$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4uUI_Jif2t2tAUcVmoY5_x8GqT0.roa File: 4uUI_Jif2t2tAUcVmoY5_x8GqT0.roa (raw, json) Hash identifier: z8wce62x99LrdQwS2CqtXhKowrVDSpL1oQ6jnLRZaEA= Subject key identifier: E2:E5:08:FC:98:9F:DA:DD:AD:01:47:15:9A:86:39:FF:1F:06:A9:3D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 068A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4uUI_Jif2t2tAUcVmoY5_x8GqT0.roa Signing time: Tue 30 Apr 2024 01:38:06 +0000 ROA not before: Tue 30 Apr 2024 01:38:06 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 27.230.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1674 (0x68a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:38:06 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=E2E508FC989FDADDAD0147159A8639FF1F06A93D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8f:75:18:69:d4:f2:f2:b2:60:54:e9:3d:3a: 57:bb:8a:bb:ef:6b:c0:9a:c7:f6:1b:e8:05:e7:11: 1e:aa:7e:3e:94:3b:7c:db:ca:a8:46:01:3a:6f:59: 2e:ff:bf:78:28:c7:87:c1:15:2a:61:de:18:a0:54: 34:bf:11:a6:99:43:b1:ac:c5:1b:c5:83:3a:db:1b: e2:83:4e:9d:45:55:7b:f4:58:bb:93:42:8d:87:03: 28:fc:f5:b3:7d:9c:9e:39:b4:58:bc:11:0b:19:6b: 41:0a:36:09:9e:26:c3:df:6c:5e:c9:8c:b0:a7:aa: fe:a9:2a:87:78:bb:c0:b2:86:aa:fb:de:ca:89:c3: 01:8c:66:86:59:c0:4d:40:2c:76:63:c4:e8:f9:23: 5c:9d:2e:bc:27:fe:74:2c:c5:29:48:b9:b2:24:dd: 5b:eb:59:86:c7:48:f8:cc:59:40:a3:74:60:ce:dd: ee:2f:ee:7a:a0:98:a9:90:08:90:32:00:b5:b1:15: ad:43:7b:be:d9:74:36:67:11:a1:92:9b:7e:59:be: a6:42:33:cd:36:c1:40:9d:a8:31:9d:24:04:2f:90: ae:7b:2a:a0:5b:0a:82:4d:5e:42:6e:c7:1f:d9:5d: 2d:d5:cd:0a:6b:fd:22:e3:e7:13:47:70:20:10:58: 48:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E5:08:FC:98:9F:DA:DD:AD:01:47:15:9A:86:39:FF:1F:06:A9:3D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4uUI_Jif2t2tAUcVmoY5_x8GqT0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.112.0/20 Signature Algorithm: sha256WithRSAEncryption 43:ac:3c:c3:1a:b0:9b:71:07:fc:8b:7b:4d:c3:c6:5a:10:c4: 5b:2f:b3:2d:be:3c:7a:89:37:a5:76:f7:90:d1:04:b7:d9:22: af:1f:1e:34:ed:01:94:ee:72:d2:bc:1f:a4:13:bc:2f:6d:f1: 51:c7:87:3e:18:7c:f7:c2:03:08:72:bf:b9:6e:2a:f9:e2:07: 70:d7:50:e7:9e:1e:a7:7b:c1:06:50:ff:a6:84:b6:d2:49:d0: c7:49:7a:3d:08:fe:2f:b6:2c:c5:fc:c3:a8:18:44:ad:45:66: 0c:e3:91:7e:9c:30:01:76:44:08:8a:72:5e:6e:e4:8f:bf:ed: 0e:13:d0:d6:4f:4a:64:43:54:b0:2e:05:fa:2d:33:23:a6:48: a0:81:7f:36:ae:50:04:46:be:62:f5:e2:23:63:86:64:32:b0: 14:b0:22:a1:ce:a4:e7:ea:b9:26:05:8b:a2:e7:09:28:ff:11: 9c:35:19:bb:fe:97:72:4c:f5:03:3c:d8:84:0f:aa:0f:d0:61: 8a:b1:1e:2d:9f:1c:6d:0b:20:f6:6d:30:9d:80:a4:e8:73:f9: c6:a8:76:8a:45:8f:44:1e:99:7d:65:4d:31:9b:90:a4:85:cf: 38:9b:0f:c3:e0:7c:ae:a2:da:a2:a9:74:eb:a4:e0:1b:38:d8: e4:7b:62:92 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBoowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM4MDZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUyRTUwOEZDOTg5RkRB RERBRDAxNDcxNTlBODYzOUZGMUYwNkE5M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOj3UYadTy8rJgVOk9Ole7irvva8Cax/Yb6AXnER6qfj6UO3zb yqhGATpvWS7/v3gox4fBFSph3higVDS/EaaZQ7GsxRvFgzrbG+KDTp1FVXv0WLuT Qo2HAyj89bN9nJ45tFi8EQsZa0EKNgmeJsPfbF7JjLCnqv6pKod4u8Cyhqr73sqJ wwGMZoZZwE1ALHZjxOj5I1ydLrwn/nQsxSlIubIk3VvrWYbHSPjMWUCjdGDO3e4v 7nqgmKmQCJAyALWxFa1De77ZdDZnEaGSm35ZvqZCM802wUCdqDGdJAQvkK57KqBb CoJNXkJuxx/ZXS3VzQpr/SLj5xNHcCAQWEivAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4uUI/Jif2t2tAUcVmoY5/x8GqT0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzR1VUlfSmlmMnQydEFVY1Ztb1k1X3g4R3FUMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQb5nAwDQYJKoZIhvcNAQELBQADggEBAEOsPMMasJtxB/yLe03DxloQxFsv sy2+PHqJN6V295DRBLfZIq8fHjTtAZTuctK8H6QTvC9t8VHHhz4YfPfCAwhyv7lu KvniB3DXUOeeHqd7wQZQ/6aEttJJ0MdJej0I/i+2LMX8w6gYRK1FZgzjkX6cMAF2 RAiKcl5u5I+/7Q4T0NZPSmRDVLAuBfotMyOmSKCBfzauUARGvmL14iNjhmQysBSw IqHOpOfquSYFi6LnCSj/EZw1Gbv+l3JM9QM82IQPqg/QYYqxHi2fHG0LIPZtMJ2A pOhz+caodopFj0QemX1lTTGbkKSFzzibD8PgfK6i2qKpdOuk4Bs42OR7YpI= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:35 2024 by rpki-client on console-ams.rpki-client.org