$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ay6LieppM9WijVuNH0X7_j_LI9E.roa File: ay6LieppM9WijVuNH0X7_j_LI9E.roa (raw, json) Hash identifier: C6sV62C/W9HzJEnf6BawTRjMU+SzYEBZB3A8TmhBG8Y= Subject key identifier: 6B:2E:8B:89:EA:69:33:D5:A2:8D:5B:8D:1F:45:FB:FE:3F:CB:23:D1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A2D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ay6LieppM9WijVuNH0X7_j_LI9E.roa Signing time: Sun 30 Jun 2024 01:46:32 +0000 ROA not before: Sun 30 Jun 2024 01:46:32 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 27.229.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2605 (0xa2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:46:32 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=6B2E8B89EA6933D5A28D5B8D1F45FBFE3FCB23D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:90:eb:df:45:18:fb:2d:37:e2:43:b2:55:74: 6c:ef:4a:89:ca:97:1b:47:99:cd:ff:16:1e:a4:f8: ba:13:da:a5:ef:81:25:74:15:6d:c5:ac:79:46:5f: d2:2f:e3:1f:ef:e8:31:4e:72:94:ce:dc:90:5f:8f: fd:dc:04:9c:60:6c:34:f1:99:e9:72:88:8a:5a:21: 19:b4:5a:d8:7d:ea:b7:11:a5:a0:73:14:47:7c:29: d3:e0:11:b9:76:0d:c3:fc:36:ef:56:cc:b4:db:ae: ae:bf:16:42:d6:5c:b0:fc:b9:00:c6:8b:fc:b0:a1: 5a:7a:63:64:5a:c0:7a:41:d4:15:53:7c:f3:da:34: d0:0e:06:7d:cf:d3:41:67:9c:44:72:22:3f:81:2e: 2f:b8:03:fc:6d:1d:be:84:4a:55:da:bb:f3:b9:92: f5:a1:eb:c8:1c:da:54:04:8e:45:49:33:46:3e:0f: ac:3e:6d:22:f7:1a:94:6d:78:6f:17:75:48:b1:44: ca:2f:06:4b:be:11:b4:16:df:2b:de:98:2a:7d:66: 49:c1:c2:a5:c3:ae:f8:c0:ee:be:d4:51:ef:b0:f8: ae:d7:f3:ee:f0:63:06:52:51:11:ae:ae:cc:3e:cd: 47:5f:8a:16:03:82:59:0d:07:30:52:7f:2f:a8:c9: b9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2E:8B:89:EA:69:33:D5:A2:8D:5B:8D:1F:45:FB:FE:3F:CB:23:D1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ay6LieppM9WijVuNH0X7_j_LI9E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.229.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:3c:63:f6:47:65:f0:2e:27:9e:45:fa:f3:55:e9:35:c2:fe: 13:d5:b6:08:0b:dc:1e:f3:92:b6:9d:2e:5f:1a:0c:02:95:4e: a6:ee:9f:8e:29:da:cc:39:d4:06:8a:49:67:79:3b:7d:fa:7e: 96:d6:c3:d9:f6:35:df:5f:f4:89:7b:23:75:65:6d:53:c6:d0: 60:38:9e:15:23:2b:fb:c9:12:0f:98:b5:55:77:b3:93:f5:2b: ea:74:64:10:7d:46:7b:7e:65:15:77:0a:19:7d:2a:43:c2:ce: c0:bf:30:1e:b3:d4:5e:f6:06:38:56:83:17:82:2d:68:88:6e: ef:d4:59:cc:ad:7c:33:91:41:77:d4:c3:5a:9b:60:6c:b1:3c: dd:cb:7e:cc:ca:47:7c:bd:21:3d:c0:83:91:05:41:e1:ff:e2: d6:be:1c:2a:07:3a:00:27:c7:b0:67:94:39:3a:f2:ea:0b:14: 31:92:c3:c3:a8:e8:ad:68:d2:19:f7:33:14:08:a9:44:27:38: 68:52:f5:a3:2c:ed:d2:ac:25:a8:cc:ab:92:7a:33:71:4a:03: f7:fd:87:08:98:ba:f5:3c:cd:3e:86:40:a7:36:7e:fc:e3:22: 9b:19:01:1c:d1:4d:2f:f2:be:ff:67:76:63:9c:6e:e7:3b:9f: cf:bc:49:94 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICCi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ2MzJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDZCMkU4Qjg5RUE2OTMz RDVBMjhENUI4RDFGNDVGQkZFM0ZDQjIzRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtkOvfRRj7LTfiQ7JVdGzvSonKlxtHmc3/Fh6k+LoT2qXvgSV0 FW3FrHlGX9Iv4x/v6DFOcpTO3JBfj/3cBJxgbDTxmelyiIpaIRm0Wth96rcRpaBz FEd8KdPgEbl2DcP8Nu9WzLTbrq6/FkLWXLD8uQDGi/ywoVp6Y2RawHpB1BVTfPPa NNAOBn3P00FnnERyIj+BLi+4A/xtHb6ESlXau/O5kvWh68gc2lQEjkVJM0Y+D6w+ bSL3GpRteG8XdUixRMovBku+EbQW3yvemCp9ZknBwqXDrvjA7r7UUe+w+K7X8+7w YwZSURGursw+zUdfihYDglkNBzBSfy+oyblRAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUay6LieppM9WijVuNH0X7/j/LI9EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2F5NkxpZXBwTTlXaWpWdU5IMFg3X2pfTEk5RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAb5TANBgkqhkiG9w0BAQsFAAOCAQEAlzxj9kdl8C4nnkX681XpNcL+E9W2 CAvcHvOStp0uXxoMApVOpu6fjinazDnUBopJZ3k7ffp+ltbD2fY131/0iXsjdWVt U8bQYDieFSMr+8kSD5i1VXezk/Ur6nRkEH1Ge35lFXcKGX0qQ8LOwL8wHrPUXvYG OFaDF4ItaIhu79RZzK18M5FBd9TDWptgbLE83ct+zMpHfL0hPcCDkQVB4f/i1r4c Kgc6ACfHsGeUOTry6gsUMZLDw6jorWjSGfczFAipRCc4aFL1oyzt0qwlqMyrknoz cUoD9/2HCJi69TzNPoZApzZ+/OMimxkBHNFNL/K+/2d2Y5xu5zufz7xJlA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:32:56 2025 by rpki-client