$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QOKR6XYtOh70mM_LhEALhLd4a4U.roa File: QOKR6XYtOh70mM_LhEALhLd4a4U.roa (raw, json) Hash identifier: k48+JjV8XsRTwBEJismiA78m0bO4WnCRGVKSvcgM/OU= Subject key identifier: 40:E2:91:E9:76:2D:3A:1E:F4:98:CF:CB:84:40:0B:84:B7:78:6B:85 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A86 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QOKR6XYtOh70mM_LhEALhLd4a4U.roa Signing time: Sun 30 Jun 2024 01:52:34 +0000 ROA not before: Sun 30 Jun 2024 01:52:34 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 27.230.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2694 (0xa86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:34 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=40E291E9762D3A1EF498CFCB84400B84B7786B85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:00:ed:9b:93:04:05:9b:6c:8d:1f:7f:4b:29: a1:b2:59:bc:f6:57:6c:1a:0b:ea:a1:1d:8e:64:d7: 46:04:a8:96:26:f7:c2:87:ff:4e:c5:a6:1d:b4:f7: ee:35:03:42:b8:d7:88:24:e5:76:27:e4:40:d8:18: 8c:e9:28:14:05:a8:74:ed:26:91:48:6a:aa:f1:1f: 71:31:01:a5:fe:e9:e5:d7:39:06:86:62:17:d3:ad: 9d:fe:9e:97:ac:45:09:a4:be:af:63:8c:05:da:b7: b6:1d:62:b3:49:fa:ca:fb:e7:6c:ae:e5:cd:17:cc: d4:3d:88:48:e8:bb:8a:c9:e4:5e:0c:47:49:25:83: 8c:4c:dd:f4:5b:37:36:e3:9f:e7:41:86:89:84:93: f1:b7:8d:40:8f:a3:77:8f:e4:ef:8d:9b:12:b8:c2: 7f:a1:94:b3:83:ba:08:4e:9b:88:3f:2b:cb:98:60: 54:e2:f2:f1:70:50:48:f4:36:2c:cf:3d:88:a0:08: a3:ad:8f:87:e9:b2:14:cc:e2:1b:06:19:e2:f9:59: 25:9f:87:8e:b2:02:12:4a:43:d3:b6:a9:3d:7f:19: 1d:e9:bc:bf:fc:c8:0d:16:59:7c:57:2e:72:95:53: ee:c4:40:48:b4:68:19:39:ac:db:0c:ed:ad:e9:7c: 01:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E2:91:E9:76:2D:3A:1E:F4:98:CF:CB:84:40:0B:84:B7:78:6B:85 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QOKR6XYtOh70mM_LhEALhLd4a4U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.128.0/20 Signature Algorithm: sha256WithRSAEncryption 04:92:86:a6:f5:0f:7e:44:02:c5:1b:f3:b4:4d:d2:33:0c:be: 73:79:6c:b7:b2:88:48:16:d7:c0:b9:c7:77:19:a1:d4:d2:58: cf:5f:df:52:9f:f1:76:1c:b0:50:30:d9:d0:b8:0b:db:86:6e: b6:c4:7a:b9:54:6d:99:39:55:92:4e:a4:b8:fe:19:17:25:f4: f4:7e:b5:8f:b2:de:c1:d6:d5:4b:70:28:6a:f4:c9:8f:22:20: 6d:4b:b1:75:af:3b:7b:b5:9f:62:75:f4:02:08:a5:68:dd:86: e1:76:d2:c7:0c:58:8d:c7:74:93:58:3e:08:21:7c:6e:4d:7a: f1:c1:03:37:4e:ec:2c:00:9a:30:a5:e2:bc:a5:ad:37:1c:bb: a8:aa:a3:02:93:c0:50:21:f6:d2:d9:d6:09:e7:34:89:0f:07: bc:e6:96:32:fc:68:45:77:d4:1c:17:65:9d:b5:07:cc:39:d1: 7a:6a:2c:cc:79:e0:e5:0d:e3:1d:71:6a:9d:2c:ab:b1:66:ea: 65:72:0e:da:ef:80:49:b7:3b:f3:90:ec:f1:54:1a:8f:8c:0c: 5b:54:3d:9f:0a:80:59:07:87:b0:e6:ca:ab:a7:e1:dd:0b:0d: 33:d3:c3:13:4f:8d:e9:fd:45:c9:5b:24:6c:c8:5e:8f:fb:43: e4:44:77:32 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDQwRTI5MUU5NzYyRDNB MUVGNDk4Q0ZDQjg0NDAwQjg0Qjc3ODZCODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVAO2bkwQFm2yNH39LKaGyWbz2V2waC+qhHY5k10YEqJYm98KH /07Fph209+41A0K414gk5XYn5EDYGIzpKBQFqHTtJpFIaqrxH3ExAaX+6eXXOQaG YhfTrZ3+npesRQmkvq9jjAXat7YdYrNJ+sr752yu5c0XzNQ9iEjou4rJ5F4MR0kl g4xM3fRbNzbjn+dBhomEk/G3jUCPo3eP5O+NmxK4wn+hlLODughOm4g/K8uYYFTi 8vFwUEj0NizPPYigCKOtj4fpshTM4hsGGeL5WSWfh46yAhJKQ9O2qT1/GR3pvL/8 yA0WWXxXLnKVU+7EQEi0aBk5rNsM7a3pfAGjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQOKR6XYtOh70mM/LhEALhLd4a4UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FPS1I2WFl0T2g3MG1NX0xoRUFMaExkNGE0VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQb5oAwDQYJKoZIhvcNAQELBQADggEBAASShqb1D35EAsUb87RN0jMMvnN5 bLeyiEgW18C5x3cZodTSWM9f31Kf8XYcsFAw2dC4C9uGbrbEerlUbZk5VZJOpLj+ GRcl9PR+tY+y3sHW1UtwKGr0yY8iIG1LsXWvO3u1n2J19AIIpWjdhuF20scMWI3H dJNYPgghfG5NevHBAzdO7CwAmjCl4rylrTccu6iqowKTwFAh9tLZ1gnnNIkPB7zm ljL8aEV31BwXZZ21B8w50XpqLMx54OUN4x1xap0sq7Fm6mVyDtrvgEm3O/OQ7PFU Go+MDFtUPZ8KgFkHh7Dmyqun4d0LDTPTwxNPjen9RclbJGzIXo/7Q+REdzI= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:26 2025 by rpki-client