$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20072/QC2DaM-poQRaQVpOz82yoI4fajY.roa File: QC2DaM-poQRaQVpOz82yoI4fajY.roa (raw, json) Hash identifier: DYJenDvVprxtUhqXTTM9Pz18VmrnFxCe2qZfINqisDI= Subject key identifier: 40:2D:83:68:CF:A9:A1:04:5A:41:5A:4E:CF:CD:B2:A0:8E:1F:6A:36 Certificate issuer: /CN=C9CAEB0E1A067B9FA262493FA836A19BDEEBA030 Certificate serial: 04 Authority key identifier: C9:CA:EB:0E:1A:06:7B:9F:A2:62:49:3F:A8:36:A1:9B:DE:EB:A0:30 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ycrrDhoGe5-iYkk_qDahm97roDA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20072/QC2DaM-poQRaQVpOz82yoI4fajY.roa Signing time: Fri 15 May 2026 02:36:35 +0000 ROA not before: Fri 15 May 2026 02:36:35 +0000 ROA not after: Sat 15 May 2027 01:30:02 +0000 asID: 131937 IP address blocks: 170.249.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20072/ycrrDhoGe5-iYkk_qDahm97roDA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20072/ycrrDhoGe5-iYkk_qDahm97roDA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ycrrDhoGe5-iYkk_qDahm97roDA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9CAEB0E1A067B9FA262493FA836A19BDEEBA030 Validity Not Before: May 15 02:36:35 2026 GMT Not After : May 15 01:30:02 2027 GMT Subject: CN=402D8368CFA9A1045A415A4ECFCDB2A08E1F6A36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:d6:64:6c:d4:d4:66:ae:c9:b0:62:7f:01: 59:58:3f:56:c2:de:17:36:c6:23:fb:68:ea:d6:bf: 07:ec:c1:7d:7b:ac:cc:b6:0e:8f:76:29:ca:18:3f: ac:68:d9:7d:6b:e3:73:a4:56:a0:87:f6:8e:15:2c: d2:9e:4e:83:56:d0:67:a9:ad:12:ba:a5:da:7a:64: b3:8d:b2:ed:9e:62:3b:21:78:c2:84:19:4e:cb:41: ba:96:78:07:51:4d:a7:3e:1e:37:97:46:61:09:d5: 4b:59:bd:6e:ec:57:3e:6d:1b:b9:73:3a:7d:54:aa: 6b:29:86:5b:bd:f4:71:81:f9:19:a6:70:cd:75:7c: 34:0a:3b:75:7d:36:2c:3a:df:ae:2e:ce:82:a0:2e: f9:d3:b1:b7:3b:d7:3d:63:04:61:74:0a:8a:80:bd: 14:e9:24:9f:4d:53:fb:c1:f2:42:1e:82:ce:cb:40: 42:fa:4e:b6:1a:88:d7:5c:98:36:16:63:38:4b:d2: 88:3a:2b:d6:43:59:5b:63:67:a9:70:40:31:5e:46: 75:84:12:59:da:ff:13:82:55:3e:ac:e0:fd:15:09: 14:0d:07:24:92:23:e2:5f:a1:39:c1:8f:7b:d2:7b: fd:fc:f1:99:03:f6:40:9a:7b:81:1c:79:14:80:76: 6c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2D:83:68:CF:A9:A1:04:5A:41:5A:4E:CF:CD:B2:A0:8E:1F:6A:36 X509v3 Authority Key Identifier: keyid:C9:CA:EB:0E:1A:06:7B:9F:A2:62:49:3F:A8:36:A1:9B:DE:EB:A0:30 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20072/ycrrDhoGe5-iYkk_qDahm97roDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ycrrDhoGe5-iYkk_qDahm97roDA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20072/QC2DaM-poQRaQVpOz82yoI4fajY.roa sbgp-ipAddrBlock: critical IPv4: 170.249.96.0/19 Signature Algorithm: sha256WithRSAEncryption 1b:30:c2:38:32:fe:58:66:13:e0:17:32:83:e4:ed:c1:4d:5c: c8:be:5d:14:c7:2e:5c:7f:7e:b7:7c:ca:bf:84:1e:22:bd:1f: 0f:c7:62:bc:c3:8c:00:4e:a0:04:55:bc:86:03:21:96:59:24: 9c:14:c0:04:68:d6:f0:58:29:d0:b5:1f:94:c8:0c:dd:5c:94: ea:eb:57:93:16:b3:a9:f6:3b:eb:53:6c:30:1c:9b:45:c0:40: 48:30:58:62:31:41:9d:5e:8f:40:b5:63:be:c9:d0:c7:08:ed: 43:65:76:03:b3:b0:45:7f:08:1b:4b:bf:5c:aa:b6:80:fa:79: ef:a8:26:ee:03:f6:35:b8:e3:cd:cb:e0:47:3d:0e:d4:53:d4: d3:7c:50:b2:f1:d8:52:c0:3f:2f:ef:18:bb:a5:d0:89:cc:05: c9:81:ec:0e:32:5d:e3:1d:d8:72:75:27:0e:30:08:68:1a:9b: 6f:d6:62:8f:1d:c4:36:fc:81:c3:19:41:25:d4:19:fa:94:32: 47:36:95:d4:8a:ac:83:15:da:5b:70:bf:69:12:db:6b:05:f4: 6b:89:51:84:ee:7d:e6:86:e1:8e:a0:40:85:f9:ab:55:59:79: b4:6c:a4:4a:de:95:d8:6f:e8:ee:45:f0:05:bf:e7:36:b0:65: cd:65:0f:e0 -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDOUNB RUIwRTFBMDY3QjlGQTI2MjQ5M0ZBODM2QTE5QkRFRUJBMDMwMB4XDTI2MDUxNTAy MzYzNVoXDTI3MDUxNTAxMzAwMlowMzExMC8GA1UEAxMoNDAyRDgzNjhDRkE5QTEw NDVBNDE1QTRFQ0ZDREIyQTA4RTFGNkEzNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKKO1mRs1NRmrsmwYn8BWVg/VsLeFzbGI/to6ta/B+zBfXuszLYO j3Ypyhg/rGjZfWvjc6RWoIf2jhUs0p5Og1bQZ6mtErql2npks42y7Z5iOyF4woQZ TstBupZ4B1FNpz4eN5dGYQnVS1m9buxXPm0buXM6fVSqaymGW730cYH5GaZwzXV8 NAo7dX02LDrfri7OgqAu+dOxtzvXPWMEYXQKioC9FOkkn01T+8HyQh6CzstAQvpO thqI11yYNhZjOEvSiDor1kNZW2NnqXBAMV5GdYQSWdr/E4JVPqzg/RUJFA0HJJIj 4l+hOcGPe9J7/fzxmQP2QJp7gRx5FIB2bH0CAwEAAaOCAd0wggHZMB0GA1UdDgQW BBRALYNoz6mhBFpBWk7PzbKgjh9qNjAfBgNVHSMEGDAWgBTJyusOGgZ7n6JiST+o NqGb3uugMDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzIveWNyckRob0dlNS1pWWtrX3FEYWhtOTdyb0RBLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveWNyckRob0dlNS1pWWtrX3FEYWht OTdyb0RBLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIwMDcyL1FDMkRhTS1wb1FSYVFWcE96ODJ5b0k0ZmFqWS5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWq+WAwDQYJKoZIhvcNAQELBQAD ggEBABswwjgy/lhmE+AXMoPk7cFNXMi+XRTHLlx/frd8yr+EHiK9Hw/HYrzDjABO oARVvIYDIZZZJJwUwARo1vBYKdC1H5TIDN1clOrrV5MWs6n2O+tTbDAcm0XAQEgw WGIxQZ1ej0C1Y77J0McI7UNldgOzsEV/CBtLv1yqtoD6ee+oJu4D9jW4483L4Ec9 DtRT1NN8ULLx2FLAPy/vGLul0InMBcmB7A4yXeMd2HJ1Jw4wCGgam2/WYo8dxDb8 gcMZQSXUGfqUMkc2ldSKrIMV2ltwv2kS22sF9GuJUYTufeaG4Y6gQIX5q1VZebRs pEreldhv6O5F8AW/5zawZc1lD+A= -----END CERTIFICATE-----Generated at Sat May 23 07:08:23 2026 by rpki-client