$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/848/zP0T9hzMlHzFTC8NnTK85KJ0aZQ.roa File: zP0T9hzMlHzFTC8NnTK85KJ0aZQ.roa (raw, json) Hash identifier: qxkuVRCRbxWhqukShBdFppZ0fbPtM+anMhyFFDSqQFg= Subject key identifier: CC:FD:13:F6:1C:CC:94:7C:C5:4C:2F:0D:9D:32:BC:E4:A2:74:69:94 Certificate issuer: /CN=55F35A82A236BCED819088D4D90887E0B965C7CF Certificate serial: 2D Authority key identifier: 55:F3:5A:82:A2:36:BC:ED:81:90:88:D4:D9:08:87:E0:B9:65:C7:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/VfNagqI2vO2BkIjU2QiH4Lllx88.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/848/zP0T9hzMlHzFTC8NnTK85KJ0aZQ.roa Signing time: Tue 31 Mar 2026 08:39:23 +0000 ROA not before: Tue 31 Mar 2026 08:39:23 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23775 IP address blocks: 210.255.240.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/848/VfNagqI2vO2BkIjU2QiH4Lllx88.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/848/VfNagqI2vO2BkIjU2QiH4Lllx88.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/VfNagqI2vO2BkIjU2QiH4Lllx88.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55F35A82A236BCED819088D4D90887E0B965C7CF Validity Not Before: Mar 31 08:39:23 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CCFD13F61CCC947CC54C2F0D9D32BCE4A2746994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:97:1d:52:a9:1c:88:2b:ed:ee:d0:53:56:da: b2:69:b4:e8:8c:a0:db:a7:7b:dd:4d:46:12:b9:50: 67:82:69:53:9f:91:09:5e:82:2a:4a:ee:d0:92:d9: cc:a6:c9:07:3c:21:a5:1f:e5:57:f8:d6:ad:91:32: 5e:62:1b:d7:ee:25:8b:d4:44:59:cf:54:90:d1:44: 49:9a:a3:e8:bb:3b:a8:ec:fd:69:4c:7f:48:34:c7: 84:af:f1:26:fe:5d:b7:70:6c:8c:81:22:da:d0:a4: d5:f8:37:c6:e7:a6:36:fc:25:7f:1c:e3:ed:87:cd: 2b:98:38:c0:72:e6:81:1a:05:8f:68:d4:e7:14:48: 51:b5:e2:b1:bf:30:fd:e7:54:61:98:97:69:44:dc: 21:58:db:d1:b6:55:e2:21:b4:a8:b3:08:ed:90:40: 4a:52:88:31:e1:33:9d:72:82:96:03:e3:a2:2c:23: d1:fd:e4:fe:32:e8:d8:0d:9b:7a:79:6b:3b:92:a3: 91:87:0a:fe:2e:64:59:ce:68:fc:49:31:19:68:77: 00:48:1b:a0:10:10:fe:e7:d9:78:8b:a3:30:2a:c0: d1:c8:66:e4:9c:ac:77:a8:28:55:85:ae:28:c1:53: 92:73:b2:63:b0:3a:89:7e:7e:97:3f:c8:54:6c:27: 99:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FD:13:F6:1C:CC:94:7C:C5:4C:2F:0D:9D:32:BC:E4:A2:74:69:94 X509v3 Authority Key Identifier: keyid:55:F3:5A:82:A2:36:BC:ED:81:90:88:D4:D9:08:87:E0:B9:65:C7:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/848/VfNagqI2vO2BkIjU2QiH4Lllx88.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/VfNagqI2vO2BkIjU2QiH4Lllx88.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/848/zP0T9hzMlHzFTC8NnTK85KJ0aZQ.roa sbgp-ipAddrBlock: critical IPv4: 210.255.240.0/20 Signature Algorithm: sha256WithRSAEncryption 01:9b:7a:05:ac:f7:21:93:45:9a:e8:db:a0:74:0e:80:fa:26: 41:38:8a:fc:0d:2b:58:3b:98:45:0f:62:79:f7:69:71:81:a1: b0:c1:15:6c:c6:ba:94:08:9e:d4:f6:76:df:ff:e2:22:87:35: be:4e:dd:76:fd:c5:9a:df:e5:80:7b:f8:0b:f9:6c:f2:05:c0: fd:62:1f:21:c0:f8:b1:c6:0e:69:b6:d8:68:2e:13:a8:49:33: 88:a7:d5:a2:15:fd:b7:c9:4d:74:90:51:ed:a7:0f:57:bd:ba: b5:67:9f:95:2a:79:98:da:7b:b2:5f:8f:ce:df:f6:ff:6b:37: dd:ce:67:16:cb:73:d3:0c:5c:49:0f:ca:db:57:ba:45:88:70: 5f:e8:3f:15:ca:e0:5a:97:3b:52:fd:98:87:ed:b9:a1:e4:62: 35:67:7a:fd:6b:34:d3:84:df:45:3b:7b:1e:2b:b3:5f:f4:c9: 04:b1:34:7b:a9:e7:4b:25:a4:c1:d2:61:c0:fb:30:f4:5d:a1: 29:04:87:a8:77:43:98:51:e5:0b:7e:5f:b0:f7:36:5d:d2:ad: 93:56:1c:24:91:01:98:d7:ae:c0:2f:d6:8e:91:61:af:0e:54: 54:1a:a6:6d:28:ad:6b:90:c0:c9:3b:09:c6:e1:37:04:40:ec: 7b:df:4c:14 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1NUYz NUE4MkEyMzZCQ0VEODE5MDg4RDREOTA4ODdFMEI5NjVDN0NGMB4XDTI2MDMzMTA4 MzkyM1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQ0NGRDEzRjYxQ0NDOTQ3 Q0M1NEMyRjBEOUQzMkJDRTRBMjc0Njk5NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPaXHVKpHIgr7e7QU1basmm06Iyg26d73U1GErlQZ4JpU5+RCV6C Kkru0JLZzKbJBzwhpR/lV/jWrZEyXmIb1+4li9REWc9UkNFESZqj6Ls7qOz9aUx/ SDTHhK/xJv5dt3BsjIEi2tCk1fg3xuemNvwlfxzj7YfNK5g4wHLmgRoFj2jU5xRI UbXisb8w/edUYZiXaUTcIVjb0bZV4iG0qLMI7ZBASlKIMeEznXKClgPjoiwj0f3k /jLo2A2benlrO5KjkYcK/i5kWc5o/EkxGWh3AEgboBAQ/ufZeIujMCrA0chm5Jys d6goVYWuKMFTknOyY7A6iX5+lz/IVGwnmV8CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBTM/RP2HMyUfMVMLw2dMrzkonRplDAfBgNVHSMEGDAWgBRV81qCoja87YGQiNTZ CIfguWXHzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQ4L1ZmTmFncUkydk8yQmtJalUyUWlINExsbHg4OC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1ZmTmFncUkydk8yQmtJalUyUWlINExs bHg4OC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC84NDgvelAwVDloek1sSHpGVEM4Tm5USzg1S0owYVpRLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNL/8DANBgkqhkiG9w0BAQsFAAOCAQEA AZt6Baz3IZNFmujboHQOgPomQTiK/A0rWDuYRQ9iefdpcYGhsMEVbMa6lAie1PZ2 3//iIoc1vk7ddv3Fmt/lgHv4C/ls8gXA/WIfIcD4scYOabbYaC4TqEkziKfVohX9 t8lNdJBR7acPV726tWeflSp5mNp7sl+Pzt/2/2s33c5nFstz0wxcSQ/K21e6RYhw X+g/FcrgWpc7Uv2Yh+25oeRiNWd6/Ws004TfRTt7HiuzX/TJBLE0e6nnSyWkwdJh wPsw9F2hKQSHqHdDmFHlC35fsPc2XdKtk1YcJJEBmNeuwC/WjpFhrw5UVBqmbSit a5DAyTsJxuE3BEDse99MFA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:13 2026 by rpki-client