$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-58yuVbG6ug4eXj_f40tyKYPCis.roa File: -58yuVbG6ug4eXj_f40tyKYPCis.roa (raw, json) Hash identifier: D/OMKI3PoAJZUt9B0nBndygo1d7AobIMtGSVDl24okw= Subject key identifier: FB:9F:32:B9:56:C6:EA:E8:38:79:78:FF:7F:8D:2D:C8:A6:0F:0A:2B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AC8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-58yuVbG6ug4eXj_f40tyKYPCis.roa Signing time: Fri 22 Nov 2024 06:15:43 +0000 ROA not before: Fri 22 Nov 2024 06:15:43 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 9605 IP address blocks: 27.230.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2760 (0xac8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Nov 22 06:15:43 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=FB9F32B956C6EAE8387978FF7F8D2DC8A60F0A2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e7:c9:34:a3:99:af:c9:cc:00:67:ef:4f:11: 43:c9:f1:fe:15:79:94:21:d2:e5:7a:98:33:51:e1: 34:22:5a:74:68:b8:be:9d:31:8e:f2:86:13:35:f3: ce:51:c6:df:0c:74:15:ba:f8:9b:42:51:06:b6:4b: 00:88:95:7e:e4:7d:7a:2e:66:0b:a1:09:13:ff:67: 74:5d:26:5b:21:fb:e5:22:ee:d6:0f:fb:48:e0:cd: 4c:b2:a2:18:4f:f0:76:a8:d3:71:12:d7:dd:13:e6: 23:10:d4:72:55:9b:76:3b:61:6c:f8:67:4e:10:32: 0e:53:f4:4d:5f:eb:e2:ae:44:dc:5f:27:a9:ab:fd: ab:0e:d8:c3:92:8f:e9:5d:a3:e0:22:dc:65:8a:a1: b9:ca:33:99:23:31:96:3d:ac:cc:42:fc:82:97:74: 0a:3b:fa:74:3e:db:9e:ab:04:a7:69:9f:25:27:84: aa:ec:83:e9:85:60:fd:98:ee:c7:66:1d:d8:dc:63: 28:c6:48:93:7d:d0:37:ec:6f:87:d6:cb:18:54:02: 11:c4:66:b5:c7:e6:f6:25:15:62:ed:05:b2:fe:8a: fe:8d:ab:8d:57:da:07:8d:93:1c:17:b3:ac:98:32: 03:92:6d:52:65:62:9e:42:1a:f4:bd:5e:50:80:f7: c4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:9F:32:B9:56:C6:EA:E8:38:79:78:FF:7F:8D:2D:C8:A6:0F:0A:2B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-58yuVbG6ug4eXj_f40tyKYPCis.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.44.0/22 Signature Algorithm: sha256WithRSAEncryption 11:fd:cb:65:04:de:69:46:c6:6a:a4:0a:84:5e:59:ce:3e:c3: 74:03:33:9f:54:f5:e8:db:17:e9:35:0d:9d:63:00:a9:8d:a5: 46:53:d1:18:4e:b4:3b:6a:eb:77:48:37:f1:e9:b1:98:e9:e7: f2:a2:99:c5:af:db:2f:f7:37:cb:32:ee:02:c7:eb:da:d3:de: 53:b3:24:a6:3b:87:46:23:d7:e0:19:c4:2c:54:16:23:68:be: 24:46:4a:4c:04:8c:5e:e6:49:55:e0:74:0e:d6:4d:b7:44:b1: a3:7f:db:0b:54:2d:3c:78:ce:ce:a5:16:0c:70:e6:90:0c:da: 03:bf:d1:21:0a:26:fa:08:d0:a8:a0:34:b5:f5:73:6c:92:23: f3:e8:b4:cf:de:c4:1e:12:3a:07:3f:fc:3d:34:c5:4d:ad:6e: 24:09:d4:6f:74:52:ef:bc:31:d1:f0:c3:37:a7:61:65:25:0c: 85:28:f6:69:2b:a8:fc:d9:52:2f:cd:52:ba:d8:37:e2:87:cc: 0b:e3:80:34:0d:11:a4:5e:b7:63:59:5b:69:92:7a:8c:d5:d0: 2f:d6:b4:50:2e:d1:87:28:a9:13:c8:32:bf:a2:04:71:8d:51: e2:27:93:c2:13:90:27:cf:ad:76:82:67:9a:76:bb:3c:39:e7: 39:99:7f:05 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDExMjIw NjE1NDNaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEZCOUYzMkI5NTZDNkVB RTgzODc5NzhGRjdGOEQyREM4QTYwRjBBMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG58k0o5mvycwAZ+9PEUPJ8f4VeZQh0uV6mDNR4TQiWnRouL6d MY7yhhM1885Rxt8MdBW6+JtCUQa2SwCIlX7kfXouZguhCRP/Z3RdJlsh++Ui7tYP +0jgzUyyohhP8Hao03ES190T5iMQ1HJVm3Y7YWz4Z04QMg5T9E1f6+KuRNxfJ6mr /asO2MOSj+ldo+Ai3GWKobnKM5kjMZY9rMxC/IKXdAo7+nQ+256rBKdpnyUnhKrs g+mFYP2Y7sdmHdjcYyjGSJN90Dfsb4fWyxhUAhHEZrXH5vYlFWLtBbL+iv6Nq41X 2geNkxwXs6yYMgOSbVJlYp5CGvS9XlCA98SDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+58yuVbG6ug4eXj/f40tyKYPCiswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Ly01OHl1VmJHNnVnNGVYal9mNDB0eUtZUENpcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIb5iwwDQYJKoZIhvcNAQELBQADggEBABH9y2UE3mlGxmqkCoReWc4+w3QD M59U9ejbF+k1DZ1jAKmNpUZT0RhOtDtq63dIN/HpsZjp5/KimcWv2y/3N8sy7gLH 69rT3lOzJKY7h0Yj1+AZxCxUFiNoviRGSkwEjF7mSVXgdA7WTbdEsaN/2wtULTx4 zs6lFgxw5pAM2gO/0SEKJvoI0KigNLX1c2ySI/PotM/exB4SOgc//D00xU2tbiQJ 1G90Uu+8MdHwwzenYWUlDIUo9mkrqPzZUi/NUrrYN+KHzAvjgDQNEaRet2NZW2mS eozV0C/WtFAu0YcoqRPIMr+iBHGNUeInk8ITkCfPrXaCZ5p2uzw55zmZfwU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:04:40 2025 by rpki-client