$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/9997/IdxIPTWnIXPM5crUIBllHmfjX3A.roa File: IdxIPTWnIXPM5crUIBllHmfjX3A.roa (raw, json) Hash identifier: TWc3DtMADj/JZDS5S0fJBq1JzEeamYepb+AZ4cY64Wc= Subject key identifier: 21:DC:48:3D:35:A7:21:73:CC:E5:CA:D4:20:19:65:1E:67:E3:5F:70 Certificate issuer: /CN=A935D5AD33DC630C4611987140F5E468B7081D11 Certificate serial: 76 Authority key identifier: A9:35:D5:AD:33:DC:63:0C:46:11:98:71:40:F5:E4:68:B7:08:1D:11 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/IdxIPTWnIXPM5crUIBllHmfjX3A.roa Signing time: Tue 31 Mar 2026 07:33:21 +0000 ROA not before: Tue 31 Mar 2026 07:33:21 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 0 IP address blocks: 133.233.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/qTXVrTPcYwxGEZhxQPXkaLcIHRE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/qTXVrTPcYwxGEZhxQPXkaLcIHRE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A935D5AD33DC630C4611987140F5E468B7081D11 Validity Not Before: Mar 31 07:33:21 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=21DC483D35A72173CCE5CAD42019651E67E35F70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e7:5e:9f:f3:12:98:6f:28:7a:97:58:dc:3e: 66:82:71:3f:a1:de:2f:47:3d:c3:16:49:ff:31:32: 1c:76:1d:4d:53:ca:a8:2f:aa:6d:a9:11:ec:69:eb: 8a:d0:7f:08:9e:ed:b9:0d:93:83:c4:91:4c:2a:b8: 44:02:01:2e:2b:c8:99:ac:b7:f9:aa:b1:59:5f:90: 71:80:f8:5b:78:de:b8:65:0a:80:0e:4f:b6:c6:0e: 3c:35:65:df:05:6c:e8:d1:d0:c1:c7:42:f8:c1:32: 7d:7c:72:06:ec:c1:35:37:c3:79:55:2c:85:f7:fd: cb:66:27:93:31:fb:7d:b8:e0:b8:01:9b:9e:4a:68: 05:ed:07:b1:cf:8c:fb:ec:0d:47:4c:0e:2f:93:71: bb:b7:46:1a:74:ca:25:f3:8e:83:40:81:ef:33:7e: 7b:66:5b:20:6f:5a:0c:61:99:2c:e4:47:03:fd:a8: 96:6d:d1:1f:28:72:08:fa:fb:94:be:c0:08:8f:4f: 3c:f3:92:50:8e:91:fa:0f:ee:6b:18:cd:60:69:29: bc:60:a0:7c:fc:5c:e1:64:ab:e9:1c:88:2f:64:78: 67:8b:3e:f3:cd:59:ff:a2:45:30:9a:4c:d8:bc:db: 0d:52:5b:0b:37:aa:11:1c:27:cb:d7:f9:98:33:db: 1a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DC:48:3D:35:A7:21:73:CC:E5:CA:D4:20:19:65:1E:67:E3:5F:70 X509v3 Authority Key Identifier: keyid:A9:35:D5:AD:33:DC:63:0C:46:11:98:71:40:F5:E4:68:B7:08:1D:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/qTXVrTPcYwxGEZhxQPXkaLcIHRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/IdxIPTWnIXPM5crUIBllHmfjX3A.roa sbgp-ipAddrBlock: critical IPv4: 133.233.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:27:7c:b7:b0:f8:6f:89:93:29:14:38:bd:cb:75:8f:8f:00: 29:5b:09:be:67:9c:ce:7b:27:26:15:d8:53:a5:fb:ba:74:0a: 3b:dc:b0:1c:16:1c:ee:e6:4c:8c:c8:54:d9:7c:7c:98:67:1e: 2d:a7:72:f0:d3:ef:a9:3b:18:53:3a:b9:87:39:7e:c5:dd:b6: 65:5d:e8:a6:89:73:b1:b8:39:db:65:09:63:17:9e:1f:32:8e: 08:0b:53:63:48:2b:27:e2:bc:08:ee:80:89:f5:32:00:07:b9: fd:bf:30:9a:9a:d7:9f:b6:6d:c2:c3:ac:1c:9b:cd:bd:ff:a5: ea:cd:3e:5c:66:0d:71:63:b8:22:90:ed:d6:60:fc:dd:90:04: f9:bc:03:bd:df:42:e0:b3:ae:12:b5:25:28:91:ed:38:2e:95: eb:41:a9:4a:55:57:3b:03:58:2d:d2:31:a6:67:04:50:d3:ce: f7:16:74:92:d2:4d:e9:b7:e8:b8:ad:59:3c:3d:72:d5:36:e3: 96:fa:96:1e:a7:a1:1d:d5:41:b6:53:86:d5:ae:0e:63:0a:24: 45:3b:a7:ac:2c:97:e0:4b:5c:de:a0:e8:4a:fb:81:de:99:c6: 1b:1f:4b:28:66:f1:e4:f7:3f:59:7d:69:5b:81:cb:60:34:0f: 88:2c:02:d2 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgIBdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBOTM1 RDVBRDMzREM2MzBDNDYxMTk4NzE0MEY1RTQ2OEI3MDgxRDExMB4XDTI2MDMzMTA3 MzMyMVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMjFEQzQ4M0QzNUE3MjE3 M0NDRTVDQUQ0MjAxOTY1MUU2N0UzNUY3MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAObnXp/zEphvKHqXWNw+ZoJxP6HeL0c9wxZJ/zEyHHYdTVPKqC+q bakR7GnritB/CJ7tuQ2Tg8SRTCq4RAIBLivImay3+aqxWV+QcYD4W3jeuGUKgA5P tsYOPDVl3wVs6NHQwcdC+MEyfXxyBuzBNTfDeVUshff9y2YnkzH7fbjguAGbnkpo Be0Hsc+M++wNR0wOL5Nxu7dGGnTKJfOOg0CB7zN+e2ZbIG9aDGGZLORHA/2olm3R HyhyCPr7lL7ACI9PPPOSUI6R+g/uaxjNYGkpvGCgfPxc4WSr6RyIL2R4Z4s+881Z /6JFMJpM2LzbDVJbCzeqERwny9f5mDPbGpsCAwEAAaOCAdowggHWMB0GA1UdDgQW BBQh3Eg9Nachc8zlytQgGWUeZ+NfcDAfBgNVHSMEGDAWgBSpNdWtM9xjDEYRmHFA 9eRotwgdETAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTk5Ny9xVFhWclRQY1l3eEdFWmh4UVBYa2FMY0lIUkUuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9xVFhWclRQY1l3eEdFWmh4UVBYa2FM Y0lIUkUuY2VyMA4GA1UdDwEB/wQEAwIHgDByBggrBgEFBQcBCwRmMGQwYgYIKwYB BQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvOTk5Ny9JZHhJUFRXbklYUE01Y3JVSUJsbEhtZmpYM0Eucm9hMB4G CCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAhekwDQYJKoZIhvcNAQELBQADggEB AKonfLew+G+JkykUOL3LdY+PAClbCb5nnM57JyYV2FOl+7p0CjvcsBwWHO7mTIzI VNl8fJhnHi2ncvDT76k7GFM6uYc5fsXdtmVd6KaJc7G4OdtlCWMXnh8yjggLU2NI KyfivAjugIn1MgAHuf2/MJqa15+2bcLDrBybzb3/perNPlxmDXFjuCKQ7dZg/N2Q BPm8A73fQuCzrhK1JSiR7TguletBqUpVVzsDWC3SMaZnBFDTzvcWdJLSTem36Lit WTw9ctU245b6lh6noR3VQbZThtWuDmMKJEU7p6wsl+BLXN6g6Er7gd6ZxhsfSyhm 8eT3P1l9aVuBy2A0D4gsAtI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:39:24 2026 by rpki-client