$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/677/nRiz7eJr9VqVU0oO9Jv4uiSKdbU.roa File: nRiz7eJr9VqVU0oO9Jv4uiSKdbU.roa (raw, json) Hash identifier: FO0D4yJ6H9a9XkL+HHNSaDQzbMvVTMKmDXJ4ds+BnmY= Subject key identifier: 9D:18:B3:ED:E2:6B:F5:5A:95:53:4A:0E:F4:9B:F8:BA:24:8A:75:B5 Certificate issuer: /CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Certificate serial: 1A Authority key identifier: 85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/nRiz7eJr9VqVU0oO9Jv4uiSKdbU.roa Signing time: Tue 31 Mar 2026 08:45:54 +0000 ROA not before: Tue 31 Mar 2026 08:45:54 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18070 IP address blocks: 221.120.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Validity Not Before: Mar 31 08:45:54 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9D18B3EDE26BF55A95534A0EF49BF8BA248A75B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ef:6d:81:89:8e:f3:65:78:b0:2e:f5:52:e5: a0:13:1c:62:95:57:82:17:f5:1b:72:fc:bd:3e:77: 3a:1e:91:18:ae:e5:d0:97:3d:17:9b:09:c9:a0:cd: 29:29:3e:29:c2:7d:72:cc:47:db:bc:d2:2d:af:75: 0a:94:14:37:20:f9:b6:19:cd:9c:0f:b9:13:af:32: 3f:3e:7b:4e:f5:90:c3:ee:66:7d:44:b7:01:a6:b6: 53:bd:2a:b2:24:e0:ec:89:bd:1f:22:9a:80:45:9d: a7:12:79:a3:e1:33:9f:7d:f7:ae:e4:9d:a1:65:d9: 31:4b:03:73:8a:1d:cd:82:46:fb:a9:d6:6e:68:c0: a4:1c:63:35:72:d0:91:01:cf:7d:5c:89:e3:d7:73: 77:48:88:5d:3c:7e:c5:2c:61:fb:f2:50:40:cb:45: 81:0e:38:89:cd:08:8f:19:c3:9e:72:8a:89:d4:8f: 53:80:b8:b6:aa:62:b2:50:27:1b:e1:fd:32:57:27: c4:19:ef:33:54:13:8c:a8:ee:3b:bf:4c:c5:33:e8: fc:46:17:75:22:1a:c3:fc:ff:19:42:8d:ba:b4:00: 20:0c:a8:37:61:7f:30:5a:29:48:a1:da:0e:e3:27: e4:4c:3b:f4:f9:7b:88:25:0d:fa:ea:94:1c:68:8f: 51:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:18:B3:ED:E2:6B:F5:5A:95:53:4A:0E:F4:9B:F8:BA:24:8A:75:B5 X509v3 Authority Key Identifier: keyid:85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/nRiz7eJr9VqVU0oO9Jv4uiSKdbU.roa sbgp-ipAddrBlock: critical IPv4: 221.120.168.0/21 Signature Algorithm: sha256WithRSAEncryption 72:60:e8:de:f8:fd:e2:6e:1b:ec:ab:c8:8a:15:18:ae:0e:d6: 3d:b5:cb:e9:38:35:55:be:fd:63:38:8c:8c:b5:36:f2:ce:cc: 93:63:e7:df:1a:bc:59:b3:4d:45:4a:6f:f4:d0:3a:07:f5:8e: 58:c1:59:22:b3:87:06:8e:1c:94:33:1b:b2:72:8c:3b:8f:e1: 66:ed:c3:8b:4b:38:a6:b7:36:6e:c3:65:ac:1a:af:df:ba:9f: c1:fb:9c:74:c1:3d:f0:49:8b:4a:60:f9:d9:ee:ae:46:b5:a6: 28:a3:9f:6b:4e:23:6b:de:a3:31:3b:41:aa:5b:e3:2f:d3:34: 3f:ee:67:cc:39:f8:42:3a:f6:26:f8:06:08:cb:89:16:a4:5e: 72:e7:db:cb:a9:79:a4:26:d2:55:e8:67:f5:00:9f:bd:e2:3c: fa:dc:d2:c5:0b:1a:5b:4c:9d:4f:6a:20:31:36:ee:09:1e:d1: 55:4b:71:c7:50:da:27:c9:42:3e:54:28:b7:42:8e:e8:05:89: df:a8:d5:70:cb:74:a0:7c:81:b8:87:55:be:02:47:7e:eb:1a: a7:b1:02:b9:dc:e3:b1:9e:4c:c5:59:6b:da:b5:2e:56:25:3d: 03:ae:52:ac:d7:5f:c3:fb:eb:c1:92:43:f5:1a:a9:b5:cf:da: 48:f0:32:a4 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUU1 RjE4RDk2MzFDMjU4N0IwOTRFNzhDREQ0RTFCODY1MEY0Q0I5MB4XDTI2MDMzMTA4 NDU1NFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOUQxOEIzRURFMjZCRjU1 QTk1NTM0QTBFRjQ5QkY4QkEyNDhBNzVCNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMDvbYGJjvNleLAu9VLloBMcYpVXghf1G3L8vT53Oh6RGK7l0Jc9 F5sJyaDNKSk+KcJ9csxH27zSLa91CpQUNyD5thnNnA+5E68yPz57TvWQw+5mfUS3 Aaa2U70qsiTg7Im9HyKagEWdpxJ5o+Ezn333ruSdoWXZMUsDc4odzYJG+6nWbmjA pBxjNXLQkQHPfVyJ49dzd0iIXTx+xSxh+/JQQMtFgQ44ic0IjxnDnnKKidSPU4C4 tqpislAnG+H9MlcnxBnvM1QTjKjuO79MxTPo/EYXdSIaw/z/GUKNurQAIAyoN2F/ MFopSKHaDuMn5Ew79Pl7iCUN+uqUHGiPUT0CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSdGLPt4mv1WpVTSg70m/i6JIp1tTAfBgNVHSMEGDAWgBSF5fGNljHCWHsJTnjN 1OG4ZQ9MuTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc3L2hlWHhqWll4d2xoN0NVNTR6ZFRodUdVUFRMay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hlWHhqWll4d2xoN0NVNTR6ZFRodUdV UFRMay5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82NzcvblJpejdlSnI5VnFWVTBvTzlKdjR1aVNLZGJVLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA914qDANBgkqhkiG9w0BAQsFAAOCAQEA cmDo3vj94m4b7KvIihUYrg7WPbXL6Tg1Vb79YziMjLU28s7Mk2Pn3xq8WbNNRUpv 9NA6B/WOWMFZIrOHBo4clDMbsnKMO4/hZu3Di0s4prc2bsNlrBqv37qfwfucdME9 8EmLSmD52e6uRrWmKKOfa04ja96jMTtBqlvjL9M0P+5nzDn4Qjr2JvgGCMuJFqRe cufby6l5pCbSVehn9QCfveI8+tzSxQsaW0ydT2ogMTbuCR7RVUtxx1DaJ8lCPlQo t0KO6AWJ36jVcMt0oHyBuIdVvgJHfusap7ECudzjsZ5MxVlr2rUuViU9A65SrNdf w/vrwZJD9Rqptc/aSPAypA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:40:09 2026 by rpki-client