$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/677/pP-9bisDDhB-CwiE0UZFPyW5Nlw.roa File: pP-9bisDDhB-CwiE0UZFPyW5Nlw.roa (raw, json) Hash identifier: 8xQyVNrjXWB7i6WHfwYP6Ie7AUdFD+NwJuXcMuVqkfw= Subject key identifier: A4:FF:BD:6E:2B:03:0E:10:7E:0B:08:84:D1:46:45:3F:25:B9:36:5C Certificate issuer: /CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Certificate serial: 1C Authority key identifier: 85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/pP-9bisDDhB-CwiE0UZFPyW5Nlw.roa Signing time: Tue 31 Mar 2026 08:45:54 +0000 ROA not before: Tue 31 Mar 2026 08:45:55 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18070 IP address blocks: 117.102.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Validity Not Before: Mar 31 08:45:55 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A4FFBD6E2B030E107E0B0884D146453F25B9365C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b1:24:f8:45:76:04:ad:41:65:70:48:e2:d4: 0d:85:7d:80:9f:54:31:d9:ec:32:5c:16:2f:30:56: cc:a5:84:f5:1e:11:3e:b2:2b:cc:aa:0c:e9:ec:16: 3d:a5:67:9c:20:92:1f:09:22:36:97:7b:ee:ba:90: 8d:70:c5:e2:d8:04:3a:84:47:33:06:7e:b1:5c:47: 2b:da:de:e2:d4:19:1f:80:77:5a:09:2c:9c:d0:e0: e7:47:3f:dd:54:b3:59:b6:a0:f2:04:17:cc:e1:bb: d4:9a:fe:4f:d4:ec:28:dc:70:6e:bc:f9:fa:41:99: 01:b3:a5:7c:b2:bf:71:b4:c1:b6:4e:ce:ec:3f:fc: 0c:9c:4f:60:0d:58:f3:06:8c:d9:1e:cb:39:43:06: de:0d:3d:d0:3f:c4:c2:0b:62:53:67:40:59:a7:52: c1:e8:49:a4:f1:59:17:f6:f7:a3:79:e5:e9:3c:41: 04:7f:ad:c3:5b:8a:67:4c:49:36:a2:38:4a:a1:30: af:a8:b5:0a:40:ca:97:5e:7a:4d:35:d2:63:40:8d: a5:0a:9c:b4:94:63:16:4a:09:48:3f:be:96:b1:16: 35:b5:4d:56:9d:35:ea:03:74:97:9b:76:bc:25:9e: b5:03:da:f1:c6:06:99:ce:27:bb:b9:f2:1c:9f:3e: 06:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:FF:BD:6E:2B:03:0E:10:7E:0B:08:84:D1:46:45:3F:25:B9:36:5C X509v3 Authority Key Identifier: keyid:85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/pP-9bisDDhB-CwiE0UZFPyW5Nlw.roa sbgp-ipAddrBlock: critical IPv4: 117.102.168.0/21 Signature Algorithm: sha256WithRSAEncryption 35:c4:1f:09:e0:45:f1:df:47:bb:32:f8:e7:82:a6:55:14:31: 86:16:0a:a9:a3:12:8f:98:6c:8b:03:4b:6b:69:37:08:cd:b9: 77:26:1f:2c:6e:c6:72:cc:df:89:39:3e:b4:5e:be:ea:36:4f: be:4a:6d:17:bd:3d:ce:2d:8f:42:84:cc:70:91:d2:1f:c6:bd: aa:86:ce:d8:08:04:a6:46:86:dc:5e:07:95:be:d0:e2:16:7a: 07:4b:5c:1d:a4:2d:79:6e:b3:b6:83:13:03:af:7d:93:78:2c: 04:f6:24:c6:0d:a8:9d:2f:5c:de:68:02:40:62:e2:cf:af:84: 00:56:0c:49:33:09:63:a1:2c:50:05:98:50:58:87:df:dd:61: e8:93:a4:cc:f8:ae:31:4a:20:f0:1d:e4:35:9b:85:50:1b:16: d8:86:ed:5d:15:cf:ec:14:a2:d2:a2:fa:dc:c8:d9:b4:60:6c: 30:2d:80:cb:ad:ab:dd:89:0d:e1:b3:06:4c:f1:e5:26:39:ea: f4:64:f5:fa:c1:36:73:aa:5f:cb:93:31:c9:4c:f4:14:db:c1: 30:07:1b:fb:c5:ee:af:66:9b:34:8c:31:90:d3:82:4d:a8:fb: 09:81:a4:6d:b8:93:e5:ea:22:44:fd:d9:43:2a:59:1d:42:82: 89:8f:3c:25 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUU1 RjE4RDk2MzFDMjU4N0IwOTRFNzhDREQ0RTFCODY1MEY0Q0I5MB4XDTI2MDMzMTA4 NDU1NVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTRGRkJENkUyQjAzMEUx MDdFMEIwODg0RDE0NjQ1M0YyNUI5MzY1QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKqxJPhFdgStQWVwSOLUDYV9gJ9UMdnsMlwWLzBWzKWE9R4RPrIr zKoM6ewWPaVnnCCSHwkiNpd77rqQjXDF4tgEOoRHMwZ+sVxHK9re4tQZH4B3Wgks nNDg50c/3VSzWbag8gQXzOG71Jr+T9TsKNxwbrz5+kGZAbOlfLK/cbTBtk7O7D/8 DJxPYA1Y8waM2R7LOUMG3g090D/EwgtiU2dAWadSwehJpPFZF/b3o3nl6TxBBH+t w1uKZ0xJNqI4SqEwr6i1CkDKl156TTXSY0CNpQqctJRjFkoJSD++lrEWNbVNVp01 6gN0l5t2vCWetQPa8cYGmc4nu7nyHJ8+BsECAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSk/71uKwMOEH4LCITRRkU/Jbk2XDAfBgNVHSMEGDAWgBSF5fGNljHCWHsJTnjN 1OG4ZQ9MuTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc3L2hlWHhqWll4d2xoN0NVNTR6ZFRodUdVUFRMay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hlWHhqWll4d2xoN0NVNTR6ZFRodUdV UFRMay5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82NzcvcFAtOWJpc0REaEItQ3dpRTBVWkZQeVc1Tmx3LnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3VmqDANBgkqhkiG9w0BAQsFAAOCAQEA NcQfCeBF8d9HuzL454KmVRQxhhYKqaMSj5hsiwNLa2k3CM25dyYfLG7GcszfiTk+ tF6+6jZPvkptF709zi2PQoTMcJHSH8a9qobO2AgEpkaG3F4Hlb7Q4hZ6B0tcHaQt eW6ztoMTA699k3gsBPYkxg2onS9c3mgCQGLiz6+EAFYMSTMJY6EsUAWYUFiH391h 6JOkzPiuMUog8B3kNZuFUBsW2IbtXRXP7BSi0qL63MjZtGBsMC2Ay62r3YkN4bMG TPHlJjnq9GT1+sE2c6pfy5MxyUz0FNvBMAcb+8Xur2abNIwxkNOCTaj7CYGkbbiT 5eoiRP3ZQypZHUKCiY88JQ== -----END CERTIFICATE-----Generated at Tue Apr 7 19:40:11 2026 by rpki-client