$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/884/PZ-RMSHXzTZTtCbrUmYVQ8bFXlo.roa File: PZ-RMSHXzTZTtCbrUmYVQ8bFXlo.roa (raw, json) Hash identifier: OoHO4NkbAcvWrlaFp8OrKF3ePE7CpzXi00wRj6J5DtA= Subject key identifier: 3D:9F:91:31:21:D7:CD:36:53:B4:26:EB:52:66:15:43:C6:C5:5E:5A Certificate issuer: /CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Certificate serial: 48 Authority key identifier: 8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/PZ-RMSHXzTZTtCbrUmYVQ8bFXlo.roa Signing time: Tue 31 Mar 2026 08:18:46 +0000 ROA not before: Tue 31 Mar 2026 08:18:46 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 23808 IP address blocks: 219.100.132.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Validity Not Before: Mar 31 08:18:46 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3D9F913121D7CD3653B426EB52661543C6C55E5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a6:36:40:b5:8e:b5:91:e2:7e:91:6e:1a:fd: 72:e2:71:e6:5a:d4:e1:f0:f0:0b:df:b7:3c:0b:e9: 3f:6e:42:5e:7e:5f:3b:95:7c:2d:32:21:ba:1e:d1: fd:08:f9:9e:98:f4:c7:f9:61:b2:dc:ac:f6:a3:de: 08:22:71:bd:96:40:11:8f:55:26:7b:00:90:4f:0f: d4:8c:df:1c:09:95:d6:f6:b8:0b:e6:99:8d:85:97: 5a:35:a1:7e:1a:7f:c5:06:ed:f3:14:48:70:ca:bc: 85:ac:36:9b:4f:c3:8c:04:59:2b:72:49:8b:f7:f7: 5c:05:c4:51:4a:af:39:71:96:4f:0c:e0:5b:00:15: 02:12:da:e1:5e:73:1c:7b:ba:19:76:a9:2c:ed:ea: c9:f6:c4:b5:55:59:80:65:40:09:a0:f7:84:32:ef: 20:07:5c:bf:e9:50:cd:2d:48:b8:6f:31:bb:18:63: f9:ba:4f:93:2c:aa:e4:3f:0c:8a:0d:fc:23:3a:43: 81:ad:42:e6:8a:3c:f2:cc:c1:de:74:f7:4a:1c:85: 2d:3a:e4:98:a9:d2:6b:cb:5e:28:b7:09:45:19:75: b2:60:c2:ea:49:95:a2:f9:4d:c6:bb:ac:23:89:91: ec:3d:48:b4:6c:50:b1:40:b9:34:12:8e:25:ef:cd: ae:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9F:91:31:21:D7:CD:36:53:B4:26:EB:52:66:15:43:C6:C5:5E:5A X509v3 Authority Key Identifier: keyid:8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/PZ-RMSHXzTZTtCbrUmYVQ8bFXlo.roa sbgp-ipAddrBlock: critical IPv4: 219.100.132.0/22 Signature Algorithm: sha256WithRSAEncryption 89:c7:00:2a:0c:f0:94:95:2c:25:6d:8a:4c:03:bd:23:77:1a: 67:f0:04:14:75:70:fb:f9:89:e6:c0:2a:7f:89:e6:d3:70:51: bc:29:6b:3c:d8:e2:e8:5d:e3:f6:3e:ca:4a:64:6f:32:f6:9b: 8d:25:43:8f:4c:2d:31:41:c4:32:3d:a1:86:d1:f7:1f:4c:62: 38:47:db:2e:c7:57:ae:02:aa:9f:26:28:ee:b4:be:64:07:04: 5b:50:ee:7f:81:21:d9:af:34:e0:90:0d:5b:12:d6:a1:aa:4e: 03:60:c6:64:b7:ff:73:52:9a:5d:70:3f:13:42:3a:19:11:9e: 6d:84:e2:f2:a1:4c:72:3e:57:8a:d7:a8:0d:84:91:f3:f1:c6: a9:a6:ee:6f:7d:f7:4d:e7:f6:dd:5e:dd:82:4c:24:10:11:91: e8:ac:fb:6d:9a:98:a3:cf:df:19:34:a8:89:a0:e3:b9:37:cd: 7d:4f:6a:4c:ab:7c:f1:78:34:34:d7:32:e4:cd:9d:b6:37:f8: bd:bb:b5:a8:2b:5b:11:3d:74:b6:82:7b:5e:15:ea:2d:bd:1f: b6:4c:69:8c:0b:b3:96:e4:4d:2e:57:e7:8d:9c:d7:f2:6e:b6: a4:c8:39:29:2e:72:0b:49:99:f9:c4:d2:50:52:8f:77:4c:cd: 0a:a0:b4:2f -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QUY0 MjBGMTkyMDBFMTFCRTRBRThEOTE0RUJBMkFDQjQyOTE3QjZFMB4XDTI2MDMzMTA4 MTg0NloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoM0Q5RjkxMzEyMUQ3Q0Qz NjUzQjQyNkVCNTI2NjE1NDNDNkM1NUU1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANKmNkC1jrWR4n6Rbhr9cuJx5lrU4fDwC9+3PAvpP25CXn5fO5V8 LTIhuh7R/Qj5npj0x/lhstys9qPeCCJxvZZAEY9VJnsAkE8P1IzfHAmV1va4C+aZ jYWXWjWhfhp/xQbt8xRIcMq8haw2m0/DjARZK3JJi/f3XAXEUUqvOXGWTwzgWwAV AhLa4V5zHHu6GXapLO3qyfbEtVVZgGVACaD3hDLvIAdcv+lQzS1IuG8xuxhj+bpP kyyq5D8Mig38IzpDga1C5oo88szB3nT3ShyFLTrkmKnSa8teKLcJRRl1smDC6kmV ovlNxrusI4mR7D1ItGxQsUC5NBKOJe/NrukCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQ9n5ExIdfNNlO0JutSZhVDxsVeWjAfBgNVHSMEGDAWgBSK9CDxkgDhG+SujZFO uirLQpF7bjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODg0L2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBLUmUyNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBL UmUyNC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC84ODQvUFotUk1TSFh6VFpUdENiclVtWVZROGJGWGxvLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAttkhDANBgkqhkiG9w0BAQsFAAOCAQEA iccAKgzwlJUsJW2KTAO9I3caZ/AEFHVw+/mJ5sAqf4nm03BRvClrPNji6F3j9j7K SmRvMvabjSVDj0wtMUHEMj2hhtH3H0xiOEfbLsdXrgKqnyYo7rS+ZAcEW1Duf4Eh 2a804JANWxLWoapOA2DGZLf/c1KaXXA/E0I6GRGebYTi8qFMcj5XiteoDYSR8/HG qabub333Tef23V7dgkwkEBGR6Kz7bZqYo8/fGTSoiaDjuTfNfU9qTKt88Xg0NNcy 5M2dtjf4vbu1qCtbET10toJ7XhXqLb0ftkxpjAuzluRNLlfnjZzX8m62pMg5KS5y C0mZ+cTSUFKPd0zNCqC0Lw== -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:06 2026 by rpki-client