$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8-ug6GnVKcapmoFRAK25mVSejjc.roa File: 8-ug6GnVKcapmoFRAK25mVSejjc.roa (raw, json) Hash identifier: vWm6SLp48BLT7EwQ7zGUmch/FIWMZisxOYpJZiFD6go= Subject key identifier: F3:EB:A0:E8:69:D5:29:C6:A9:9A:81:51:00:AD:B9:99:54:9E:8E:37 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AC7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8-ug6GnVKcapmoFRAK25mVSejjc.roa Signing time: Fri 22 Nov 2024 06:11:54 +0000 ROA not before: Fri 22 Nov 2024 06:11:54 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 9605 IP address blocks: 27.230.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2759 (0xac7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Nov 22 06:11:54 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=F3EBA0E869D529C6A99A815100ADB999549E8E37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7d:cf:6c:66:ea:77:e4:34:a2:94:d7:5f:3e: e3:15:0c:4c:9a:3c:c2:0a:a6:aa:95:75:3d:50:7b: 93:29:18:cd:ea:41:e4:e8:cf:7d:d4:59:0a:36:9c: 25:36:e0:5e:f9:0d:5b:35:60:07:da:74:12:0d:b2: b9:45:57:68:6f:ad:ee:25:34:0a:89:9a:30:6e:6b: 18:bc:8d:2b:68:f8:ba:c1:a2:2d:36:74:8f:19:20: 6a:53:90:2e:63:a5:97:5b:ec:e1:a5:bb:20:1e:b8: 75:e4:34:04:8c:dc:4f:bb:01:fd:6d:97:b3:02:61: fd:05:35:3e:49:ac:cb:d7:ab:78:c5:af:e1:94:30: 73:23:8f:a1:05:99:4f:16:4b:a7:6e:8a:4c:5e:ef: f6:1b:a1:53:41:c5:d2:7c:2b:e9:73:6c:ab:de:e4: b1:ce:48:ad:ae:21:41:df:a8:e6:90:72:38:86:13: eb:d4:e3:34:f7:e0:1c:3a:cf:2e:f4:92:87:d0:a6: f4:1c:76:4c:da:d8:a5:75:4c:6a:fb:8c:5f:65:07: 1b:38:38:a8:35:ef:27:70:1d:2e:0b:9c:87:2c:4d: 3f:5f:0a:b1:c0:83:e0:00:51:b1:1f:45:f9:e3:a6: 68:c9:34:e7:f9:97:b8:24:4f:bc:7b:71:c0:b2:09: 7d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:EB:A0:E8:69:D5:29:C6:A9:9A:81:51:00:AD:B9:99:54:9E:8E:37 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8-ug6GnVKcapmoFRAK25mVSejjc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.36.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:92:28:8a:3e:e8:51:ee:35:7c:27:46:26:5e:a5:e1:1b:ac: 98:b6:0f:80:3c:2d:34:01:24:88:fb:3b:20:f5:56:b4:16:46: 72:60:9e:49:51:3a:dd:51:c0:53:ee:74:4a:74:7a:ff:07:12: ae:7a:2b:70:ba:a0:6c:26:da:c0:d7:12:e2:8f:d1:d6:db:57: e4:96:65:cf:72:22:b0:51:49:e6:36:ac:22:06:ed:21:0c:24: de:70:88:51:b2:b0:1e:e9:2a:b1:2f:10:01:ac:61:77:67:03: 93:80:3a:32:39:33:17:ee:f8:b8:fa:a5:23:01:01:5e:b6:7c: 6a:84:2e:5d:35:8c:c1:8f:c5:ae:36:4f:d0:8e:96:7f:38:d8: 5d:41:05:d0:3f:ae:30:8c:7d:55:b4:61:5d:89:af:35:3e:ea: 55:76:a5:e3:6e:25:5a:f9:f4:a0:38:75:b0:8f:ec:45:cf:a8: 20:23:f2:a2:a4:0f:c6:7f:e7:3e:30:d6:bd:ba:77:70:17:2a: 52:fe:2f:fb:bf:0b:3f:1e:94:f1:94:a7:b2:e0:3e:b4:d8:57: 2d:da:f8:d2:8a:2e:b1:03:4c:56:2d:9a:df:6f:aa:7d:d9:bc: 1c:b8:38:d7:6b:b0:c6:a4:a3:df:61:13:ac:9d:c9:a9:96:a7: fa:3a:70:9b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDExMjIw NjExNTRaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEYzRUJBMEU4NjlENTI5 QzZBOTlBODE1MTAwQURCOTk5NTQ5RThFMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChfc9sZup35DSilNdfPuMVDEyaPMIKpqqVdT1Qe5MpGM3qQeTo z33UWQo2nCU24F75DVs1YAfadBINsrlFV2hvre4lNAqJmjBuaxi8jSto+LrBoi02 dI8ZIGpTkC5jpZdb7OGluyAeuHXkNASM3E+7Af1tl7MCYf0FNT5JrMvXq3jFr+GU MHMjj6EFmU8WS6duikxe7/YboVNBxdJ8K+lzbKve5LHOSK2uIUHfqOaQcjiGE+vU 4zT34Bw6zy70kofQpvQcdkza2KV1TGr7jF9lBxs4OKg17ydwHS4LnIcsTT9fCrHA g+AAUbEfRfnjpmjJNOf5l7gkT7x7ccCyCX1vAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8+ug6GnVKcapmoFRAK25mVSejjcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzgtdWc2R25WS2NhcG1vRlJBSzI1bVZTZWpqYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIb5iQwDQYJKoZIhvcNAQELBQADggEBABqSKIo+6FHuNXwnRiZepeEbrJi2 D4A8LTQBJIj7OyD1VrQWRnJgnklROt1RwFPudEp0ev8HEq56K3C6oGwm2sDXEuKP 0dbbV+SWZc9yIrBRSeY2rCIG7SEMJN5wiFGysB7pKrEvEAGsYXdnA5OAOjI5Mxfu +Lj6pSMBAV62fGqELl01jMGPxa42T9COln842F1BBdA/rjCMfVW0YV2JrzU+6lV2 peNuJVr59KA4dbCP7EXPqCAj8qKkD8Z/5z4w1r26d3AXKlL+L/u/Cz8elPGUp7Lg PrTYVy3a+NKKLrEDTFYtmt9vqn3ZvBy4ONdrsMako99hE6ydyamWp/o6cJs= -----END CERTIFICATE-----Generated at Sun Feb 16 22:03:56 2025 by rpki-client