$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/DRTYkSgvDP_wfKr5m-BPIA2Mmo8.roa File: DRTYkSgvDP_wfKr5m-BPIA2Mmo8.roa (raw, json) Hash identifier: 0lp16Wzc1jMQakB8FTHoIvoPtDCqSOHzs0GD01b030E= Subject key identifier: 0D:14:D8:91:28:2F:0C:FF:F0:7C:AA:F9:9B:E0:4F:20:0D:8C:9A:8F Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554 Certificate serial: 6B Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/DRTYkSgvDP_wfKr5m-BPIA2Mmo8.roa Signing time: Tue 31 Mar 2026 08:15:39 +0000 ROA not before: Tue 31 Mar 2026 08:15:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 131934 IP address blocks: 222.229.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D79B3890C2DA3795148976B954C2024056797554 Validity Not Before: Mar 31 08:15:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0D14D891282F0CFFF07CAAF99BE04F200D8C9A8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e1:46:57:46:96:b2:6b:a5:11:2f:1b:09:d1: 84:76:4d:8a:eb:ab:f6:36:f8:26:b5:e8:47:2e:7f: d1:65:97:7e:1a:b4:51:39:97:42:58:17:eb:b9:5e: 17:73:6d:77:80:00:57:69:df:df:c5:75:00:60:35: 4d:56:1f:f3:ef:09:cd:6f:ee:17:33:81:77:b2:ce: 93:c5:42:7c:91:b5:d5:75:26:77:5b:4c:81:8f:f0: 92:b3:79:62:80:fb:bc:6e:9a:a0:8f:3b:fc:8f:f0: 72:90:f1:78:9f:e6:12:61:bf:b8:e1:91:b8:7d:89: a1:4d:ba:c0:27:d3:4a:78:8d:d5:91:79:bd:59:95: 3c:46:c1:76:b8:60:37:16:ef:9e:01:cf:db:56:31: fe:86:66:ec:20:d1:94:dc:60:53:a4:00:21:18:73: 71:31:86:36:cb:e1:01:9b:59:6f:e6:0e:30:52:ea: 03:49:b3:7a:71:73:c3:35:30:77:55:53:2d:02:3b: 35:f6:21:22:3b:2a:e5:29:07:b2:ec:4a:38:ed:be: 88:9a:7d:64:e6:08:91:00:31:ab:17:80:6d:b4:a5: f3:a9:f8:cb:e0:49:bd:7f:fd:8f:e6:1c:74:9b:8e: ed:e8:1f:30:0f:d5:83:a7:29:d9:ba:ae:d3:ae:6d: de:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:14:D8:91:28:2F:0C:FF:F0:7C:AA:F9:9B:E0:4F:20:0D:8C:9A:8F X509v3 Authority Key Identifier: keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/DRTYkSgvDP_wfKr5m-BPIA2Mmo8.roa sbgp-ipAddrBlock: critical IPv4: 222.229.0.0/20 Signature Algorithm: sha256WithRSAEncryption c2:8b:81:be:54:2c:57:0c:27:0c:4c:e8:15:69:ef:d1:ec:3f: 72:60:d9:96:9e:ee:c0:38:85:d4:74:a5:64:07:a3:bf:58:88: 5d:a8:14:59:7d:59:88:09:f3:92:f9:6f:40:c1:17:48:73:ea: 59:24:11:7c:28:1b:fa:2e:3f:4f:6c:4e:3f:92:7f:0a:36:2c: a1:86:fa:51:41:ce:23:97:f2:77:87:9b:24:bd:68:b9:4c:f4: 57:d1:62:67:f1:eb:04:e7:05:3a:20:1b:bc:8f:3b:3f:30:b9: 56:6f:fd:b4:82:59:77:70:00:65:8b:90:60:27:9f:4f:7e:ec: 8d:7b:55:04:4c:be:16:e6:69:12:cf:a5:94:83:1a:03:87:fa: 58:ff:45:bd:ec:be:28:9b:a7:88:d1:0b:dc:e5:7d:4c:4f:3c: f2:50:61:96:ec:e6:de:39:19:94:23:2b:bc:8f:af:de:55:7d: 4b:f2:f9:bd:03:b5:d0:74:82:bf:9c:b8:30:83:35:ef:7e:09: a2:e8:f4:13:7e:96:4a:46:13:90:9c:b2:c8:a0:7d:ae:bb:5c: bb:98:30:0f:07:a3:4c:64:29:79:01:a5:df:6e:83:bb:e8:dc: 8a:ac:ce:6c:aa:25:23:5c:85:2e:57:40:b0:7d:7f:f9:96:f3: da:f3:48:37 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI2MDMzMTA4 MTUzOVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMEQxNEQ4OTEyODJGMENG RkYwN0NBQUY5OUJFMDRGMjAwRDhDOUE4RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKbhRldGlrJrpREvGwnRhHZNiuur9jb4JrXoRy5/0WWXfhq0UTmX QlgX67leF3Ntd4AAV2nf38V1AGA1TVYf8+8JzW/uFzOBd7LOk8VCfJG11XUmd1tM gY/wkrN5YoD7vG6aoI87/I/wcpDxeJ/mEmG/uOGRuH2JoU26wCfTSniN1ZF5vVmV PEbBdrhgNxbvngHP21Yx/oZm7CDRlNxgU6QAIRhzcTGGNsvhAZtZb+YOMFLqA0mz enFzwzUwd1VTLQI7NfYhIjsq5SkHsuxKOO2+iJp9ZOYIkQAxqxeAbbSl86n4y+BJ vX/9j+YcdJuO7egfMA/Vg6cp2bqu065t3gcCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQNFNiRKC8M//B8qvmb4E8gDYyajzAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC84NDAvRFJUWWtTZ3ZEUF93ZktyNW0tQlBJQTJNbW84LnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBN7lADANBgkqhkiG9w0BAQsFAAOCAQEA wouBvlQsVwwnDEzoFWnv0ew/cmDZlp7uwDiF1HSlZAejv1iIXagUWX1ZiAnzkvlv QMEXSHPqWSQRfCgb+i4/T2xOP5J/CjYsoYb6UUHOI5fyd4ebJL1ouUz0V9FiZ/Hr BOcFOiAbvI87PzC5Vm/9tIJZd3AAZYuQYCefT37sjXtVBEy+FuZpEs+llIMaA4f6 WP9Fvey+KJuniNEL3OV9TE888lBhluzm3jkZlCMrvI+v3lV9S/L5vQO10HSCv5y4 MIM1734Jouj0E36WSkYTkJyyyKB9rrtcu5gwDwejTGQpeQGl326Du+jciqzObKol I1yFLldAsH1/+Zbz2vNINw== -----END CERTIFICATE-----Generated at Tue Apr 7 19:33:51 2026 by rpki-client