$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/JDkw2yoZ0jFoy-I6A4OVnfIIE5I.roa File: JDkw2yoZ0jFoy-I6A4OVnfIIE5I.roa (raw, json) Hash identifier: Yi+bWt/Cy+CGwNG9moveKv5feiM6jGuNlsKPC4TGI4U= Subject key identifier: 24:39:30:DB:2A:19:D2:31:68:CB:E2:3A:03:83:95:9D:F2:08:13:92 Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Certificate serial: 7D Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/JDkw2yoZ0jFoy-I6A4OVnfIIE5I.roa Signing time: Tue 31 Mar 2026 07:51:38 +0000 ROA not before: Tue 31 Mar 2026 07:51:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23778 IP address blocks: 210.235.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Validity Not Before: Mar 31 07:51:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=243930DB2A19D23168CBE23A0383959DF2081392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:10:ca:7f:98:0c:2c:9d:7a:f8:12:ac:d9:12: 3f:62:44:33:27:79:f4:98:89:b4:83:2e:f3:c0:d1: 86:ad:ca:14:ad:cf:94:f9:3d:c6:20:44:dc:cb:f7: 55:09:a7:1b:ae:7e:95:a3:93:f8:60:bb:ac:49:9e: 84:be:69:e8:91:3c:aa:67:87:ad:94:ee:bc:1e:c2: e2:0c:75:b8:d1:fc:5f:27:22:aa:17:d7:09:3a:b7: 7d:fd:ef:af:97:b1:2e:53:60:b0:45:a9:21:b3:fd: 86:8f:c5:22:7d:84:4e:34:67:94:bf:43:09:53:d5: 29:b7:39:21:0e:ef:00:57:fc:3a:5e:a7:74:44:cb: 03:39:04:ab:43:b6:98:e6:30:43:b0:96:ca:bc:0f: 27:b9:1a:97:d9:e3:42:b8:ef:39:00:bf:7f:8b:98: d0:b8:48:b2:d5:01:13:9a:e6:e8:10:75:df:17:ff: 17:a9:42:2b:93:63:fa:c6:52:d0:84:26:4b:5d:6a: 0f:2d:c2:02:dc:29:35:3b:57:52:e1:42:af:6a:f3: 0b:ac:41:e7:9c:e3:82:8a:12:8d:80:e1:31:89:a0: 5a:87:1d:08:91:d3:dd:3c:c6:0c:2e:8e:4f:23:bb: 34:27:30:86:14:18:76:94:d9:c0:c8:51:a7:87:b7: aa:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:39:30:DB:2A:19:D2:31:68:CB:E2:3A:03:83:95:9D:F2:08:13:92 X509v3 Authority Key Identifier: keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/JDkw2yoZ0jFoy-I6A4OVnfIIE5I.roa sbgp-ipAddrBlock: critical IPv4: 210.235.40.0/21 Signature Algorithm: sha256WithRSAEncryption 94:95:dd:df:17:6d:2a:30:34:f0:63:18:ee:08:11:c9:4c:91: de:26:f6:e3:05:e9:e0:72:a7:82:3d:b2:e8:40:31:14:8b:f4: 68:f8:e8:02:a8:66:12:70:33:75:f4:b4:9a:11:8e:28:66:5e: 31:55:f6:75:64:8d:ac:d4:cc:fc:08:15:80:7a:dd:d1:16:cb: 4d:32:45:b9:f7:be:c7:36:a6:26:8f:50:3c:10:1a:de:fb:72: 93:9e:1e:e7:76:7a:e5:e8:52:05:17:52:66:f4:4b:a8:37:b9: 36:f7:d0:ba:c6:96:76:12:6a:db:ea:d8:84:58:6e:36:fc:43: 9c:7b:f3:16:75:61:10:c3:8c:93:a7:96:05:9a:e0:14:0d:52: 96:17:85:b1:f5:f0:35:d6:5e:85:a4:85:34:ee:e0:fd:97:31: b1:5d:fa:44:c9:b9:80:c8:45:d8:09:4c:72:2b:16:d9:7c:1d: ac:8b:a0:2e:26:2e:28:32:c7:0e:de:d2:43:d2:57:3a:c9:7b: c8:53:81:01:29:fd:69:10:77:29:5b:ac:7c:ec:db:7e:4d:21: 91:c9:4e:12:57:24:0d:c1:25:d6:ee:33:2c:2d:58:28:85:dc: 83:eb:5a:a2:4e:eb:30:10:cf:c9:ef:01:b4:91:d2:68:a7:3f: dc:58:a5:54 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjkw RjJGQkNBQTI1MzhDQTY1NzRGQjIyRDhDNkVCM0U5Q0EwNDZCMB4XDTI2MDMzMTA3 NTEzOFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMjQzOTMwREIyQTE5RDIz MTY4Q0JFMjNBMDM4Mzk1OURGMjA4MTM5MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMwQyn+YDCydevgSrNkSP2JEMyd59JiJtIMu88DRhq3KFK3PlPk9 xiBE3Mv3VQmnG65+laOT+GC7rEmehL5p6JE8qmeHrZTuvB7C4gx1uNH8XyciqhfX CTq3ff3vr5exLlNgsEWpIbP9ho/FIn2ETjRnlL9DCVPVKbc5IQ7vAFf8Ol6ndETL AzkEq0O2mOYwQ7CWyrwPJ7kal9njQrjvOQC/f4uY0LhIstUBE5rm6BB13xf/F6lC K5Nj+sZS0IQmS11qDy3CAtwpNTtXUuFCr2rzC6xB55zjgooSjYDhMYmgWocdCJHT 3TzGDC6OTyO7NCcwhhQYdpTZwMhRp4e3qq0CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQkOTDbKhnSMWjL4joDg5Wd8ggTkjAfBgNVHSMEGDAWgBQ/kPL7yqJTjKZXT7It jG6z6coEazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODU5L1A1RHktOHFpVTR5bVYwLXlMWXh1cy1uS0JHcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1A1RHktOHFpVTR5bVYwLXlMWXh1cy1u S0JHcy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC84NTkvSkRrdzJ5b1owakZveS1JNkE0T1ZuZklJRTVJLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9LrKDANBgkqhkiG9w0BAQsFAAOCAQEA lJXd3xdtKjA08GMY7ggRyUyR3ib24wXp4HKngj2y6EAxFIv0aPjoAqhmEnAzdfS0 mhGOKGZeMVX2dWSNrNTM/AgVgHrd0RbLTTJFufe+xzamJo9QPBAa3vtyk54e53Z6 5ehSBRdSZvRLqDe5NvfQusaWdhJq2+rYhFhuNvxDnHvzFnVhEMOMk6eWBZrgFA1S lheFsfXwNdZehaSFNO7g/ZcxsV36RMm5gMhF2AlMcisW2XwdrIugLiYuKDLHDt7S Q9JXOsl7yFOBASn9aRB3KVusfOzbfk0hkclOElckDcEl1u4zLC1YKIXcg+taok7r MBDPye8BtJHSaKc/3FilVA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:33:40 2026 by rpki-client