$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/ywDtah9XwT_jIf-VNfT6o-QHc-M.roa File: ywDtah9XwT_jIf-VNfT6o-QHc-M.roa (raw, json) Hash identifier: e4rfUWbxJzecJr67DicmpZcfUHsB0q/1ejCOyKuET5M= Subject key identifier: CB:00:ED:6A:1F:57:C1:3F:E3:21:FF:95:35:F4:FA:A3:E4:07:73:E3 Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Certificate serial: 7C Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/ywDtah9XwT_jIf-VNfT6o-QHc-M.roa Signing time: Tue 31 Mar 2026 07:51:38 +0000 ROA not before: Tue 31 Mar 2026 07:51:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23778 IP address blocks: 210.235.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Validity Not Before: Mar 31 07:51:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CB00ED6A1F57C13FE321FF9535F4FAA3E40773E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:7b:51:8d:98:2e:80:ee:c3:f0:5a:35:41: 70:aa:d3:14:34:20:f5:21:84:1f:6f:3e:c7:37:23: d0:18:51:73:2c:f9:a7:e0:a3:30:8d:10:87:f9:d2: 51:5c:a3:e2:b4:dd:e1:c1:c5:f7:93:7e:6c:58:2b: 28:a1:b5:4d:fd:bd:7b:b5:4b:11:c6:52:13:39:ad: ac:35:98:bd:3f:84:aa:97:8c:46:e2:8a:87:f1:a1: 25:f7:d1:a8:3c:54:5d:2f:d5:c4:21:ef:1b:6b:12: c2:0e:a2:c0:30:46:22:5a:10:5e:0c:16:20:f6:8f: 03:cd:a5:8a:06:13:9b:96:6e:9f:8e:d6:92:f1:3b: ff:4b:72:f2:40:e4:6c:66:be:02:04:7d:01:9a:42: 15:8a:f2:c0:a9:91:2b:fe:10:bb:90:8a:ba:01:3d: fd:59:7e:b1:f2:83:c3:e6:66:61:54:76:ee:3c:44: aa:07:82:eb:b6:28:03:40:0f:58:e2:2c:26:37:6b: b5:16:3d:86:cd:b3:6e:bb:ca:13:06:9f:bb:31:f5: d1:4b:75:7b:1b:58:4e:76:2e:b8:5c:16:d4:0c:27: fa:5e:a9:69:93:1e:e3:30:5a:65:26:3e:7f:ae:bf: 0d:39:39:1d:17:b5:c6:fe:94:09:52:2e:ab:fd:a3: f7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:00:ED:6A:1F:57:C1:3F:E3:21:FF:95:35:F4:FA:A3:E4:07:73:E3 X509v3 Authority Key Identifier: keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/ywDtah9XwT_jIf-VNfT6o-QHc-M.roa sbgp-ipAddrBlock: critical IPv4: 210.235.36.0/22 Signature Algorithm: sha256WithRSAEncryption 37:d0:cb:e6:5c:06:96:35:67:05:cd:10:f9:e9:b4:1c:e9:ae: e4:68:73:83:fe:f9:be:43:bf:4c:a6:d9:9a:f2:62:4a:cf:73: 08:d5:ec:04:52:f6:b7:a7:d8:7e:ff:78:40:d4:34:a5:97:97: 6f:54:a7:01:26:14:d9:fa:6e:2f:8f:09:25:fe:15:44:5d:a2: b4:84:22:78:19:c9:40:a5:a2:f6:7f:13:09:29:4c:24:9e:eb: 28:4d:96:91:c8:68:a2:14:cd:66:ea:5d:48:e1:eb:2f:9f:6f: a6:23:5d:cb:f1:9a:51:82:7b:61:d1:05:84:43:ee:a6:34:16: 4e:11:01:8d:5c:ec:3a:10:3d:ec:ac:80:62:b8:6a:df:91:fa: 0f:7b:6c:b2:f9:02:fc:f0:ee:22:58:6d:35:03:6f:2d:6c:f9: 83:a8:88:cc:46:49:ae:56:3b:76:05:49:f1:8c:7b:7e:24:f8: d9:33:6a:4f:b8:5a:f9:3f:1e:6c:df:ea:92:34:10:97:b2:0d: 77:0f:e8:6f:81:1d:87:ef:91:33:3e:d2:26:e7:b7:a8:a8:84: 5f:94:c0:25:56:dc:b1:71:ef:b9:b5:b2:32:70:cf:9d:80:81: 2a:5b:b4:6e:53:54:48:05:40:09:c0:32:40:94:6b:16:62:81: 7f:1f:c7:dc -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjkw RjJGQkNBQTI1MzhDQTY1NzRGQjIyRDhDNkVCM0U5Q0EwNDZCMB4XDTI2MDMzMTA3 NTEzOFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQ0IwMEVENkExRjU3QzEz RkUzMjFGRjk1MzVGNEZBQTNFNDA3NzNFMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALeLe1GNmC6A7sPwWjVBcKrTFDQg9SGEH28+xzcj0BhRcyz5p+Cj MI0Qh/nSUVyj4rTd4cHF95N+bFgrKKG1Tf29e7VLEcZSEzmtrDWYvT+EqpeMRuKK h/GhJffRqDxUXS/VxCHvG2sSwg6iwDBGIloQXgwWIPaPA82ligYTm5Zun47WkvE7 /0ty8kDkbGa+AgR9AZpCFYrywKmRK/4Qu5CKugE9/Vl+sfKDw+ZmYVR27jxEqgeC 67YoA0APWOIsJjdrtRY9hs2zbrvKEwafuzH10Ut1extYTnYuuFwW1Awn+l6paZMe 4zBaZSY+f66/DTk5HRe1xv6UCVIuq/2j9y8CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBTLAO1qH1fBP+Mh/5U19Pqj5Adz4zAfBgNVHSMEGDAWgBQ/kPL7yqJTjKZXT7It jG6z6coEazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODU5L1A1RHktOHFpVTR5bVYwLXlMWXh1cy1uS0JHcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1A1RHktOHFpVTR5bVYwLXlMWXh1cy1u S0JHcy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC84NTkveXdEdGFoOVh3VF9qSWYtVk5mVDZvLVFIYy1NLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtLrJDANBgkqhkiG9w0BAQsFAAOCAQEA N9DL5lwGljVnBc0Q+em0HOmu5Ghzg/75vkO/TKbZmvJiSs9zCNXsBFL2t6fYfv94 QNQ0pZeXb1SnASYU2fpuL48JJf4VRF2itIQieBnJQKWi9n8TCSlMJJ7rKE2Wkcho ohTNZupdSOHrL59vpiNdy/GaUYJ7YdEFhEPupjQWThEBjVzsOhA97KyAYrhq35H6 D3tssvkC/PDuIlhtNQNvLWz5g6iIzEZJrlY7dgVJ8Yx7fiT42TNqT7ha+T8ebN/q kjQQl7INdw/ob4Edh++RMz7SJue3qKiEX5TAJVbcsXHvubWyMnDPnYCBKlu0blNU SAVACcAyQJRrFmKBfx/H3A== -----END CERTIFICATE-----Generated at Tue Apr 7 19:35:09 2026 by rpki-client