$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/677/LTQfvWYMHKhcYmZtZXRLZL1ooIE.roa File: LTQfvWYMHKhcYmZtZXRLZL1ooIE.roa (raw, json) Hash identifier: ryJ7wdEWcilg7iH79bFr7p2fTaI/wyZZbuAW1Ei4sfM= Subject key identifier: 2D:34:1F:BD:66:0C:1C:A8:5C:62:66:6D:65:74:4B:64:BD:68:A0:81 Certificate issuer: /CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Certificate serial: 17 Authority key identifier: 85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/LTQfvWYMHKhcYmZtZXRLZL1ooIE.roa Signing time: Tue 31 Mar 2026 08:45:53 +0000 ROA not before: Tue 31 Mar 2026 08:45:53 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18070 IP address blocks: 103.215.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Validity Not Before: Mar 31 08:45:53 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2D341FBD660C1CA85C62666D65744B64BD68A081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:9f:13:19:db:d3:6e:96:09:4d:53:b0:38: 9a:88:58:41:b4:a7:fe:15:e8:fe:d4:93:23:c1:7c: 33:78:29:b0:c2:40:c3:51:5f:19:0a:8d:46:76:18: ad:46:47:f0:f0:5a:9d:ca:ae:4c:3b:4a:6f:86:d2: 8b:dc:72:27:a2:4b:5a:57:19:60:d1:69:40:3e:b2: ec:a6:7c:15:20:5d:2c:2c:24:e6:cb:35:35:08:6e: 59:31:16:53:4c:b1:83:2a:57:73:9e:80:7e:1b:bc: 7b:d0:27:70:c7:8c:da:b8:c7:14:b6:8c:0b:b1:43: 7a:42:f9:af:95:f5:0e:56:4f:98:fe:8e:ef:ea:5a: 24:79:29:e7:44:58:70:ee:30:dd:1e:27:23:74:f9: 83:7f:f0:94:d0:33:83:91:4b:fc:1d:f8:c2:4f:2b: f5:cc:66:90:7e:43:6c:fe:22:96:d0:4b:e6:ec:2e: 9f:f1:d2:fd:e9:5e:81:90:e1:6d:26:02:4e:68:a9: 9b:a9:33:50:a5:2a:84:de:7c:6e:4a:1a:34:f7:72: 82:22:c0:e9:71:4b:66:00:ac:8e:07:3c:1b:ec:ff: b2:d7:ba:13:e0:2d:bf:d3:37:ca:21:38:2b:89:41: ed:69:c7:19:9d:b4:a9:34:32:f6:79:60:8c:06:cc: 41:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:34:1F:BD:66:0C:1C:A8:5C:62:66:6D:65:74:4B:64:BD:68:A0:81 X509v3 Authority Key Identifier: keyid:85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/LTQfvWYMHKhcYmZtZXRLZL1ooIE.roa sbgp-ipAddrBlock: critical IPv4: 103.215.84.0/22 Signature Algorithm: sha256WithRSAEncryption 09:37:8a:20:eb:3e:98:6e:04:4a:82:c2:b5:99:05:79:28:33: 80:7f:0e:2b:a0:2b:da:9c:c4:9d:8e:a4:b6:28:f8:88:11:3b: ff:fa:b0:82:fa:8b:c1:8d:a8:b1:91:41:3a:6a:51:68:4b:69: 6e:e7:5b:02:38:5a:ed:72:36:cd:7d:d9:c0:33:ef:bd:ce:8c: ea:89:91:05:65:64:24:69:99:f0:fc:a9:b7:51:0d:01:c1:3b: 8f:d7:56:01:ee:73:06:4f:e0:2f:3d:e8:cf:4f:9b:fb:6a:2c: 04:79:41:61:fd:53:df:99:92:27:e6:8f:4b:c2:a2:a4:c9:b4: d1:5c:ea:f8:13:f6:40:39:a2:41:39:cc:c6:0e:10:ab:9e:51: 19:e5:0f:e2:db:42:cd:6d:fe:cf:23:5b:07:ab:a4:af:41:39: 7a:6f:47:47:1c:25:e2:39:3c:25:80:4b:7f:19:07:66:31:62: 37:d8:ef:a9:2d:40:e2:61:0b:73:73:68:20:c7:69:04:56:98: 79:02:ff:7f:5d:71:93:04:4d:c1:ab:2a:21:2f:57:38:e4:8f: 30:de:22:0d:f8:d7:51:76:9c:9b:5f:45:40:df:bf:71:b3:fd: d3:3a:d3:ae:51:f6:0e:1a:47:36:f6:c2:ed:32:ca:dc:cf:91: 7d:c0:fd:2f -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUU1 RjE4RDk2MzFDMjU4N0IwOTRFNzhDREQ0RTFCODY1MEY0Q0I5MB4XDTI2MDMzMTA4 NDU1M1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMkQzNDFGQkQ2NjBDMUNB ODVDNjI2NjZENjU3NDRCNjRCRDY4QTA4MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALwznxMZ29NulglNU7A4mohYQbSn/hXo/tSTI8F8M3gpsMJAw1Ff GQqNRnYYrUZH8PBancquTDtKb4bSi9xyJ6JLWlcZYNFpQD6y7KZ8FSBdLCwk5ss1 NQhuWTEWU0yxgypXc56Afhu8e9AncMeM2rjHFLaMC7FDekL5r5X1DlZPmP6O7+pa JHkp50RYcO4w3R4nI3T5g3/wlNAzg5FL/B34wk8r9cxmkH5DbP4iltBL5uwun/HS /elegZDhbSYCTmipm6kzUKUqhN58bkoaNPdygiLA6XFLZgCsjgc8G+z/ste6E+At v9M3yiE4K4lB7WnHGZ20qTQy9nlgjAbMQYMCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQtNB+9ZgwcqFxiZm1ldEtkvWiggTAfBgNVHSMEGDAWgBSF5fGNljHCWHsJTnjN 1OG4ZQ9MuTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc3L2hlWHhqWll4d2xoN0NVNTR6ZFRodUdVUFRMay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hlWHhqWll4d2xoN0NVNTR6ZFRodUdV UFRMay5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82NzcvTFRRZnZXWU1IS2hjWW1adFpYUkxaTDFvb0lFLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfXVDANBgkqhkiG9w0BAQsFAAOCAQEA CTeKIOs+mG4ESoLCtZkFeSgzgH8OK6Ar2pzEnY6ktij4iBE7//qwgvqLwY2osZFB OmpRaEtpbudbAjha7XI2zX3ZwDPvvc6M6omRBWVkJGmZ8Pypt1ENAcE7j9dWAe5z Bk/gLz3oz0+b+2osBHlBYf1T35mSJ+aPS8KipMm00Vzq+BP2QDmiQTnMxg4Qq55R GeUP4ttCzW3+zyNbB6ukr0E5em9HRxwl4jk8JYBLfxkHZjFiN9jvqS1A4mELc3No IMdpBFaYeQL/f11xkwRNwasqIS9XOOSPMN4iDfjXUXacm19FQN+/cbP90zrTrlH2 DhpHNvbC7TLK3M+RfcD9Lw== -----END CERTIFICATE-----Generated at Tue Apr 7 19:39:16 2026 by rpki-client