$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1Ba_LOOBpdhufSo9StzITCtnESw.roa File: 1Ba_LOOBpdhufSo9StzITCtnESw.roa (raw, json) Hash identifier: 5cwk6ubgTXMYQmEuGKJw+dQOrq2OiHLrEKqg+K4e6C0= Subject key identifier: D4:16:BF:2C:E3:81:A5:D8:6E:7D:2A:3D:4A:DC:C8:4C:2B:67:11:2C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0957 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1Ba_LOOBpdhufSo9StzITCtnESw.roa Signing time: Sun 30 Jun 2024 01:29:40 +0000 ROA not before: Sun 30 Jun 2024 01:29:40 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 27.230.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2391 (0x957) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:29:40 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=D416BF2CE381A5D86E7D2A3D4ADCC84C2B67112C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:d2:bd:e1:56:39:92:64:58:78:8b:d8:aa: 9f:4b:8b:a9:91:8d:e9:08:12:ed:69:3d:15:7f:45: 2d:ec:5d:01:f1:94:ac:7a:4d:ae:18:d8:5e:f1:e0: 9c:37:df:07:5a:92:af:e1:14:3a:41:a4:40:51:f3: f9:c5:4c:39:64:c6:4f:fc:17:3d:c0:cc:00:db:63: b7:12:78:a6:b0:cc:7b:9d:3c:5e:2f:3b:d6:cc:bc: ab:06:d8:9e:23:86:2b:7e:e0:b6:7c:5c:23:6f:49: 4f:87:e3:1c:58:83:ff:91:84:69:b8:00:4d:2f:05: 24:61:19:11:84:72:16:c3:1d:80:35:29:48:bb:f4: cf:fc:c1:4b:92:a5:2d:35:96:4f:0f:36:0c:c1:b4: e3:fd:8d:1b:e2:16:1f:ee:fb:6a:0c:a9:d1:69:9f: f9:49:4a:8f:20:d1:ba:b1:8a:97:80:db:34:92:23: 1a:1c:6f:53:77:2a:36:ad:78:16:e3:2c:93:8d:02: 4c:e5:ed:c9:9d:46:01:6a:cb:a1:c7:78:3a:aa:ff: cf:17:45:36:94:3a:b7:bd:a7:2c:1b:9a:cc:5f:06: a0:f4:ac:79:2e:c9:bc:ae:11:f8:8b:06:5e:89:aa: 69:9a:d7:bb:fb:f6:9c:77:23:ea:8b:79:e7:c3:0e: cc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:16:BF:2C:E3:81:A5:D8:6E:7D:2A:3D:4A:DC:C8:4C:2B:67:11:2C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1Ba_LOOBpdhufSo9StzITCtnESw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.84.0/22 Signature Algorithm: sha256WithRSAEncryption b0:d5:67:53:d3:71:5b:96:59:5a:2a:e4:07:2c:7b:8f:17:e5: 86:3c:f4:de:69:3e:dc:58:fb:a8:e5:49:c3:6b:55:8c:92:81: d3:47:8d:0e:07:6b:44:47:ec:53:51:5a:6a:55:25:72:42:61: a1:b7:67:e9:15:02:81:0e:93:87:98:10:00:8e:c9:e1:77:fb: 36:a8:21:d0:a4:d4:a6:6d:c0:29:9a:fd:10:26:fe:4c:d2:52: 67:e0:b5:92:50:4e:6f:1f:66:9e:d7:1c:f5:4f:a7:aa:c1:1c: 8d:ac:2f:2c:c5:f0:92:50:35:42:86:ff:0c:db:92:fa:1b:d3: e6:5c:f9:17:51:89:95:6f:d2:8b:ad:c7:b6:0a:e9:e1:c0:3e: 4a:20:45:ee:59:b5:29:75:c9:78:ad:03:c8:4c:a6:cf:89:40: 71:00:58:50:c7:50:40:3e:47:f9:2b:a4:ca:db:d7:cb:ce:cc: 1d:e8:3c:6d:69:cd:7b:c7:07:90:9e:77:79:af:87:b4:60:c0: 67:68:b7:70:17:4e:98:34:ba:8e:13:c7:a2:40:7e:f1:97:47: d3:17:cc:65:e3:67:8d:35:9b:a7:ca:e5:7b:77:31:89:72:3a: b2:70:27:90:02:d0:11:0a:45:b8:b6:e0:6d:ac:5c:1e:fb:1c: f7:f6:2f:2f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTI5NDBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEQ0MTZCRjJDRTM4MUE1 RDg2RTdEMkEzRDRBRENDODRDMkI2NzExMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2U9K94VY5kmRYeIvYqp9Li6mRjekIEu1pPRV/RS3sXQHxlKx6 Ta4Y2F7x4Jw33wdakq/hFDpBpEBR8/nFTDlkxk/8Fz3AzADbY7cSeKawzHudPF4v O9bMvKsG2J4jhit+4LZ8XCNvSU+H4xxYg/+RhGm4AE0vBSRhGRGEchbDHYA1KUi7 9M/8wUuSpS01lk8PNgzBtOP9jRviFh/u+2oMqdFpn/lJSo8g0bqxipeA2zSSIxoc b1N3KjateBbjLJONAkzl7cmdRgFqy6HHeDqq/88XRTaUOre9pywbmsxfBqD0rHku ybyuEfiLBl6Jqmma17v79px3I+qLeefDDsztAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1Ba/LOOBpdhufSo9StzITCtnESwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzFCYV9MT09CcGRodWZTbzlTdHpJVEN0bkVTdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIb5lQwDQYJKoZIhvcNAQELBQADggEBALDVZ1PTcVuWWVoq5Acse48X5YY8 9N5pPtxY+6jlScNrVYySgdNHjQ4Ha0RH7FNRWmpVJXJCYaG3Z+kVAoEOk4eYEACO yeF3+zaoIdCk1KZtwCma/RAm/kzSUmfgtZJQTm8fZp7XHPVPp6rBHI2sLyzF8JJQ NUKG/wzbkvob0+Zc+RdRiZVv0outx7YK6eHAPkogRe5ZtSl1yXitA8hMps+JQHEA WFDHUEA+R/krpMrb18vOzB3oPG1pzXvHB5Ced3mvh7RgwGdot3AXTpg0uo4Tx6JA fvGXR9MXzGXjZ401m6fK5Xt3MYlyOrJwJ5AC0BEKRbi24G2sXB77HPf2Ly8= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:19 2025 by rpki-client