$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/BHvcLMhKT-2w9rAUPC0Y_2bXgRY.roa File: BHvcLMhKT-2w9rAUPC0Y_2bXgRY.roa (raw, json) Hash identifier: 0z3Qv5rsAAl2C3K40l25KnCkur3K21Hz3BrZeQ9sTMs= Subject key identifier: 04:7B:DC:2C:C8:4A:4F:ED:B0:F6:B0:14:3C:2D:18:FF:66:D7:81:16 Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Certificate serial: 66 Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/BHvcLMhKT-2w9rAUPC0Y_2bXgRY.roa Signing time: Wed 01 Oct 2025 01:29:42 +0000 ROA not before: Wed 01 Oct 2025 01:29:42 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 131925 IP address blocks: 160.237.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Validity Not Before: Oct 1 01:29:42 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=047BDC2CC84A4FEDB0F6B0143C2D18FF66D78116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:b2:ad:84:d3:85:bb:9d:61:58:59:97:04: 74:69:fe:9e:19:33:47:2e:d0:78:d6:83:bf:eb:a1: db:7e:0d:7d:6c:7f:38:70:24:f7:2f:c7:e1:32:71: 94:a5:f5:fc:b2:40:7c:b4:1e:c2:52:1d:30:34:c5: 9b:5e:95:db:62:b0:90:48:fd:3f:2f:dc:06:63:f7: 8d:89:ed:b9:15:f5:ee:71:bf:f4:dd:f9:4b:e9:69: 6f:9e:8b:f9:de:17:7f:88:a5:ee:28:62:8c:f3:7e: 23:e3:2a:2c:1b:bd:d7:b6:c5:dd:31:91:06:e3:8c: a6:4b:06:23:df:51:0c:f5:7a:31:5e:b1:e5:15:dc: d3:b0:b8:db:fc:15:da:f5:1b:09:96:cf:c5:8d:d9: 19:0b:5d:e6:6a:57:a5:49:f9:2f:11:11:e0:7d:57: 62:e0:76:3e:60:45:02:6b:60:d4:3f:0e:e2:7e:f5: a1:a3:eb:86:8f:52:5e:45:eb:10:c0:d0:12:d0:a2: d1:5c:e8:a5:f9:b9:75:36:09:65:47:85:97:00:d1: bf:76:f6:c6:ba:76:7c:16:16:aa:ea:3e:36:01:f8: 27:1f:16:d7:e3:9a:b2:d6:28:db:aa:f2:26:a4:c0: 28:18:ca:b4:69:2a:12:da:92:dc:23:f2:bd:ca:86: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7B:DC:2C:C8:4A:4F:ED:B0:F6:B0:14:3C:2D:18:FF:66:D7:81:16 X509v3 Authority Key Identifier: keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/BHvcLMhKT-2w9rAUPC0Y_2bXgRY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.237.176.0/21 Signature Algorithm: sha256WithRSAEncryption c0:1f:41:98:54:a6:c4:ba:4c:60:38:66:cb:6e:c7:26:ad:92: 66:f4:91:9d:5f:50:de:62:eb:61:08:8d:52:e4:04:80:19:d7: 37:49:4b:36:c0:ab:dc:ad:df:1e:0e:1a:ac:e5:d7:d0:4d:6f: fc:88:ec:bf:b2:66:e3:c7:01:15:c2:44:c3:58:1c:09:1f:cc: 0f:f2:07:8d:9a:b1:4c:35:d1:cb:3c:dc:e8:46:39:58:1d:12: 66:21:d4:86:1a:66:d4:d6:4b:25:63:65:5e:40:b6:13:8e:c0: 6e:6c:bc:c5:e7:bf:98:d9:69:c9:9f:cc:34:98:1d:fc:fd:ae: 70:7d:ce:13:f1:cc:33:db:7c:7a:39:7d:5e:8f:80:ac:5c:a1: 4c:e3:ec:87:ec:05:50:cf:b8:59:f2:6c:dd:67:db:c7:50:e0: 0d:27:15:cb:ce:f4:df:7b:22:d3:ba:ef:90:0e:37:4c:d2:48: f4:03:4b:f3:4a:4f:c9:7d:87:87:e5:04:27:1e:15:ae:0f:4a: fe:0e:15:f9:3d:f7:6b:9d:f6:71:7c:57:c0:d8:91:ed:cb:23: 59:fc:db:8b:20:64:a5:06:ee:4d:81:98:05:92:f4:38:90:d6: cd:e6:8e:47:9e:24:fb:a4:b8:66:78:38:15:6a:57:fc:20:04: 93:76:88:61 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MEQy MjBCOUU0QTYzNThFMDNDRDQ3ODY0NTE3RDlEMzAwQjA2RkYwMB4XDTI1MTAwMTAx Mjk0MloXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoMDQ3QkRDMkNDODRBNEZF REIwRjZCMDE0M0MyRDE4RkY2NkQ3ODExNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALPHsq2E04W7nWFYWZcEdGn+nhkzRy7QeNaDv+uh234NfWx/OHAk 9y/H4TJxlKX1/LJAfLQewlIdMDTFm16V22KwkEj9Py/cBmP3jYntuRX17nG/9N35 S+lpb56L+d4Xf4il7ihijPN+I+MqLBu917bF3TGRBuOMpksGI99RDPV6MV6x5RXc 07C42/wV2vUbCZbPxY3ZGQtd5mpXpUn5LxER4H1XYuB2PmBFAmtg1D8O4n71oaPr ho9SXkXrEMDQEtCi0Vzopfm5dTYJZUeFlwDRv3b2xrp2fBYWquo+NgH4Jx8W1+Oa stYo26ryJqTAKBjKtGkqEtqS3CPyvcqGKP0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQEe9wsyEpP7bD2sBQ8LRj/ZteBFjAfBgNVHSMEGDAWgBRA0iC55KY1jgPNR4ZF F9nTALBv8DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdDd2JfQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdD d2JfQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvQkh2Y0xNaEtULTJ3OXJBVVBDMFlfMmJYZ1JZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA6DtsDANBgkqhkiG9w0BAQsFAAOCAQEAwB9BmFSmxLpMYDhmy27HJq2SZvSR nV9Q3mLrYQiNUuQEgBnXN0lLNsCr3K3fHg4arOXX0E1v/Ijsv7Jm48cBFcJEw1gc CR/MD/IHjZqxTDXRyzzc6EY5WB0SZiHUhhpm1NZLJWNlXkC2E47Abmy8xee/mNlp yZ/MNJgd/P2ucH3OE/HMM9t8ejl9Xo+ArFyhTOPsh+wFUM+4WfJs3Wfbx1DgDScV y87033si07rvkA43TNJI9ANL80pPyX2Hh+UEJx4Vrg9K/g4V+T33a532cXxXwNiR 7csjWfzbiyBkpQbuTYGYBZL0OJDWzeaOR54k+6S4Zng4FWpX/CAEk3aIYQ== -----END CERTIFICATE-----Generated at Tue Oct 21 08:04:30 2025 by rpki-client