$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/jsJifjVDRRyPSl2Uic68bNeEeys.roa File: jsJifjVDRRyPSl2Uic68bNeEeys.roa (raw, json) Hash identifier: rC6UurjIFJYAp0xOSB4AOEJtBM6YWvLD5TfDaMSo9Gc= Subject key identifier: 8E:C2:62:7E:35:43:45:1C:8F:4A:5D:94:89:CE:BC:6C:D7:84:7B:2B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A3A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jsJifjVDRRyPSl2Uic68bNeEeys.roa Signing time: Sun 30 Jun 2024 01:46:38 +0000 ROA not before: Sun 30 Jun 2024 01:46:38 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 27.231.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2618 (0xa3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:46:38 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=8EC2627E3543451C8F4A5D9489CEBC6CD7847B2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0a:e5:2d:f0:44:00:c1:9a:ae:57:5a:91:11: f9:d0:e3:a2:aa:bb:3e:3a:5e:3c:77:50:cf:b4:3e: c2:30:f3:89:92:6c:d7:6f:50:f9:35:a4:a2:71:ed: 63:09:09:e8:c0:6f:12:bd:60:b2:09:4d:fe:75:9a: 7c:ef:29:22:2d:58:a4:b9:24:b3:4b:96:f8:12:02: 17:6b:28:4f:2b:c9:e8:67:5d:d5:8b:38:0b:fc:b7: 23:70:82:61:20:9b:a9:15:eb:58:1a:33:6f:e6:e9: bb:f2:44:62:7d:ea:b0:1c:47:e8:f8:df:0d:4a:99: f9:a6:eb:45:27:d2:23:d0:0c:9f:48:14:99:d4:fd: 72:fc:60:e9:be:65:18:76:40:35:2b:30:74:73:b4: d6:ae:11:e8:2c:64:58:74:41:72:36:46:20:e7:14: 15:43:f4:2d:33:2f:0b:9f:05:c7:2b:d2:a1:58:4e: 2b:0e:4b:bf:d7:ae:56:5f:d1:d1:89:bc:a3:ca:0c: d1:e2:9b:9a:f8:35:38:6d:2e:25:c6:fe:e6:ff:00: 63:4d:f4:9e:01:a0:c9:f0:9f:14:70:e4:f8:98:2f: 17:e3:48:39:3b:57:ab:9a:4c:31:68:44:47:e3:61: 57:55:fe:85:4c:9a:4f:27:e5:76:6b:38:bf:e6:53: 61:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C2:62:7E:35:43:45:1C:8F:4A:5D:94:89:CE:BC:6C:D7:84:7B:2B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jsJifjVDRRyPSl2Uic68bNeEeys.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.231.128.0/17 Signature Algorithm: sha256WithRSAEncryption 4f:4e:99:27:1b:fd:5e:2f:3d:6f:e9:38:40:17:95:99:dd:a9: ba:61:eb:32:3a:ae:cf:19:6c:19:55:54:e0:81:00:06:b4:e2: 01:f6:77:57:37:8f:ef:5e:15:bd:ea:68:11:73:0e:89:2c:e8: 49:b0:00:63:4d:58:7e:dd:33:45:15:f6:0a:05:ed:9a:37:34: 30:27:f1:74:68:81:b7:ca:11:a2:d6:ce:41:f3:72:3e:83:13: c7:75:8d:fa:04:9d:29:43:89:89:73:6a:b7:79:16:c9:45:8d: b3:9a:5d:04:44:65:bb:9c:d0:63:d4:4c:26:b6:80:5e:ff:b0: 1f:ce:70:d3:35:36:fc:11:e2:1c:60:be:23:a0:f2:7d:22:be: d3:de:7a:08:f5:e4:86:2a:1f:57:40:12:85:49:25:fc:c4:96: cb:5d:89:82:72:4b:31:e4:dc:4f:e2:13:94:7a:74:9c:61:8f: 06:94:9e:e3:99:0d:87:97:7b:1e:25:87:b7:1f:3a:8f:dc:db: 7e:3f:4c:c8:79:46:d9:3a:b2:f3:55:b2:f9:eb:04:b4:c0:9e: ce:50:2c:c4:82:98:b4:6e:28:63:49:d3:a6:87:8f:3e:96:27: 96:a4:25:65:62:f4:71:be:07:40:e4:0d:7d:37:50:38:7a:18: f5:d5:72:d4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCjowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQ2MzhaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDhFQzI2MjdFMzU0MzQ1 MUM4RjRBNUQ5NDg5Q0VCQzZDRDc4NDdCMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlCuUt8EQAwZquV1qREfnQ46Kquz46Xjx3UM+0PsIw84mSbNdv UPk1pKJx7WMJCejAbxK9YLIJTf51mnzvKSItWKS5JLNLlvgSAhdrKE8ryehnXdWL OAv8tyNwgmEgm6kV61gaM2/m6bvyRGJ96rAcR+j43w1Kmfmm60Un0iPQDJ9IFJnU /XL8YOm+ZRh2QDUrMHRztNauEegsZFh0QXI2RiDnFBVD9C0zLwufBccr0qFYTisO S7/XrlZf0dGJvKPKDNHim5r4NThtLiXG/ub/AGNN9J4BoMnwnxRw5PiYLxfjSDk7 V6uaTDFoREfjYVdV/oVMmk8n5XZrOL/mU2G5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjsJifjVDRRyPSl2Uic68bNeEeyswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2pzSmlmalZEUlJ5UFNsMlVpYzY4Yk5lRWV5cy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcb54AwDQYJKoZIhvcNAQELBQADggEBAE9OmScb/V4vPW/pOEAXlZndqbph 6zI6rs8ZbBlVVOCBAAa04gH2d1c3j+9eFb3qaBFzDoks6EmwAGNNWH7dM0UV9goF 7Zo3NDAn8XRogbfKEaLWzkHzcj6DE8d1jfoEnSlDiYlzard5FslFjbOaXQREZbuc 0GPUTCa2gF7/sB/OcNM1NvwR4hxgviOg8n0ivtPeegj15IYqH1dAEoVJJfzElstd iYJySzHk3E/iE5R6dJxhjwaUnuOZDYeXex4lh7cfOo/c234/TMh5Rtk6svNVsvnr BLTAns5QLMSCmLRuKGNJ06aHjz6WJ5akJWVi9HG+B0DkDX03UDh6GPXVctQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:58 2025 by rpki-client