$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/800/1UDqbFqwiq5oKbA3oH7Z0tBSrOg.roa File: 1UDqbFqwiq5oKbA3oH7Z0tBSrOg.roa (raw, json) Hash identifier: v7z1weJUnxFyNTWHlVG4h5iHETAy8Ylx5o0C6bhJGII= Subject key identifier: D5:40:EA:6C:5A:B0:8A:AE:68:29:B0:37:A0:7E:D9:D2:D0:52:AC:E8 Certificate issuer: /CN=084F88D837A2A2132EA8F6F8F2DB82C1C1E90A8B Certificate serial: 4A Authority key identifier: 08:4F:88:D8:37:A2:A2:13:2E:A8:F6:F8:F2:DB:82:C1:C1:E9:0A:8B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/1UDqbFqwiq5oKbA3oH7Z0tBSrOg.roa Signing time: Tue 31 Mar 2026 08:35:39 +0000 ROA not before: Tue 31 Mar 2026 08:35:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18278 IP address blocks: 210.251.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/CE-I2DeiohMuqPb48tuCwcHpCos.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/CE-I2DeiohMuqPb48tuCwcHpCos.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084F88D837A2A2132EA8F6F8F2DB82C1C1E90A8B Validity Not Before: Mar 31 08:35:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D540EA6C5AB08AAE6829B037A07ED9D2D052ACE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f3:85:99:35:31:0a:1d:38:3e:67:04:cb:4b: 3a:59:ed:b0:cb:b0:67:e5:6f:8d:93:a7:7c:72:bc: dd:bc:5f:aa:d6:bb:42:d6:7e:1e:47:8e:f6:9c:73: 90:b7:ac:1b:2b:15:1c:d4:79:23:88:ee:26:d4:4e: fb:5a:60:9f:ac:0c:b5:83:70:6e:a1:6c:1f:2c:4b: 72:1e:82:85:0f:10:0c:0f:fa:9f:4c:89:49:0c:f4: 1c:66:82:5f:5f:3b:b5:18:b0:30:74:50:97:19:26: 3d:e8:9a:03:3a:13:d6:a9:1b:73:ff:9f:a5:8c:88: 7f:19:26:88:07:4f:25:21:38:6e:76:49:a5:fe:f2: 97:69:9d:50:42:e0:d0:66:59:8a:09:84:cb:c0:6f: 6f:c3:51:00:6e:dc:11:84:f7:2b:83:dc:ce:6d:96: dd:63:a5:f8:11:0a:f5:db:b3:bf:bb:35:cb:b4:e8: 3e:77:e1:f1:66:94:27:45:51:1c:86:5d:7a:75:3c: 68:55:9b:0a:57:ef:34:ac:31:16:24:a9:bc:92:b7: 90:b2:8e:82:34:e5:1b:2f:0a:9d:16:ab:e0:21:a2: 3e:d4:d6:88:06:35:ff:57:af:36:c7:a9:10:61:ed: 6b:fc:da:f2:97:8e:7e:3f:77:5c:d9:99:88:40:3c: 19:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:40:EA:6C:5A:B0:8A:AE:68:29:B0:37:A0:7E:D9:D2:D0:52:AC:E8 X509v3 Authority Key Identifier: keyid:08:4F:88:D8:37:A2:A2:13:2E:A8:F6:F8:F2:DB:82:C1:C1:E9:0A:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/CE-I2DeiohMuqPb48tuCwcHpCos.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/1UDqbFqwiq5oKbA3oH7Z0tBSrOg.roa sbgp-ipAddrBlock: critical IPv4: 210.251.176.0/20 Signature Algorithm: sha256WithRSAEncryption 9e:eb:f1:d4:19:c2:6b:db:ec:ac:cc:5f:ca:cf:f6:db:e0:04: 03:c9:e9:9f:6c:a5:00:12:f7:a0:72:6f:29:89:8c:32:62:2d: 6f:73:ed:84:58:91:14:6f:64:f3:6a:f8:11:79:ce:b6:b3:f1: f3:4b:00:a5:b2:c3:a0:5f:e6:78:30:d8:97:70:8d:f8:bd:b2: 15:62:76:a9:aa:a7:58:f4:e7:4b:43:93:a5:fa:ab:6b:0b:07: 8f:49:f1:98:ba:93:55:61:c0:43:e6:40:fe:9a:17:6c:9f:c3: 81:8f:e7:f5:49:f2:c5:35:b3:ae:ed:29:84:84:9b:3b:9c:0c: fc:e7:4b:e0:ab:5a:77:07:f4:1a:61:5d:05:cb:86:5b:cf:f5: ba:7e:ae:5d:39:06:f8:36:9b:2d:38:b2:1a:dd:bc:b7:de:23: c4:9a:bd:1d:4b:64:96:4c:35:26:38:2a:aa:c7:80:10:17:45: 5a:cd:0d:66:a2:bd:54:e4:3a:52:ba:3e:fc:c6:26:2f:3d:06: ff:a9:fe:56:6b:a1:2d:30:23:82:41:76:91:a9:2d:f1:cf:dc: 9b:e2:9c:34:82:3c:ac:47:50:9c:74:4d:9b:66:fe:09:8b:3b: 3b:f2:3e:df:a9:db:3c:1d:89:dd:69:bd:df:b0:ef:77:79:f0: ec:74:76:cd -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwODRG ODhEODM3QTJBMjEzMkVBOEY2RjhGMkRCODJDMUMxRTkwQThCMB4XDTI2MDMzMTA4 MzUzOVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRDU0MEVBNkM1QUIwOEFB RTY4MjlCMDM3QTA3RUQ5RDJEMDUyQUNFODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL7zhZk1MQodOD5nBMtLOlntsMuwZ+VvjZOnfHK83bxfqta7QtZ+ HkeO9pxzkLesGysVHNR5I4juJtRO+1pgn6wMtYNwbqFsHyxLch6ChQ8QDA/6n0yJ SQz0HGaCX187tRiwMHRQlxkmPeiaAzoT1qkbc/+fpYyIfxkmiAdPJSE4bnZJpf7y l2mdUELg0GZZigmEy8Bvb8NRAG7cEYT3K4Pczm2W3WOl+BEK9duzv7s1y7ToPnfh 8WaUJ0VRHIZdenU8aFWbClfvNKwxFiSpvJK3kLKOgjTlGy8KnRar4CGiPtTWiAY1 /1evNsepEGHta/za8peOfj93XNmZiEA8Gf8CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBTVQOpsWrCKrmgpsDegftnS0FKs6DAfBgNVHSMEGDAWgBQIT4jYN6KiEy6o9vjy 24LBwekKizAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODAwL0NFLUkyRGVpb2hNdXFQYjQ4dHVDd2NIcENvcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NFLUkyRGVpb2hNdXFQYjQ4dHVDd2NI cENvcy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC84MDAvMVVEcWJGcXdpcTVvS2JBM29IN1owdEJTck9nLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNL7sDANBgkqhkiG9w0BAQsFAAOCAQEA nuvx1BnCa9vsrMxfys/22+AEA8npn2ylABL3oHJvKYmMMmItb3PthFiRFG9k82r4 EXnOtrPx80sApbLDoF/meDDYl3CN+L2yFWJ2qaqnWPTnS0OTpfqrawsHj0nxmLqT VWHAQ+ZA/poXbJ/DgY/n9UnyxTWzru0phISbO5wM/OdL4Ktadwf0GmFdBcuGW8/1 un6uXTkG+DabLTiyGt28t94jxJq9HUtklkw1JjgqqseAEBdFWs0NZqK9VOQ6Uro+ /MYmLz0G/6n+VmuhLTAjgkF2kakt8c/cm+KcNII8rEdQnHRNm2b+CYs7O/I+36nb PB2J3Wm937Dvd3nw7HR2zQ== -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:33 2026 by rpki-client