$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/249/BvFUYWyHiM-LeU4mbyajVm4w8lo.roa File: BvFUYWyHiM-LeU4mbyajVm4w8lo.roa (raw, json) Hash identifier: qX8bB3v23WwmGVgcVvVRR40HbSX54w7HUNW5mfM2V60= Subject key identifier: 06:F1:54:61:6C:87:88:CF:8B:79:4E:26:6F:26:A3:56:6E:30:F2:5A Certificate issuer: /CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Certificate serial: 9F Authority key identifier: 27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/BvFUYWyHiM-LeU4mbyajVm4w8lo.roa Signing time: Tue 31 Mar 2026 08:37:11 +0000 ROA not before: Tue 31 Mar 2026 08:37:11 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7679 IP address blocks: 202.220.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Validity Not Before: Mar 31 08:37:11 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=06F154616C8788CF8B794E266F26A3566E30F25A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:04:c0:69:16:59:ed:e4:ad:12:bb:8c:4e:0a: 65:3d:c2:6d:e5:ba:2c:e7:d5:42:bb:d3:d6:a6:d2: 76:83:fc:e3:a9:26:0b:d2:83:af:15:f5:3d:16:92: dd:95:ef:c5:0e:97:cd:6a:a0:bc:06:53:8e:2e:ff: 08:8f:12:8c:9a:16:8f:40:f9:85:15:e8:91:f9:db: d3:f5:95:55:35:1d:3a:d0:be:fa:02:b1:07:0f:c4: 88:32:27:f0:bd:a5:cb:e9:c5:98:bd:e5:38:31:e1: 17:d6:3c:6d:60:d2:72:83:0a:d6:c3:6f:c2:f5:c9: 03:2d:83:88:2c:38:f8:9f:5a:8e:d3:8d:72:85:b5: bf:a7:4c:4b:63:61:89:1c:e9:2c:33:d4:bd:5d:27: 7a:0a:e6:e2:04:2c:d6:57:5f:60:63:a9:eb:70:fd: 06:fb:ac:ec:56:fd:37:f9:75:1e:87:02:09:c8:be: d6:9e:54:64:34:69:17:6b:0c:0a:7b:99:09:f7:df: de:70:32:9e:a3:6a:c4:e0:41:33:17:b4:60:da:31: 18:e4:f4:83:13:5f:3c:2b:0e:9c:1b:37:7e:53:ea: 23:19:48:08:a7:af:64:c4:32:77:0e:0d:cc:fa:96: b5:f9:17:30:9c:30:19:29:04:fc:f2:d9:f9:cf:26: 94:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F1:54:61:6C:87:88:CF:8B:79:4E:26:6F:26:A3:56:6E:30:F2:5A X509v3 Authority Key Identifier: keyid:27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/BvFUYWyHiM-LeU4mbyajVm4w8lo.roa sbgp-ipAddrBlock: critical IPv4: 202.220.40.0/21 Signature Algorithm: sha256WithRSAEncryption 89:6c:93:b9:94:76:45:8d:a3:c0:b4:91:b1:f8:43:a9:86:6c: b0:30:52:f7:1c:1d:68:fe:42:87:24:c6:99:f9:5a:b5:ac:40: 29:9e:1a:b6:2d:33:53:59:3a:a9:7b:14:27:d5:18:7e:71:9c: 33:8e:ba:49:41:a2:af:e0:d5:99:49:b4:5f:75:91:9f:ff:19: f2:0d:ee:53:a6:76:e2:c1:62:5e:91:e8:c8:81:2f:06:e2:10: b3:f2:92:79:36:9e:df:61:df:cf:1a:bd:a9:dd:df:fb:d2:7c: df:fd:5e:5e:f9:6c:2e:50:0e:51:6c:74:7b:de:f0:65:87:69: f9:7b:bf:30:a1:67:c0:68:92:b4:ea:ec:81:5d:a8:21:58:27: e8:01:ae:74:44:2e:3e:a8:01:68:b8:cd:1c:6e:92:4b:e2:a4: 3d:e9:1a:0e:17:ba:a1:5f:9a:ff:3f:bd:4e:f2:aa:d0:70:38: d3:aa:4e:ce:73:d7:97:5f:05:20:c5:b8:0f:22:85:93:06:c7: 64:6a:6c:d6:66:52:fa:b8:66:10:8e:2e:bc:c2:2b:bb:22:6c: db:03:79:2d:a2:16:e6:60:cc:74:34:de:f6:22:1c:e0:ee:15: 63:e5:ba:50:24:3c:dc:78:a1:77:7b:da:f1:05:28:85:fe:ae: 0e:57:86:80 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjc1 RDk3ODJCMTNFOTkxMjhDRDM0RjIyQzA5RkU4RTdCNUNCQTcwQjAeFw0yNjAzMzEw ODM3MTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA2RjE1NDYxNkM4Nzg4 Q0Y4Qjc5NEUyNjZGMjZBMzU2NkUzMEYyNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1BMBpFlnt5K0Su4xOCmU9wm3luizn1UK709am0naD/OOpJgvS g68V9T0Wkt2V78UOl81qoLwGU44u/wiPEoyaFo9A+YUV6JH529P1lVU1HTrQvvoC sQcPxIgyJ/C9pcvpxZi95Tgx4RfWPG1g0nKDCtbDb8L1yQMtg4gsOPifWo7TjXKF tb+nTEtjYYkc6Swz1L1dJ3oK5uIELNZXX2Bjqetw/Qb7rOxW/Tf5dR6HAgnIvtae VGQ0aRdrDAp7mQn3395wMp6jasTgQTMXtGDaMRjk9IMTXzwrDpwbN35T6iMZSAin r2TEMncODcz6lrX5FzCcMBkpBPzy2fnPJpQHAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUBvFUYWyHiM+LeU4mbyajVm4w8lowHwYDVR0jBBgwFoAUJ12XgrE+mRKM008i wJ/o57XLpwswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0OS9KMTJYZ3JFLW1SS00wMDhpd0pfbzU3WExwd3MuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9KMTJYZ3JFLW1SS00wMDhpd0pfbzU3 WExwd3MuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMjQ5L0J2RlVZV3lIaU0tTGVVNG1ieWFqVm00dzhsby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPK3CgwDQYJKoZIhvcNAQELBQADggEB AIlsk7mUdkWNo8C0kbH4Q6mGbLAwUvccHWj+Qockxpn5WrWsQCmeGrYtM1NZOql7 FCfVGH5xnDOOuklBoq/g1ZlJtF91kZ//GfIN7lOmduLBYl6R6MiBLwbiELPyknk2 nt9h388avand3/vSfN/9Xl75bC5QDlFsdHve8GWHafl7vzChZ8BokrTq7IFdqCFY J+gBrnRELj6oAWi4zRxukkvipD3pGg4XuqFfmv8/vU7yqtBwONOqTs5z15dfBSDF uA8ihZMGx2RqbNZmUvq4ZhCOLrzCK7sibNsDeS2iFuZgzHQ03vYiHODuFWPlulAk PNx4oXd72vEFKIX+rg5XhoA= -----END CERTIFICATE-----Generated at Tue Apr 7 22:25:13 2026 by rpki-client