$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/BctConwQzsqx8F5LmPFox1cf1Wg.roa File: BctConwQzsqx8F5LmPFox1cf1Wg.roa (raw, json) Hash identifier: piOmMBbrbDWUXYzO7ipIEIW3YLvSbugJpQRMb4OEv0s= Subject key identifier: 05:CB:42:A2:7C:10:CE:CA:B1:F0:5E:4B:98:F1:68:C7:57:1F:D5:68 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 043D Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/BctConwQzsqx8F5LmPFox1cf1Wg.roa Signing time: Tue 31 Mar 2026 08:12:05 +0000 ROA not before: Tue 31 Mar 2026 08:12:05 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9824 IP address blocks: 117.53.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 10:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Mar 31 08:12:05 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=05CB42A27C10CECAB1F05E4B98F168C7571FD568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:14:15:96:c3:28:1f:45:80:9d:fb:eb:2f:08: 72:b7:51:44:e0:e3:5e:ab:10:09:f2:b7:d5:58:bd: 0e:a1:d9:3a:9e:6e:33:e9:cf:af:28:ee:58:9c:08: f5:4d:e1:4a:55:26:52:07:f7:78:42:c4:25:15:ff: 57:90:6e:29:b8:02:d9:a7:4b:30:2f:3d:e6:90:3c: 5b:72:26:da:68:f4:32:0a:2c:f9:1b:02:cc:54:80: 9d:34:29:05:46:7a:46:6c:31:ab:72:bf:cb:40:53: 6b:82:b1:99:aa:88:f7:5f:fe:84:10:05:e4:c0:6a: f5:de:15:62:97:eb:c5:26:08:ca:8a:0d:38:04:9d: 95:8d:2a:1f:d6:d6:d2:cd:7a:c8:fc:81:9f:e2:6d: b3:09:b0:b6:a6:81:0b:7d:0e:e1:fd:d4:c2:ac:66: dc:c2:e6:7c:d1:c3:38:3e:c3:5a:ff:9b:97:dd:b0: d1:34:17:6e:bc:33:93:c8:03:d3:75:b8:1a:82:bf: 3a:ef:d9:a5:fd:57:b8:e7:59:a4:42:01:53:17:dc: ff:81:ed:e3:c9:34:6e:1c:3f:6d:96:f5:0e:19:88: 4d:f1:b9:07:9e:3f:82:37:e7:a1:e9:b4:ba:db:28: 77:2a:10:0c:71:3a:d8:de:23:e3:7c:a4:02:dd:af: bd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CB:42:A2:7C:10:CE:CA:B1:F0:5E:4B:98:F1:68:C7:57:1F:D5:68 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/BctConwQzsqx8F5LmPFox1cf1Wg.roa sbgp-ipAddrBlock: critical IPv4: 117.53.32.0/21 Signature Algorithm: sha256WithRSAEncryption 48:0c:6b:ff:ab:98:b8:65:da:4a:c2:f0:3f:b8:86:6a:02:6f: 39:a2:9a:bd:d6:25:2f:b8:c4:ae:40:ce:5a:b2:e2:32:c2:6b: df:55:a7:fb:6a:21:52:5f:44:ea:6b:2c:23:0f:4c:70:5e:be: f3:88:4a:5d:16:3c:26:8e:f5:38:71:78:0f:37:a1:45:16:ba: 7c:55:36:a1:2f:f2:7b:ca:25:cc:27:3f:48:f1:44:18:19:81: 9e:84:c8:0a:2a:d4:b6:88:27:ce:9e:c6:07:ae:8d:3d:cf:de: 6d:f1:27:b3:c4:0c:26:7d:99:e8:c3:55:3e:5c:6e:7a:2e:e7: 51:2a:fe:ee:f6:cc:95:92:f1:00:27:bc:20:2d:58:b6:5e:99: 98:7e:46:2b:4d:89:36:2f:25:ee:52:95:be:e0:c8:e6:10:fa: 6f:86:c0:ed:30:a9:97:5d:93:1d:eb:e8:bd:87:76:88:4e:2e: d8:15:49:ff:cd:8f:69:35:5d:66:87:08:f7:01:2f:26:78:6a: 96:d3:2c:90:35:4b:bc:27:cf:2d:19:29:be:10:6b:cd:67:90: f9:fc:9a:e9:58:ce:2c:ff:fe:8f:c6:5c:1f:fa:52:48:d6:c8: 6e:d7:69:03:d7:47:a9:cc:f9:de:51:9e:5c:2c:c3:e5:90:81: c8:d5:37:03 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNjAzMzEw ODEyMDVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA1Q0I0MkEyN0MxMENF Q0FCMUYwNUU0Qjk4RjE2OEM3NTcxRkQ1NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdFBWWwygfRYCd++svCHK3UUTg416rEAnyt9VYvQ6h2TqebjPp z68o7licCPVN4UpVJlIH93hCxCUV/1eQbim4AtmnSzAvPeaQPFtyJtpo9DIKLPkb AsxUgJ00KQVGekZsMatyv8tAU2uCsZmqiPdf/oQQBeTAavXeFWKX68UmCMqKDTgE nZWNKh/W1tLNesj8gZ/ibbMJsLamgQt9DuH91MKsZtzC5nzRwzg+w1r/m5fdsNE0 F268M5PIA9N1uBqCvzrv2aX9V7jnWaRCAVMX3P+B7ePJNG4cP22W9Q4ZiE3xuQee P4I356HptLrbKHcqEAxxOtjeI+N8pALdr72PAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUBctConwQzsqx8F5LmPFox1cf1WgwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNjcxL0JjdENvbndRenNxeDhGNUxtUEZveDFjZjFXZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN1NSAwDQYJKoZIhvcNAQELBQADggEB AEgMa/+rmLhl2krC8D+4hmoCbzmimr3WJS+4xK5Azlqy4jLCa99Vp/tqIVJfROpr LCMPTHBevvOISl0WPCaO9ThxeA83oUUWunxVNqEv8nvKJcwnP0jxRBgZgZ6EyAoq 1LaIJ86exgeujT3P3m3xJ7PEDCZ9mejDVT5cbnou51Eq/u72zJWS8QAnvCAtWLZe mZh+RitNiTYvJe5Slb7gyOYQ+m+GwO0wqZddkx3r6L2HdohOLtgVSf/Nj2k1XWaH CPcBLyZ4apbTLJA1S7wnzy0ZKb4Qa81nkPn8mulYziz//o/GXB/6UkjWyG7XaQPX R6nM+d5Rnlwsw+WQgcjVNwM= -----END CERTIFICATE-----Generated at Mon Apr 6 12:55:37 2026 by rpki-client