$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CUPZWue6QsyaYf-3mH34aaIlp3w.roa File: CUPZWue6QsyaYf-3mH34aaIlp3w.roa (raw, json) Hash identifier: IuvLnQRKVSog6wqU6ZqOVR37bKqETz5hdkrHwwSwFAs= Subject key identifier: 09:43:D9:5A:E7:BA:42:CC:9A:61:FF:B7:98:7D:F8:69:A2:25:A7:7C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 094C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CUPZWue6QsyaYf-3mH34aaIlp3w.roa Signing time: Sun 30 Jun 2024 01:29:34 +0000 ROA not before: Sun 30 Jun 2024 01:29:34 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 27.230.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2380 (0x94c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:29:34 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=0943D95AE7BA42CC9A61FFB7987DF869A225A77C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:95:36:b3:61:37:39:49:a5:ed:43:eb:2c:b6: f9:a8:bc:aa:af:b1:a6:2f:96:87:1e:79:41:38:83: 8d:a0:a3:ad:36:6d:18:fc:d0:1d:54:4e:fd:28:12: a1:ef:c0:7c:4b:0c:4c:eb:8c:6e:6d:ca:bc:c2:43: 6c:55:f3:54:2a:2e:ed:ec:31:6d:e5:55:f2:45:09: 75:4c:a3:5a:e8:d6:b0:cc:cd:e0:8f:e8:67:77:99: 53:85:7d:5c:ed:8c:f0:df:d6:8b:78:97:fd:7e:42: 29:e1:d9:09:41:dc:bb:e1:1a:6a:ff:43:05:af:76: d9:8e:8a:95:b2:c7:07:76:1d:67:b9:6e:be:7c:d3: 5e:4e:35:34:18:35:f1:6c:ca:62:0d:4c:62:fa:f4: 26:58:4d:3a:fc:2a:22:ef:19:6e:60:c3:f6:3d:c2: 9c:5e:a1:0f:ca:08:42:a6:2b:f6:b6:cb:b6:7b:06: 53:cc:9c:35:39:75:3f:38:a3:92:48:d3:a2:a7:3e: 97:e6:1f:52:9e:c7:5e:b6:e6:08:1d:8e:59:ee:a2: c6:14:8f:6c:05:51:ba:70:bd:bb:35:24:e2:4a:9e: 60:61:8a:9a:37:dd:83:76:b5:d5:8f:b9:62:73:65: ee:f7:7b:10:f9:59:29:e9:a2:bf:bb:77:ee:ab:72: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:43:D9:5A:E7:BA:42:CC:9A:61:FF:B7:98:7D:F8:69:A2:25:A7:7C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CUPZWue6QsyaYf-3mH34aaIlp3w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.120.0/21 Signature Algorithm: sha256WithRSAEncryption 3b:db:71:af:ff:43:4e:ed:70:a4:13:45:76:5e:68:2b:fc:38: 52:bf:9c:fa:a7:d3:c0:87:d5:e3:6f:c7:36:c4:c1:29:c0:6e: a0:b6:42:5c:34:42:db:c6:c3:cc:ee:ba:f0:c4:8d:8e:de:91: 21:4f:e3:86:ea:3c:ac:e9:c0:16:b9:b4:9c:48:3f:a1:40:1a: e2:8c:9c:97:ab:59:a3:e2:7a:73:da:45:30:b0:39:1b:d4:3c: 11:15:5d:7a:db:dc:71:94:16:48:91:28:66:13:ab:7e:d7:01: 71:fc:69:85:e1:c0:4f:ff:89:64:4e:72:3b:72:00:21:ea:fb: e7:90:2c:06:c9:f1:f5:42:47:c4:9d:93:98:8f:cd:3f:f5:be: ec:93:96:2f:6a:1c:5d:57:c1:72:86:35:18:b2:75:3e:1c:4f: a1:0a:8f:54:1b:c1:46:37:9c:6c:54:97:e7:fc:7a:21:1e:08: 96:fb:be:4e:52:94:e9:12:84:91:ef:b4:0c:75:76:97:78:1c: 13:6b:ac:7b:00:e4:c9:b9:c2:ab:51:c0:0e:fd:ad:3e:d6:bf: 41:cc:d1:6c:3e:85:05:e4:4f:fd:3d:7a:78:96:0e:d4:2b:8c: 91:f5:80:21:3e:10:2c:3b:1f:00:72:24:17:34:12:68:cc:bc: 2f:43:bc:1d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCUwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTI5MzRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDA5NDNEOTVBRTdCQTQy Q0M5QTYxRkZCNzk4N0RGODY5QTIyNUE3N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqlTazYTc5SaXtQ+sstvmovKqvsaYvloceeUE4g42go602bRj8 0B1UTv0oEqHvwHxLDEzrjG5tyrzCQ2xV81QqLu3sMW3lVfJFCXVMo1ro1rDMzeCP 6Gd3mVOFfVztjPDf1ot4l/1+Qinh2QlB3LvhGmr/QwWvdtmOipWyxwd2HWe5br58 015ONTQYNfFsymINTGL69CZYTTr8KiLvGW5gw/Y9wpxeoQ/KCEKmK/a2y7Z7BlPM nDU5dT84o5JI06KnPpfmH1Kex1625ggdjlnuosYUj2wFUbpwvbs1JOJKnmBhipo3 3YN2tdWPuWJzZe73exD5WSnpor+7d+6rcgNbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCUPZWue6QsyaYf+3mH34aaIlp3wwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NVUFpXdWU2UXN5YVlmLTNtSDM0YWFJbHAzdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMb5ngwDQYJKoZIhvcNAQELBQADggEBADvbca//Q07tcKQTRXZeaCv8OFK/ nPqn08CH1eNvxzbEwSnAbqC2Qlw0QtvGw8zuuvDEjY7ekSFP44bqPKzpwBa5tJxI P6FAGuKMnJerWaPienPaRTCwORvUPBEVXXrb3HGUFkiRKGYTq37XAXH8aYXhwE// iWROcjtyACHq++eQLAbJ8fVCR8Sdk5iPzT/1vuyTli9qHF1XwXKGNRiydT4cT6EK j1QbwUY3nGxUl+f8eiEeCJb7vk5SlOkShJHvtAx1dpd4HBNrrHsA5Mm5wqtRwA79 rT7Wv0HM0Ww+hQXkT/09eniWDtQrjJH1gCE+ECw7HwByJBc0EmjMvC9DvB0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:49 2025 by rpki-client