$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/857/lx8GpDKJ7z087L4JYUfN9UsZB8A.roa File: lx8GpDKJ7z087L4JYUfN9UsZB8A.roa (raw, json) Hash identifier: ShB85daOwp0kKD549eXoSzNSM7eOJEjr9Dh+3YidmYU= Subject key identifier: 97:1F:06:A4:32:89:EF:3D:3C:EC:BE:09:61:47:CD:F5:4B:19:07:C0 Certificate issuer: /CN=A9DE7C13381237C5B898D5A24F2C9A6CB3C1971B Certificate serial: 57 Authority key identifier: A9:DE:7C:13:38:12:37:C5:B8:98:D5:A2:4F:2C:9A:6C:B3:C1:97:1B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qd58EzgSN8W4mNWiTyyabLPBlxs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/857/lx8GpDKJ7z087L4JYUfN9UsZB8A.roa Signing time: Tue 31 Mar 2026 07:49:54 +0000 ROA not before: Tue 31 Mar 2026 07:49:54 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23780 IP address blocks: 211.15.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/857/qd58EzgSN8W4mNWiTyyabLPBlxs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/857/qd58EzgSN8W4mNWiTyyabLPBlxs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qd58EzgSN8W4mNWiTyyabLPBlxs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9DE7C13381237C5B898D5A24F2C9A6CB3C1971B Validity Not Before: Mar 31 07:49:54 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=971F06A43289EF3D3CECBE096147CDF54B1907C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d1:a1:60:2d:b5:c4:42:83:6d:2c:70:54:9c: 56:96:06:02:65:69:ee:8a:13:37:c4:1a:42:0c:81: 47:b8:f8:30:9c:57:70:a7:92:57:ef:cc:9f:80:a6: 8f:ab:e8:fc:a4:5d:62:14:17:d4:ea:ee:5d:b3:70: 5f:71:e2:82:fc:5f:c9:65:76:35:3d:99:02:a9:b1: bf:2c:aa:71:26:10:11:62:b4:5d:5d:2d:1e:4c:7d: 9f:16:ba:0e:e1:c5:66:38:59:49:c0:07:6d:bd:9a: a3:a5:36:20:ed:08:d7:ab:0b:e6:67:0c:b8:da:11: 9b:7d:38:b0:07:a8:99:d6:a0:b3:83:6e:8e:ef:fa: f1:1d:63:8c:13:fa:74:c7:b0:c9:53:c3:f5:bf:cc: 54:6d:eb:13:3d:ef:55:cb:c6:b7:85:86:26:7e:91: c8:1d:0b:36:1d:4c:0e:35:7a:ec:17:ec:29:03:64: 8e:94:ea:3f:23:e1:0f:5b:a1:c7:7d:d7:38:9d:00: 91:ef:9c:42:d9:18:e1:05:66:43:ec:d0:16:c7:a7: 75:ad:a0:36:a3:30:d9:68:0c:8f:91:67:9a:00:a9: 96:8a:40:ca:2a:5f:12:ac:1b:66:30:fc:79:64:10: d8:d3:8f:e4:67:3d:7e:5d:b3:45:1a:ae:47:8e:3f: 3e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:1F:06:A4:32:89:EF:3D:3C:EC:BE:09:61:47:CD:F5:4B:19:07:C0 X509v3 Authority Key Identifier: keyid:A9:DE:7C:13:38:12:37:C5:B8:98:D5:A2:4F:2C:9A:6C:B3:C1:97:1B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/857/qd58EzgSN8W4mNWiTyyabLPBlxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qd58EzgSN8W4mNWiTyyabLPBlxs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/857/lx8GpDKJ7z087L4JYUfN9UsZB8A.roa sbgp-ipAddrBlock: critical IPv4: 211.15.112.0/20 Signature Algorithm: sha256WithRSAEncryption 92:1f:69:6d:24:e8:f8:28:98:6a:7d:dd:e8:a4:47:5c:92:4a: 37:51:41:6e:cc:85:e2:bb:ec:92:8a:e9:75:ef:56:38:73:c3: 06:cf:49:6f:15:b1:17:70:24:3e:59:b4:d5:dd:65:28:60:b3: f9:07:bd:ea:49:6c:e9:e7:f1:48:e5:a2:bc:8e:a8:1b:4e:59: 2c:83:82:80:42:20:09:04:a9:48:08:ad:69:38:81:4e:a6:6e: 11:9e:b0:b2:16:fc:b3:9a:43:f7:4b:74:b3:81:11:d8:fe:e6: 7a:03:5f:e3:7d:57:b5:96:47:2e:c5:54:ef:ae:8a:7b:8d:9e: 5e:f6:2d:35:4f:1c:bc:5c:bb:b1:56:21:1e:99:e4:e4:14:76: d2:9f:59:a0:00:fe:e7:31:88:42:1a:3b:8c:d7:b1:50:c1:d6: 25:66:c2:1d:03:9f:17:62:1c:90:a7:00:9d:eb:16:df:74:f3: 55:eb:37:4c:df:9f:13:d5:55:b1:1d:53:6f:cf:ca:c5:0e:0f: d7:ed:84:db:48:7c:17:3f:ed:fa:61:6e:34:56:5f:09:cd:49: 3f:ba:b6:2f:05:5f:4d:13:4c:99:21:0b:2c:c4:69:9e:f6:1b: b3:57:da:47:8a:2f:ce:30:96:b0:ae:c0:f6:48:48:cf:d9:c3: 4f:2e:c3:9d -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBOURF N0MxMzM4MTIzN0M1Qjg5OEQ1QTI0RjJDOUE2Q0IzQzE5NzFCMB4XDTI2MDMzMTA3 NDk1NFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOTcxRjA2QTQzMjg5RUYz RDNDRUNCRTA5NjE0N0NERjU0QjE5MDdDMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO7RoWAttcRCg20scFScVpYGAmVp7ooTN8QaQgyBR7j4MJxXcKeS V+/Mn4Cmj6vo/KRdYhQX1OruXbNwX3HigvxfyWV2NT2ZAqmxvyyqcSYQEWK0XV0t Hkx9nxa6DuHFZjhZScAHbb2ao6U2IO0I16sL5mcMuNoRm304sAeomdags4Nuju/6 8R1jjBP6dMewyVPD9b/MVG3rEz3vVcvGt4WGJn6RyB0LNh1MDjV67BfsKQNkjpTq PyPhD1uhx33XOJ0Ake+cQtkY4QVmQ+zQFsenda2gNqMw2WgMj5FnmgCplopAyipf EqwbZjD8eWQQ2NOP5Gc9fl2zRRquR44/PqMCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBSXHwakMonvPTzsvglhR831SxkHwDAfBgNVHSMEGDAWgBSp3nwTOBI3xbiY1aJP LJpss8GXGzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODU3L3FkNThFemdTTjhXNG1OV2lUeXlhYkxQQmx4cy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3FkNThFemdTTjhXNG1OV2lUeXlhYkxQ Qmx4cy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC84NTcvbHg4R3BES0o3ejA4N0w0SllVZk45VXNaQjhBLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNMPcDANBgkqhkiG9w0BAQsFAAOCAQEA kh9pbSTo+CiYan3d6KRHXJJKN1FBbsyF4rvskorpde9WOHPDBs9JbxWxF3AkPlm0 1d1lKGCz+Qe96kls6efxSOWivI6oG05ZLIOCgEIgCQSpSAitaTiBTqZuEZ6wshb8 s5pD90t0s4ER2P7megNf431XtZZHLsVU766Ke42eXvYtNU8cvFy7sVYhHpnk5BR2 0p9ZoAD+5zGIQho7jNexUMHWJWbCHQOfF2IckKcAnesW33TzVes3TN+fE9VVsR1T b8/KxQ4P1+2E20h8Fz/t+mFuNFZfCc1JP7q2LwVfTRNMmSELLMRpnvYbs1faR4ov zjCWsK7A9khIz9nDTy7DnQ== -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:01 2026 by rpki-client