$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/934/yHGBL_za0aWjwPhKhxeTbBPoGpU.roa File: yHGBL_za0aWjwPhKhxeTbBPoGpU.roa (raw, json) Hash identifier: nGDs9w4mscRBaybukZHE87GqbzyeAV1x0beugP15Ks0= Subject key identifier: C8:71:81:2F:FC:DA:D1:A5:A3:C0:F8:4A:87:17:93:6C:13:E8:1A:95 Certificate issuer: /CN=2A4CFE909CA58307E7CA8735AF245D718D99F7FB Certificate serial: 8C Authority key identifier: 2A:4C:FE:90:9C:A5:83:07:E7:CA:87:35:AF:24:5D:71:8D:99:F7:FB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/yHGBL_za0aWjwPhKhxeTbBPoGpU.roa Signing time: Tue 31 Mar 2026 07:37:49 +0000 ROA not before: Tue 31 Mar 2026 07:37:49 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 37892 IP address blocks: 202.145.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A4CFE909CA58307E7CA8735AF245D718D99F7FB Validity Not Before: Mar 31 07:37:49 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C871812FFCDAD1A5A3C0F84A8717936C13E81A95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f0:ea:b6:b0:ef:12:0c:ef:f7:cf:0c:d1:5b: c4:38:63:e6:5a:1b:f3:bd:f8:5e:e9:0c:d7:94:20: b6:17:9d:28:c7:c2:ef:8d:dc:ec:2c:2d:0d:1d:97: 10:fc:f4:af:a9:52:08:05:e9:1e:bd:02:07:4d:e4: 06:41:4d:b3:1f:58:1e:c2:06:b7:1f:65:f4:60:7c: 78:80:31:8a:a6:32:a4:19:c6:16:9c:0d:50:57:13: fc:8a:0f:30:4b:7f:36:87:1d:47:3d:0d:f4:0c:30: a7:66:5b:2d:5a:55:43:2b:10:44:05:8c:91:c3:a5: ce:86:54:c1:31:4c:b3:b6:02:b5:af:9a:42:88:da: c4:78:c5:65:8a:c7:a6:8d:14:b2:ce:ca:af:06:bf: ba:5c:a3:3d:e2:29:6c:05:6d:23:bf:9e:37:d4:8d: 72:ea:27:2c:29:1b:ba:c7:88:aa:12:05:cf:e8:1e: 2c:58:08:e1:0f:30:9b:e8:e4:38:46:7e:d6:fc:34: 01:f8:93:f2:3f:43:27:0b:38:01:41:96:07:dc:10: 71:4c:0a:fd:c5:d2:69:3a:b8:60:2e:ed:b5:b8:e7: 24:5a:ad:1d:da:2c:80:3e:13:a1:b7:1b:37:89:18: 15:6a:8b:45:5f:3b:a7:5c:8b:e0:8a:e7:35:dc:03: 34:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:71:81:2F:FC:DA:D1:A5:A3:C0:F8:4A:87:17:93:6C:13:E8:1A:95 X509v3 Authority Key Identifier: keyid:2A:4C:FE:90:9C:A5:83:07:E7:CA:87:35:AF:24:5D:71:8D:99:F7:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/yHGBL_za0aWjwPhKhxeTbBPoGpU.roa sbgp-ipAddrBlock: critical IPv4: 202.145.26.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:40:bb:2c:2b:ca:e6:9b:4f:8a:47:15:04:17:5d:21:9f:7e: c5:b7:2c:9d:cc:e1:50:f3:4c:9f:65:42:e7:cf:d9:33:04:0d: 77:d8:61:b4:6e:4c:c8:36:1f:d9:2b:d4:66:44:10:71:1e:b9: 86:d9:9e:ac:48:b0:db:5d:64:ae:9e:62:28:15:9d:a0:17:42: bd:31:c0:5b:b2:87:99:7c:ab:e9:bc:e8:2e:a4:2c:fe:3c:6b: 9c:2e:56:f3:94:2c:b3:02:d8:13:e1:ed:45:7d:c9:8e:b8:98: fb:b7:82:64:a3:57:1e:96:1e:5d:33:b0:17:c1:57:3e:34:0f: ec:6c:95:69:55:1a:a2:75:e7:17:80:4d:c7:76:b1:93:8e:44: 2d:36:5b:47:26:20:81:f8:6a:07:29:98:d1:dd:f8:98:98:39: 2a:04:bd:4f:45:d1:9e:fb:97:5c:06:14:01:cf:bc:2d:f3:e7: 85:86:b0:3d:0e:32:94:d7:a1:5f:c2:dd:6a:aa:55:77:c6:03: d2:b3:ff:eb:62:28:01:9e:26:74:89:c7:22:44:3b:c8:e3:e5: b2:df:66:d2:fe:89:4d:43:ed:97:52:d1:ef:e1:7d:60:a7:2f: 3d:c7:e7:cf:b7:a8:f7:03:1a:d0:75:5b:63:79:6e:96:df:64: 06:53:5f:1f -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 Q0ZFOTA5Q0E1ODMwN0U3Q0E4NzM1QUYyNDVENzE4RDk5RjdGQjAeFw0yNjAzMzEw NzM3NDlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM4NzE4MTJGRkNEQUQx QTVBM0MwRjg0QTg3MTc5MzZDMTNFODFBOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH8Oq2sO8SDO/3zwzRW8Q4Y+ZaG/O9+F7pDNeUILYXnSjHwu+N 3OwsLQ0dlxD89K+pUggF6R69AgdN5AZBTbMfWB7CBrcfZfRgfHiAMYqmMqQZxhac DVBXE/yKDzBLfzaHHUc9DfQMMKdmWy1aVUMrEEQFjJHDpc6GVMExTLO2ArWvmkKI 2sR4xWWKx6aNFLLOyq8Gv7pcoz3iKWwFbSO/njfUjXLqJywpG7rHiKoSBc/oHixY COEPMJvo5DhGftb8NAH4k/I/QycLOAFBlgfcEHFMCv3F0mk6uGAu7bW45yRarR3a LIA+E6G3GzeJGBVqi0VfO6dci+CK5zXcAzTJAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUyHGBL/za0aWjwPhKhxeTbBPoGpUwHwYDVR0jBBgwFoAUKkz+kJylgwfnyoc1 ryRdcY2Z9/swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzkzNC9La3ota0p5bGd3Zm55b2MxcnlSZGNZMlo5X3MuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9La3ota0p5bGd3Zm55b2MxcnlSZGNZ Mlo5X3MuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvOTM0L3lIR0JMX3phMGFXandQaEtoeGVUYkJQb0dwVS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKkRowDQYJKoZIhvcNAQELBQADggEB AH1AuywryuabT4pHFQQXXSGffsW3LJ3M4VDzTJ9lQufP2TMEDXfYYbRuTMg2H9kr 1GZEEHEeuYbZnqxIsNtdZK6eYigVnaAXQr0xwFuyh5l8q+m86C6kLP48a5wuVvOU LLMC2BPh7UV9yY64mPu3gmSjVx6WHl0zsBfBVz40D+xslWlVGqJ15xeATcd2sZOO RC02W0cmIIH4agcpmNHd+JiYOSoEvU9F0Z77l1wGFAHPvC3z54WGsD0OMpTXoV/C 3WqqVXfGA9Kz/+tiKAGeJnSJxyJEO8jj5bLfZtL+iU1D7ZdS0e/hfWCnLz3H58+3 qPcDGtB1W2N5bpbfZAZTXx8= -----END CERTIFICATE-----Generated at Tue Apr 7 22:27:13 2026 by rpki-client