$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1091/BFXchvn7A8t6yNxtkksPVG9errs.roa File: BFXchvn7A8t6yNxtkksPVG9errs.roa (raw, json) Hash identifier: +mw3RHn0XXLI59tddMvbF1KhyPf6CBsxguM4Ot+8vx0= Subject key identifier: 04:55:DC:86:F9:FB:03:CB:7A:C8:DC:6D:92:4B:0F:54:6F:5E:AE:BB Certificate issuer: /CN=8C86E32ECE9A3C850FEBEA69641F3544273D5371 Certificate serial: 29 Authority key identifier: 8C:86:E3:2E:CE:9A:3C:85:0F:EB:EA:69:64:1F:35:44:27:3D:53:71 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jIbjLs6aPIUP6-ppZB81RCc9U3E.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/BFXchvn7A8t6yNxtkksPVG9errs.roa Signing time: Tue 31 Mar 2026 08:42:19 +0000 ROA not before: Tue 31 Mar 2026 08:42:19 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9593 IP address blocks: 138.101.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/jIbjLs6aPIUP6-ppZB81RCc9U3E.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/jIbjLs6aPIUP6-ppZB81RCc9U3E.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jIbjLs6aPIUP6-ppZB81RCc9U3E.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C86E32ECE9A3C850FEBEA69641F3544273D5371 Validity Not Before: Mar 31 08:42:19 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0455DC86F9FB03CB7AC8DC6D924B0F546F5EAEBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:10:a5:38:5b:c6:91:43:8e:04:a2:c3:6d: 43:17:f2:91:28:6e:09:84:ee:dd:41:f8:47:15:bc: d5:6c:4d:21:5a:67:52:d8:88:61:78:bd:71:5d:8b: 41:b5:a1:b4:51:90:54:78:6d:2d:dd:f5:71:da:d5: 62:ae:54:99:03:2b:46:79:7f:e0:c1:b1:56:64:c9: 81:60:93:2d:a4:72:4f:66:cc:05:34:57:05:57:51: 5a:21:3e:0b:51:d4:3c:6e:1e:f5:e4:77:05:d8:82: 3f:6c:2c:dd:ca:2d:c5:86:02:5c:8b:97:4c:79:06: fe:c3:56:53:08:9f:a4:e6:a6:a9:6e:44:e1:aa:9b: d7:48:4f:e3:90:d9:6a:bd:3d:e9:9d:79:fa:3b:f3: cd:ec:ba:7b:b4:17:11:ac:16:6e:d2:dd:4e:23:56: 1a:6f:ae:fe:57:a2:cc:fa:2f:52:19:5d:85:86:fb: c4:78:64:61:cc:25:16:b4:e1:90:33:a2:33:0d:cd: 3b:bc:f1:1f:33:33:18:c6:a3:9a:ee:5b:d7:7a:c6: 33:51:dc:0c:82:1b:aa:79:a0:e0:bb:27:61:ec:11: 1e:0f:67:10:4a:98:7f:8f:51:a9:ae:ef:f2:11:34: 23:29:b1:16:2e:f0:1e:45:be:0d:37:39:b7:b7:eb: d8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:55:DC:86:F9:FB:03:CB:7A:C8:DC:6D:92:4B:0F:54:6F:5E:AE:BB X509v3 Authority Key Identifier: keyid:8C:86:E3:2E:CE:9A:3C:85:0F:EB:EA:69:64:1F:35:44:27:3D:53:71 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/jIbjLs6aPIUP6-ppZB81RCc9U3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jIbjLs6aPIUP6-ppZB81RCc9U3E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/BFXchvn7A8t6yNxtkksPVG9errs.roa sbgp-ipAddrBlock: critical IPv4: 138.101.32.0/20 Signature Algorithm: sha256WithRSAEncryption 5a:56:f3:db:76:84:31:1d:36:bd:c0:b7:83:58:ec:26:7b:b8: 98:54:ea:b7:bd:c4:4a:70:4c:56:7e:e5:49:cb:a4:66:e8:46: 10:81:f4:25:53:12:73:c0:73:3a:74:1c:90:0c:0f:f5:68:e7: 22:b8:75:35:50:dd:20:3e:de:38:6b:11:54:64:54:2e:b9:60: 76:2a:4e:5e:78:60:39:95:57:fe:1d:36:80:da:dc:37:f6:fe: ad:d4:60:be:1b:1c:4e:ba:66:51:0b:ff:9e:79:31:a8:ba:7a: dd:5f:51:ab:bf:ff:5e:49:d4:80:75:0e:ec:9a:31:60:cd:d1: 9b:4b:80:ba:eb:b0:c5:52:d4:7c:43:16:10:95:50:e5:0a:42: 0e:fe:2c:bc:c6:cc:23:27:77:71:d7:1a:83:b8:27:1d:12:f0: 47:59:45:07:37:53:1b:3d:a2:87:4a:53:a5:8c:81:f8:56:23: 2d:e4:94:06:84:fc:10:f9:c4:b9:5a:6a:ce:98:69:48:4d:37: 20:ef:1e:7d:4b:f4:e5:c7:a2:cb:79:81:39:80:39:8c:44:85: 77:63:7c:e7:fd:c6:a2:8a:fa:62:96:f1:d8:55:5e:84:01:6f: 12:fa:db:d1:11:27:c2:b9:b8:a5:59:12:1e:ad:ea:a4:13:b3: 02:65:e3:fa -----BEGIN CERTIFICATE----- MIIEvjCCA6agAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4Qzg2 RTMyRUNFOUEzQzg1MEZFQkVBNjk2NDFGMzU0NDI3M0Q1MzcxMB4XDTI2MDMzMTA4 NDIxOVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMDQ1NURDODZGOUZCMDND QjdBQzhEQzZEOTI0QjBGNTQ2RjVFQUVCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMIMEKU4W8aRQ44EosNtQxfykShuCYTu3UH4RxW81WxNIVpnUtiI YXi9cV2LQbWhtFGQVHhtLd31cdrVYq5UmQMrRnl/4MGxVmTJgWCTLaRyT2bMBTRX BVdRWiE+C1HUPG4e9eR3BdiCP2ws3cotxYYCXIuXTHkG/sNWUwifpOamqW5E4aqb 10hP45DZar096Z15+jvzzey6e7QXEawWbtLdTiNWGm+u/leizPovUhldhYb7xHhk YcwlFrThkDOiMw3NO7zxHzMzGMajmu5b13rGM1HcDIIbqnmg4LsnYewRHg9nEEqY f49Rqa7v8hE0IymxFi7wHkW+DTc5t7fr2KcCAwEAAaOCAdswggHXMB0GA1UdDgQW BBQEVdyG+fsDy3rI3G2SSw9Ub16uuzAfBgNVHSMEGDAWgBSMhuMuzpo8hQ/r6mlk HzVEJz1TcTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA5MS9qSWJqTHM2YVBJVVA2LXBwWkI4MVJDYzlVM0UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9qSWJqTHM2YVBJVVA2LXBwWkI4MVJD YzlVM0UuY2VyMA4GA1UdDwEB/wQEAwIHgDByBggrBgEFBQcBCwRmMGQwYgYIKwYB BQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTA5MS9CRlhjaHZuN0E4dDZ5Tnh0a2tzUFZHOWVycnMucm9hMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEimUgMA0GCSqGSIb3DQEBCwUAA4IB AQBaVvPbdoQxHTa9wLeDWOwme7iYVOq3vcRKcExWfuVJy6Rm6EYQgfQlUxJzwHM6 dByQDA/1aOciuHU1UN0gPt44axFUZFQuuWB2Kk5eeGA5lVf+HTaA2tw39v6t1GC+ GxxOumZRC/+eeTGounrdX1Grv/9eSdSAdQ7smjFgzdGbS4C667DFUtR8QxYQlVDl CkIO/iy8xswjJ3dx1xqDuCcdEvBHWUUHN1MbPaKHSlOljIH4ViMt5JQGhPwQ+cS5 WmrOmGlITTcg7x59S/Tlx6LLeYE5gDmMRIV3Y3zn/caiivpilvHYVV6EAW8S+tvR ESfCubilWRIereqkE7MCZeP6 -----END CERTIFICATE-----Generated at Sun Apr 19 09:43:45 2026 by rpki-client