$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/KbvEY2cQpcXE5kr6SVtOu3Qe-d0.roa File: KbvEY2cQpcXE5kr6SVtOu3Qe-d0.roa (raw, json) Hash identifier: 1M+Gu0BEPjKLNLhBvZ5b4DPXmBph44mBgRREUvUBCgk= Subject key identifier: 29:BB:C4:63:67:10:A5:C5:C4:E6:4A:FA:49:5B:4E:BB:74:1E:F9:DD Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18 Certificate serial: CA Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/KbvEY2cQpcXE5kr6SVtOu3Qe-d0.roa Signing time: Tue 31 Mar 2026 08:17:51 +0000 ROA not before: Tue 31 Mar 2026 08:17:51 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 210.139.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18 Validity Not Before: Mar 31 08:17:51 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=29BBC4636710A5C5C4E64AFA495B4EBB741EF9DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d0:4d:c4:f4:e7:45:1e:e3:dc:fa:95:52:e7: de:74:5a:f3:23:56:7d:f2:55:f6:fc:af:b7:10:a2: 92:0d:84:f9:48:5d:c8:b9:59:02:8f:3f:7d:97:46: 4b:4a:29:d9:f2:47:4a:f0:2f:95:55:42:b0:7a:f5: 1c:f7:a1:f6:f7:50:3b:6f:ee:0b:2d:f4:98:4c:34: 34:36:5a:c5:91:07:74:61:23:41:e8:b9:9f:7d:18: 2e:52:76:f8:65:ea:58:57:5e:0c:e3:63:d2:40:b9: 14:cc:fe:f5:e2:ff:6a:62:8f:a9:72:ec:82:3a:02: 5f:13:be:b2:4f:18:c4:e2:06:bf:b4:77:d8:d6:08: 98:02:eb:72:7f:1b:c5:aa:44:21:14:b1:a5:65:6c: 8e:08:62:87:3b:d2:dd:48:1a:00:7f:9c:d1:b6:17: f0:5c:6d:21:1f:c2:30:b4:e8:e4:10:d2:2c:93:1e: 40:0f:45:5a:4d:ce:96:b5:bb:21:c3:9f:0f:52:3d: 5d:d5:f7:1f:6d:e8:6d:a1:e6:d2:a9:6c:c3:8f:07: c6:ca:ff:b8:6d:a8:68:91:47:58:b0:30:32:e7:71: 99:a5:8d:e9:89:4d:e0:8c:17:77:57:0b:6c:6c:39: 66:26:4f:a9:37:f7:09:3d:b3:c4:02:17:53:c3:3b: 43:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BB:C4:63:67:10:A5:C5:C4:E6:4A:FA:49:5B:4E:BB:74:1E:F9:DD X509v3 Authority Key Identifier: keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/KbvEY2cQpcXE5kr6SVtOu3Qe-d0.roa sbgp-ipAddrBlock: critical IPv4: 210.139.0.0/17 Signature Algorithm: sha256WithRSAEncryption 81:7a:36:84:a7:11:0e:aa:5c:7c:da:2a:24:74:de:99:4a:b2: 25:b1:ed:7a:2a:22:ed:4b:3b:51:0a:cf:b2:eb:99:6c:81:33: f2:f1:da:e7:b0:8c:5d:a3:a4:12:3c:a8:fa:20:d0:7e:06:e4: ce:6e:3b:ca:f5:de:9c:41:a2:cc:ee:b6:63:17:57:02:4a:1c: aa:36:c0:c2:f3:d2:27:bd:58:38:24:ec:da:16:d1:79:ad:82: b9:7b:85:5c:df:38:17:11:38:95:85:c0:92:ea:f2:5a:8c:cd: 06:81:0b:3b:ba:03:50:c3:28:da:01:4b:96:6b:51:fa:8c:5e: e2:eb:86:6b:1e:08:dc:4c:6c:c3:97:83:82:2b:ac:3d:bf:c8: 31:bd:2e:4c:08:e4:8d:d0:28:a5:95:9e:36:a2:f2:9e:9f:a1: 4b:d6:7b:87:ef:fd:52:88:fa:1f:94:f5:d9:55:c8:ee:b7:b2: 70:0f:f4:c3:24:9f:95:ea:30:d2:ae:1d:c2:7e:0f:28:e1:ec: 26:75:97:97:b2:7f:2b:e5:7b:dc:a6:67:eb:70:4b:6d:dc:21: 73:61:bd:63:03:b7:7e:be:ec:4a:ef:e4:7f:c6:cd:54:c2:af: e5:76:13:ba:1e:9c:1c:77:91:3b:b0:a2:7f:c7:30:c4:53:3c: 94:49:de:59 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDZG QTY2MjE5NEZDRjFFQjk4M0FCNDRDQzkxMzAwNDE4MDc3MEQxODAeFw0yNjAzMzEw ODE3NTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI5QkJDNDYzNjcxMEE1 QzVDNEU2NEFGQTQ5NUI0RUJCNzQxRUY5REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv0E3E9OdFHuPc+pVS5950WvMjVn3yVfb8r7cQopINhPlIXci5 WQKPP32XRktKKdnyR0rwL5VVQrB69Rz3ofb3UDtv7gst9JhMNDQ2WsWRB3RhI0Ho uZ99GC5Sdvhl6lhXXgzjY9JAuRTM/vXi/2pij6ly7II6Al8TvrJPGMTiBr+0d9jW CJgC63J/G8WqRCEUsaVlbI4IYoc70t1IGgB/nNG2F/BcbSEfwjC06OQQ0iyTHkAP RVpNzpa1uyHDnw9SPV3V9x9t6G2h5tKpbMOPB8bK/7htqGiRR1iwMDLncZmljemJ TeCMF3dXC2xsOWYmT6k39wk9s8QCF1PDO0NZAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUKbvEY2cQpcXE5kr6SVtOu3Qe+d0wHwYDVR0jBBgwFoAUBvpmIZT88euYOrRM yRMAQYB3DRgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5L0J2cG1JWlQ4OGV1WU9yUk15Uk1BUVlCM0RSZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0J2cG1JWlQ4OGV1WU9yUk15Uk1BUVlC M0RSZy5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9LYnZFWTJjUXBjWEU1a3I2U1Z0T3UzUWUtZDAucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH0osAMA0GCSqGSIb3DQEBCwUAA4IBAQCB ejaEpxEOqlx82iokdN6ZSrIlse16KiLtSztRCs+y65lsgTPy8drnsIxdo6QSPKj6 INB+BuTObjvK9d6cQaLM7rZjF1cCShyqNsDC89InvVg4JOzaFtF5rYK5e4Vc3zgX ETiVhcCS6vJajM0GgQs7ugNQwyjaAUuWa1H6jF7i64ZrHgjcTGzDl4OCK6w9v8gx vS5MCOSN0CillZ42ovKen6FL1nuH7/1SiPoflPXZVcjut7JwD/TDJJ+V6jDSrh3C fg8o4ewmdZeXsn8r5XvcpmfrcEtt3CFzYb1jA7d+vuxK7+R/xs1Uwq/ldhO6Hpwc d5E7sKJ/xzDEUzyUSd5Z -----END CERTIFICATE-----Generated at Fri Apr 17 23:23:18 2026 by rpki-client