$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WMmhFXgiSdkYe9ISUVx5i7gSZuI.roa File: WMmhFXgiSdkYe9ISUVx5i7gSZuI.roa (raw, json) Hash identifier: fGBc6lmkuehD2Vlg+XPP+Pi9TcLgLk+5PJFCzkJRuMw= Subject key identifier: 58:C9:A1:15:78:22:49:D9:18:7B:D2:12:51:5C:79:8B:B8:12:66:E2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09C0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WMmhFXgiSdkYe9ISUVx5i7gSZuI.roa Signing time: Sun 30 Jun 2024 01:40:23 +0000 ROA not before: Sun 30 Jun 2024 01:40:23 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 27.230.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2496 (0x9c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:23 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=58C9A115782249D9187BD212515C798BB81266E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:67:13:22:dd:85:e8:0b:2a:ac:36:4f:cb:d9: c1:bd:73:70:76:71:28:ab:2b:da:be:f3:19:e4:3f: b3:a5:fc:a0:f2:28:f4:ff:03:f2:75:3a:aa:10:49: de:88:0d:41:3c:3e:5b:b4:bd:45:d5:c1:9b:d7:7e: 39:f2:cc:68:5f:12:af:38:40:14:c3:65:04:dd:24: 78:17:0c:7e:34:d4:de:de:4f:1e:c3:ff:bc:09:83: f6:d1:65:e4:66:5e:c6:8e:0f:38:6a:74:f2:26:5d: 04:95:82:ef:40:3f:0e:1d:88:f9:8a:37:13:97:aa: 34:87:01:6f:8f:b3:0f:6f:f8:9c:ca:ae:ab:62:72: 7e:72:3a:8f:7d:ed:e8:19:01:84:bc:67:26:b9:61: dd:aa:26:45:bd:df:34:ea:10:71:4a:f2:b1:f6:8f: 95:d9:6a:a2:f4:e7:41:f9:97:5a:88:c7:6c:09:00: f0:f6:b0:37:4b:41:01:6f:09:11:03:1d:4c:ad:da: 61:e6:05:91:25:a0:48:9b:8f:77:6d:25:2d:c5:82: 9b:9d:ec:b8:24:84:2c:15:7d:8d:bf:73:d2:dc:8c: 45:d2:99:23:b4:aa:28:9e:67:3a:5e:d6:e9:25:b2: 4a:56:1f:79:a3:a7:30:08:db:b4:e8:0e:c8:f8:ab: 0f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C9:A1:15:78:22:49:D9:18:7B:D2:12:51:5C:79:8B:B8:12:66:E2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WMmhFXgiSdkYe9ISUVx5i7gSZuI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.64.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:4e:07:cd:17:b4:41:a2:f8:1e:6d:56:e0:09:14:df:a8:79: f7:5a:04:58:9c:ca:e2:a8:9d:a0:75:9b:22:6d:07:aa:68:b8: 11:36:7f:6f:a6:51:37:60:bc:e7:e5:31:ce:40:f9:ed:86:62: a8:16:15:54:6d:8d:72:a7:b2:04:4a:01:1f:95:82:5f:88:0f: de:22:71:d2:70:71:28:33:c9:16:5d:7b:d6:ed:8b:2d:4d:4a: a7:9a:ae:6c:6b:90:43:87:5f:1c:1b:27:88:b6:82:61:95:06: e6:09:8b:78:25:0d:ba:d5:25:25:0c:3c:30:08:f0:f3:cc:cb: a7:b0:0f:7e:bb:14:25:ff:34:bf:22:c9:12:76:a2:ba:1b:68: 20:3a:67:ac:f4:49:2d:a8:ca:d7:0d:4d:e2:d2:31:41:34:4d: ed:92:b1:6d:c6:02:56:90:f3:5d:d5:30:b5:07:3c:ae:06:0a: 46:f2:08:0f:8b:a2:f9:24:ef:ca:a6:68:88:0d:25:0e:ca:d1: 8b:6b:61:a2:03:ee:21:55:02:b0:19:bc:00:52:c3:af:4d:60: 09:14:6d:89:80:39:aa:62:72:1e:4e:63:26:53:3f:36:c2:d9: d7:36:8e:d8:40:f0:e5:8a:18:fd:cc:16:1b:58:98:5e:34:d5: 03:23:42:1b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMjNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDU4QzlBMTE1NzgyMjQ5 RDkxODdCRDIxMjUxNUM3OThCQjgxMjY2RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiZxMi3YXoCyqsNk/L2cG9c3B2cSirK9q+8xnkP7Ol/KDyKPT/ A/J1OqoQSd6IDUE8Plu0vUXVwZvXfjnyzGhfEq84QBTDZQTdJHgXDH401N7eTx7D /7wJg/bRZeRmXsaODzhqdPImXQSVgu9APw4diPmKNxOXqjSHAW+Psw9v+JzKrqti cn5yOo997egZAYS8Zya5Yd2qJkW93zTqEHFK8rH2j5XZaqL050H5l1qIx2wJAPD2 sDdLQQFvCREDHUyt2mHmBZEloEibj3dtJS3Fgpud7LgkhCwVfY2/c9LcjEXSmSO0 qiieZzpe1uklskpWH3mjpzAI27ToDsj4qw/7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWMmhFXgiSdkYe9ISUVx5i7gSZuIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dNbWhGWGdpU2RrWWU5SVNVVng1aTdnU1p1SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMb5kAwDQYJKoZIhvcNAQELBQADggEBAEtOB80XtEGi+B5tVuAJFN+oefda BFicyuKonaB1myJtB6pouBE2f2+mUTdgvOflMc5A+e2GYqgWFVRtjXKnsgRKAR+V gl+ID94icdJwcSgzyRZde9btiy1NSqearmxrkEOHXxwbJ4i2gmGVBuYJi3glDbrV JSUMPDAI8PPMy6ewD367FCX/NL8iyRJ2orobaCA6Z6z0SS2oytcNTeLSMUE0Te2S sW3GAlaQ813VMLUHPK4GCkbyCA+Lovkk78qmaIgNJQ7K0YtrYaID7iFVArAZvABS w69NYAkUbYmAOapich5OYyZTPzbC2dc2jthA8OWKGP3MFhtYmF401QMjQhs= -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:42 2025 by rpki-client