANBgkqhkiG9w0BAQsFAAOCAQEA 2HKgUueufhzUK4Qo5xeLmZnMJuDxRx8SNLrQmhVcw1MKMK7RmU0MYRii9tXc653B 3zqXTrkLyU9wOE522vndDLIZtUITDQLcMn8kJTAaB2CIzR028z8rSYmGsi4Ujlz+ /ZkCUKedr2GuZXUrTCeja64LalZhACh9bG97K42tifhpPxtT/XAfd5lUlki+13JC eprSy7ig0qe4rbffOku9eVZRio3TM5S0ASgXOwvjKvXP4V0czLCfNmlJkflkenXJ tUQj/vcF9SbE+dWX5D62W/jZoJSAMR8HNEXlzuBk+DflPgXBbzEDw/F8sj8lMeo6 GftBExfLLyX8zN50DMSjBg== -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:59 2026 by rpki-client