$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/bzKa7qzMu6CrdRrzGZwDjIG0Vlk.roa File: bzKa7qzMu6CrdRrzGZwDjIG0Vlk.roa (raw, json) Hash identifier: aUKv8NHubNTT+qvzI1bKegkfGezNRSNK7mOZNaQD7Ls= Subject key identifier: 6F:32:9A:EE:AC:CC:BB:A0:AB:75:1A:F3:19:9C:03:8C:81:B4:56:59 Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18 Certificate serial: B5 Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/bzKa7qzMu6CrdRrzGZwDjIG0Vlk.roa Signing time: Tue 31 Mar 2026 08:17:40 +0000 ROA not before: Tue 31 Mar 2026 08:17:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2514 IP address blocks: 202.229.0.0/16 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 16:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18 Validity Not Before: Mar 31 08:17:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=6F329AEEACCCBBA0AB751AF3199C038C81B45659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c8:94:e4:9d:57:c6:85:14:df:28:d8:97:a1: f1:f1:a6:ca:fc:a6:d1:11:d9:ca:4c:d2:c5:00:4f: cc:30:a5:7d:d9:a0:dc:d9:d6:91:d0:12:81:32:c5: c2:ea:7a:1a:e2:95:ae:5f:e0:ba:7f:0e:8f:e9:f2: f9:c3:52:c3:9c:40:37:51:c0:c9:d3:9a:72:8e:94: 3d:d2:a3:ed:cb:18:52:bb:2b:de:5a:cd:22:13:9c: 06:e4:23:ca:60:21:cb:e7:d6:75:2d:29:b1:35:d9: 35:ef:67:69:93:aa:15:56:f1:96:50:96:93:f0:51: 10:c8:df:59:7f:6b:2d:4e:c2:f1:f9:8c:d4:1e:32: c1:fb:e3:8d:a1:20:79:71:34:1a:be:0c:a1:c7:55: 1f:31:29:86:28:34:3b:e1:bc:6a:bb:0b:cb:b5:b4: 95:b8:15:e9:82:24:8a:f9:fa:60:ea:c6:ea:df:8f: 72:f6:c3:9e:1e:d1:7c:92:6f:94:5b:ff:06:64:1d: b9:ac:a1:b4:c1:f4:5f:fc:e5:52:ce:c8:c2:49:51: 50:e6:2f:eb:e6:40:5b:2f:db:d0:64:0c:9c:fa:12: a3:a3:dd:9b:53:72:70:63:f4:80:9b:bc:f5:1e:c2: 33:34:15:06:a9:a9:3b:89:d0:cd:dd:25:a5:a5:8f: 2a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:32:9A:EE:AC:CC:BB:A0:AB:75:1A:F3:19:9C:03:8C:81:B4:56:59 X509v3 Authority Key Identifier: keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/bzKa7qzMu6CrdRrzGZwDjIG0Vlk.roa sbgp-ipAddrBlock: critical IPv4: 202.229.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:10:fa:58:50:ce:54:32:ad:26:d1:88:7f:55:7e:7f:37:5d: 64:5f:52:a6:e0:df:17:d9:c7:0b:05:bd:bc:47:44:d6:db:5e: a8:0f:eb:a3:23:fc:de:66:c6:9f:49:12:ed:6f:78:2e:cb:08: 94:fc:ba:40:6a:4e:55:8b:69:d4:be:8f:46:4a:c7:c6:5f:c1: c2:e5:48:ac:16:6d:b7:2d:2f:31:f3:c0:f8:b6:aa:4f:72:eb: 1d:39:dc:8a:ac:ec:7d:c2:93:4f:35:1c:f1:49:42:04:d3:dc: ca:11:3f:5a:44:3e:30:2c:64:8e:5b:2a:67:0f:5b:83:dc:ca: 93:5a:17:3e:ca:a6:d5:0d:56:07:c4:a5:58:b4:c9:76:ef:f2: 59:04:a0:6a:05:0f:2c:d2:80:f5:50:5f:0f:b5:9a:ae:4c:68: 1a:d5:91:ae:e5:6b:2c:2c:56:59:3a:7c:51:7c:61:7b:21:7c: 22:fc:8b:2e:c5:d0:2f:33:50:ab:0b:20:f5:9f:21:75:53:cd: 8b:1b:be:54:21:74:57:1f:78:2b:ab:87:02:31:c3:16:46:a5: 5f:4a:3d:a8:60:1b:18:30:32:35:eb:72:40:cd:87:90:a7:1f: 3a:64:11:a7:5e:0e:16:a7:53:07:03:97:59:d9:1f:67:14:08: 3d:12:86:66 -----BEGIN CERTIFICATE----- MIIEujCCA6KgAwIBAgICALUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDZG QTY2MjE5NEZDRjFFQjk4M0FCNDRDQzkxMzAwNDE4MDc3MEQxODAeFw0yNjAzMzEw ODE3NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDZGMzI5QUVFQUNDQ0JC QTBBQjc1MUFGMzE5OUMwMzhDODFCNDU2NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpyJTknVfGhRTfKNiXofHxpsr8ptER2cpM0sUAT8wwpX3ZoNzZ 1pHQEoEyxcLqehrila5f4Lp/Do/p8vnDUsOcQDdRwMnTmnKOlD3So+3LGFK7K95a zSITnAbkI8pgIcvn1nUtKbE12TXvZ2mTqhVW8ZZQlpPwURDI31l/ay1OwvH5jNQe MsH7442hIHlxNBq+DKHHVR8xKYYoNDvhvGq7C8u1tJW4FemCJIr5+mDqxurfj3L2 w54e0XySb5Rb/wZkHbmsobTB9F/85VLOyMJJUVDmL+vmQFsv29BkDJz6EqOj3ZtT cnBj9ICbvPUewjM0FQapqTuJ0M3dJaWljyr5AgMBAAGjggHWMIIB0jAdBgNVHQ4E FgQUbzKa7qzMu6CrdRrzGZwDjIG0VlkwHwYDVR0jBBgwFoAUBvpmIZT88euYOrRM yRMAQYB3DRgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5L0J2cG1JWlQ4OGV1WU9yUk15Uk1BUVlCM0RSZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0J2cG1JWlQ4OGV1WU9yUk15Uk1BUVlC M0RSZy5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOS9iekthN3F6TXU2Q3JkUnJ6R1p3RGpJRzBWbGsucm9hMB4GCCsG AQUFBwEHAQH/BA8wDTALBAIAATAFAwMAyuUwDQYJKoZIhvcNAQELBQADggEBAIMQ +lhQzlQyrSbRiH9Vfn83XWRfUqbg3xfZxwsFvbxHRNbbXqgP66Mj/N5mxp9JEu1v eC7LCJT8ukBqTlWLadS+j0ZKx8ZfwcLlSKwWbbctLzHzwPi2qk9y6x053Iqs7H3C k081HPFJQgTT3MoRP1pEPjAsZI5bKmcPW4PcypNaFz7KptUNVgfEpVi0yXbv8lkE oGoFDyzSgPVQXw+1mq5MaBrVka7laywsVlk6fFF8YXshfCL8iy7F0C8zUKsLIPWf IXVTzYsbvlQhdFcfeCurhwIxwxZGpV9KPahgGxgwMjXrckDNh5CnHzpkEadeDhan UwcDl1nZH2cUCD0ShmY= -----END CERTIFICATE-----Generated at Fri Apr 17 17:43:07 2026 by rpki-client