$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1203/jU68Ewmh_jSybkuNT39rntLpFyo.roa File: jU68Ewmh_jSybkuNT39rntLpFyo.roa (raw, json) Hash identifier: 5VYeyTnBuw3xZLC8mXqSfKckjIAwvAZ6bvqjZ3Q4nIU= Subject key identifier: 8D:4E:BC:13:09:A1:FE:34:B2:6E:4B:8D:4F:7F:6B:9E:D2:E9:17:2A Certificate issuer: /CN=85A6C369C1A9C7A52C3E3805727A5FD31185A773 Certificate serial: 25 Authority key identifier: 85:A6:C3:69:C1:A9:C7:A5:2C:3E:38:05:72:7A:5F:D3:11:85:A7:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/jU68Ewmh_jSybkuNT39rntLpFyo.roa Signing time: Tue 31 Mar 2026 08:43:53 +0000 ROA not before: Tue 31 Mar 2026 08:43:53 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 154.34.128.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85A6C369C1A9C7A52C3E3805727A5FD31185A773 Validity Not Before: Mar 31 08:43:53 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8D4EBC1309A1FE34B26E4B8D4F7F6B9ED2E9172A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:06:64:41:0b:d8:58:ac:f1:7e:9e:eb:3f: e4:a7:f0:7d:1c:6c:88:ec:8f:dc:2d:cd:e4:32:12: 1d:e3:52:3d:33:90:68:46:17:b9:e8:d5:70:a2:10: be:56:80:b7:32:98:f4:49:ad:57:dc:24:77:85:c1: 3a:fc:12:ae:cf:19:33:8c:0f:f7:05:5e:f0:91:ef: 9a:c4:50:59:41:ef:5c:b7:88:46:ba:72:fb:36:73: 1f:85:0d:0f:66:b6:6f:29:3d:35:ad:45:14:6c:74: 80:3d:84:be:71:11:d8:6c:37:98:4b:ca:f3:4f:d8: 43:04:0e:07:46:e5:15:79:ec:03:dd:82:e0:a2:50: 93:98:2e:1b:35:6d:ee:f7:5a:a3:74:eb:9c:5d:e1: d6:c6:17:2c:c2:c9:d6:02:df:98:3f:5b:69:8e:3a: 9a:1a:f7:df:63:99:41:8d:84:31:31:39:b9:f0:11: 61:6c:87:6b:53:3e:0c:19:74:15:df:78:53:18:69: 5f:7a:c5:81:83:61:70:b4:4b:ac:f4:25:4c:37:ac: 6b:fe:af:f9:d7:2e:f0:36:72:b5:75:92:64:f4:ea: b7:74:06:62:a5:44:50:55:f7:d8:54:09:a0:b5:a9: ea:38:c6:b3:7b:45:8a:a0:f4:46:5a:df:68:b1:e9: 89:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4E:BC:13:09:A1:FE:34:B2:6E:4B:8D:4F:7F:6B:9E:D2:E9:17:2A X509v3 Authority Key Identifier: keyid:85:A6:C3:69:C1:A9:C7:A5:2C:3E:38:05:72:7A:5F:D3:11:85:A7:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/jU68Ewmh_jSybkuNT39rntLpFyo.roa sbgp-ipAddrBlock: critical IPv4: 154.34.128.0/17 Signature Algorithm: sha256WithRSAEncryption ac:bb:59:9c:ac:55:4d:11:fa:97:76:c7:c7:34:46:f9:be:5f: cd:e8:ba:8d:9f:1a:d7:04:fa:0d:8f:4a:a9:93:41:a8:d8:22: bc:a9:a0:75:b2:46:a8:76:6c:ef:5a:7b:66:74:c5:ab:24:fc: b9:20:40:89:ab:a2:99:92:cd:7f:96:ea:dd:65:f0:9c:e2:39: 75:fc:de:07:ff:ff:c9:88:2d:b2:1f:37:1d:33:13:a2:e4:34: 6a:8c:fe:f9:8a:ee:65:1a:8f:cf:25:e6:ad:b3:74:b8:00:59: 15:ba:c8:a6:28:7f:1f:33:d3:42:55:e2:b8:88:ba:2d:41:2a: 11:2f:a7:46:ad:b2:5b:9b:77:b4:5d:b2:ef:f8:67:9d:c2:8f: 97:21:50:7c:a0:f7:3e:2e:41:92:b8:97:26:20:ce:bc:49:93: bf:26:a1:70:23:c5:d1:6e:92:86:28:4c:67:a5:76:bc:eb:8c: 83:63:61:79:00:5f:d2:d8:38:0b:a0:24:7d:df:a2:c0:55:bc: 7b:4f:89:dc:fe:ee:70:f3:43:78:30:54:fe:b2:28:e1:73:25: 2d:a5:bd:00:0f:fd:f1:6d:20:9e:90:27:b2:da:dc:c1:bf:fb: 99:48:96:d5:74:51:c2:a5:f0:ee:e9:ee:54:c6:fc:b3:33:05: 16:83:f8:96 -----BEGIN CERTIFICATE----- MIIEvjCCA6agAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUE2 QzM2OUMxQTlDN0E1MkMzRTM4MDU3MjdBNUZEMzExODVBNzczMB4XDTI2MDMzMTA4 NDM1M1oXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOEQ0RUJDMTMwOUExRkUz NEIyNkU0QjhENEY3RjZCOUVEMkU5MTcyQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMH5BmRBC9hYrPF+nus/5KfwfRxsiOyP3C3N5DISHeNSPTOQaEYX uejVcKIQvlaAtzKY9EmtV9wkd4XBOvwSrs8ZM4wP9wVe8JHvmsRQWUHvXLeIRrpy +zZzH4UND2a2byk9Na1FFGx0gD2EvnER2Gw3mEvK80/YQwQOB0blFXnsA92C4KJQ k5guGzVt7vdao3TrnF3h1sYXLMLJ1gLfmD9baY46mhr332OZQY2EMTE5ufARYWyH a1M+DBl0Fd94UxhpX3rFgYNhcLRLrPQlTDesa/6v+dcu8DZytXWSZPTqt3QGYqVE UFX32FQJoLWp6jjGs3tFiqD0RlrfaLHpiVECAwEAAaOCAdswggHXMB0GA1UdDgQW BBSNTrwTCaH+NLJuS41Pf2ue0ukXKjAfBgNVHSMEGDAWgBSFpsNpwanHpSw+OAVy el/TEYWnczAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIwMy9oYWJEYWNHcHg2VXNQamdGY25wZjB4R0ZwM00uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9oYWJEYWNHcHg2VXNQamdGY25wZjB4 R0ZwM00uY2VyMA4GA1UdDwEB/wQEAwIHgDByBggrBgEFBQcBCwRmMGQwYgYIKwYB BQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTIwMy9qVTY4RXdtaF9qU3lia3VOVDM5cm50THBGeW8ucm9hMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHmiKAMA0GCSqGSIb3DQEBCwUAA4IB AQCsu1mcrFVNEfqXdsfHNEb5vl/N6LqNnxrXBPoNj0qpk0Go2CK8qaB1skaodmzv WntmdMWrJPy5IECJq6KZks1/lurdZfCc4jl1/N4H///JiC2yHzcdMxOi5DRqjP75 iu5lGo/PJeats3S4AFkVusimKH8fM9NCVeK4iLotQSoRL6dGrbJbm3e0XbLv+Ged wo+XIVB8oPc+LkGSuJcmIM68SZO/JqFwI8XRbpKGKExnpXa864yDY2F5AF/S2DgL oCR936LAVbx7T4nc/u5w80N4MFT+sijhcyUtpb0AD/3xbSCekCey2tzBv/uZSJbV dFHCpfDu6e5UxvyzMwUWg/iW -----END CERTIFICATE-----Generated at Wed Apr 1 13:58:43 2026 by rpki-client