$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1203/l55D1xujPjrHnP0YILrAcj6dopY.roa File: l55D1xujPjrHnP0YILrAcj6dopY.roa (raw, json) Hash identifier: aaDxioLoXyy3WYWB91Y/DdxIDxhQunPbL+4llfB8YmI= Subject key identifier: 97:9E:43:D7:1B:A3:3E:3A:C7:9C:FD:18:20:BA:C0:72:3E:9D:A2:96 Certificate issuer: /CN=85A6C369C1A9C7A52C3E3805727A5FD31185A773 Certificate serial: 23 Authority key identifier: 85:A6:C3:69:C1:A9:C7:A5:2C:3E:38:05:72:7A:5F:D3:11:85:A7:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/l55D1xujPjrHnP0YILrAcj6dopY.roa Signing time: Tue 31 Mar 2026 08:43:52 +0000 ROA not before: Tue 31 Mar 2026 08:43:52 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4694 IP address blocks: 154.33.0.0/16 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85A6C369C1A9C7A52C3E3805727A5FD31185A773 Validity Not Before: Mar 31 08:43:52 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=979E43D71BA33E3AC79CFD1820BAC0723E9DA296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:44:eb:3f:45:68:06:67:d1:be:15:55:78:4b: 04:7b:eb:98:cc:89:ae:8f:85:20:38:0f:bf:6e:ee: cb:a6:89:13:c0:5b:c8:fd:df:35:fe:eb:72:17:2f: b2:8c:b6:6f:47:4a:0d:93:67:5f:9e:15:ef:e3:b9: 12:d3:72:0e:4a:6b:17:a9:de:55:9a:24:be:a5:28: c3:8c:a3:90:ef:96:6a:e4:13:3d:ba:6b:e7:98:0a: cb:81:9e:44:1b:d0:7a:d8:5c:34:20:27:05:42:51: 0b:4d:7b:d4:02:96:ad:9d:bd:08:c0:47:6f:c1:15: 96:7b:b3:24:24:f5:95:d2:d9:bf:13:29:99:6e:82: c7:ab:fa:bd:39:1f:0a:8b:93:5c:46:34:8c:a1:6b: 93:d5:2a:75:f8:fb:0f:f7:21:37:69:e9:fe:87:ff: 96:e6:ca:c0:1b:81:7c:ab:aa:49:53:85:73:b0:30: 99:d0:0c:5c:9c:6e:01:01:4b:71:5e:ad:52:ff:e8: a9:94:b7:ec:63:3f:1c:94:39:2b:4f:70:51:dc:fd: 99:0c:51:ce:d3:5f:8c:b2:2a:a5:25:88:71:20:5b: 5c:4c:c3:6a:a1:93:39:85:ec:11:8f:aa:70:22:a9: 33:d9:ae:29:90:5e:4d:58:c5:c6:17:c7:43:3e:9b: f1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:9E:43:D7:1B:A3:3E:3A:C7:9C:FD:18:20:BA:C0:72:3E:9D:A2:96 X509v3 Authority Key Identifier: keyid:85:A6:C3:69:C1:A9:C7:A5:2C:3E:38:05:72:7A:5F:D3:11:85:A7:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/l55D1xujPjrHnP0YILrAcj6dopY.roa sbgp-ipAddrBlock: critical IPv4: 154.33.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2a:65:58:10:43:95:20:ca:a2:ac:76:e2:de:98:59:90:1a:8b: 5e:ee:a8:98:47:da:52:b8:90:1c:ca:dc:d3:22:a6:14:90:73: 5f:94:10:80:c9:94:e9:81:bc:b1:d1:59:33:9a:f3:2a:d9:5d: ee:6c:f9:29:ae:76:e7:11:9b:33:61:1b:a9:8b:19:1d:bb:ed: c0:21:8a:52:dc:92:c3:7a:f1:b5:b3:ea:2e:b0:59:ba:71:69: ba:d6:27:20:79:7d:9f:37:13:c6:e0:12:e2:24:89:ea:c9:10: 47:9e:97:67:f3:34:3d:78:f3:cb:57:02:40:cc:ef:7c:ad:0c: dd:f6:b9:27:a6:58:fe:94:b6:70:4a:64:6e:e6:64:24:b7:95: 3d:99:a9:c1:5f:ee:eb:b6:4f:95:f6:77:f2:38:bc:5c:47:a7: 99:cd:03:ff:8e:db:01:86:82:85:b5:67:76:aa:96:ff:b6:ad: 41:88:57:1f:6e:5f:73:17:4e:1d:f8:27:05:e3:b4:a7:ac:08: 55:a9:db:ee:d9:32:26:8a:bb:bb:b7:7e:7d:97:6b:13:1a:32: 1b:06:90:88:c1:31:28:37:1c:5b:5b:a1:4e:57:44:35:44:88: 7f:cc:8e:dd:cd:45:69:0c:ca:b2:d2:6c:da:b3:99:f8:f7:d6: a2:85:66:84 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUE2 QzM2OUMxQTlDN0E1MkMzRTM4MDU3MjdBNUZEMzExODVBNzczMB4XDTI2MDMzMTA4 NDM1MloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOTc5RTQzRDcxQkEzM0Uz QUM3OUNGRDE4MjBCQUMwNzIzRTlEQTI5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANdE6z9FaAZn0b4VVXhLBHvrmMyJro+FIDgPv27uy6aJE8BbyP3f Nf7rchcvsoy2b0dKDZNnX54V7+O5EtNyDkprF6neVZokvqUow4yjkO+WauQTPbpr 55gKy4GeRBvQethcNCAnBUJRC0171AKWrZ29CMBHb8EVlnuzJCT1ldLZvxMpmW6C x6v6vTkfCouTXEY0jKFrk9Uqdfj7D/chN2np/of/lubKwBuBfKuqSVOFc7AwmdAM XJxuAQFLcV6tUv/oqZS37GM/HJQ5K09wUdz9mQxRztNfjLIqpSWIcSBbXEzDaqGT OYXsEY+qcCKpM9muKZBeTVjFxhfHQz6b8asCAwEAAaOCAdowggHWMB0GA1UdDgQW BBSXnkPXG6M+Osec/RggusByPp2iljAfBgNVHSMEGDAWgBSFpsNpwanHpSw+OAVy el/TEYWnczAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIwMy9oYWJEYWNHcHg2VXNQamdGY25wZjB4R0ZwM00uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9oYWJEYWNHcHg2VXNQamdGY25wZjB4 R0ZwM00uY2VyMA4GA1UdDwEB/wQEAwIHgDByBggrBgEFBQcBCwRmMGQwYgYIKwYB BQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTIwMy9sNTVEMXh1alBqckhuUDBZSUxyQWNqNmRvcFkucm9hMB4G CCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAmiEwDQYJKoZIhvcNAQELBQADggEB ACplWBBDlSDKoqx24t6YWZAai17uqJhH2lK4kBzK3NMiphSQc1+UEIDJlOmBvLHR WTOa8yrZXe5s+SmuducRmzNhG6mLGR277cAhilLcksN68bWz6i6wWbpxabrWJyB5 fZ83E8bgEuIkierJEEeel2fzND1488tXAkDM73ytDN32uSemWP6UtnBKZG7mZCS3 lT2ZqcFf7uu2T5X2d/I4vFxHp5nNA/+O2wGGgoW1Z3aqlv+2rUGIVx9uX3MXTh34 JwXjtKesCFWp2+7ZMiaKu7u3fn2XaxMaMhsGkIjBMSg3HFtboU5XRDVEiH/Mjt3N RWkMyrLSbNqzmfj31qKFZoQ= -----END CERTIFICATE-----Generated at Wed Apr 1 14:06:21 2026 by rpki-client