$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oPVgx5V1_dEhQYtONin-CE4JWlg.roa File: oPVgx5V1_dEhQYtONin-CE4JWlg.roa (raw, json) Hash identifier: bELzT3IeRAFcyPDUiOlhBAd4iHfWY0D/yBdh2Nl8NuM= Subject key identifier: A0:F5:60:C7:95:75:FD:D1:21:41:8B:4E:36:29:FE:08:4E:09:5A:58 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 082B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oPVgx5V1_dEhQYtONin-CE4JWlg.roa Signing time: Tue 30 Apr 2024 02:14:23 +0000 ROA not before: Tue 30 Apr 2024 02:14:23 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 27.230.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:14:23 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=A0F560C79575FDD121418B4E3629FE084E095A58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2d:0b:4a:a9:59:8e:cc:fc:c4:ce:27:01:30: 15:df:95:c9:3b:a0:c1:5f:5e:36:6c:b4:79:a5:ad: 51:29:cc:4d:37:6d:ce:f3:4d:19:b1:e8:3f:b7:10: 71:c6:3e:cc:a9:df:09:9f:9f:76:0d:0a:bd:91:99: b5:a8:65:85:bc:d9:45:df:e9:84:73:34:87:c2:c7: ee:dd:16:8d:cf:f1:56:f7:80:50:71:ba:79:1a:b8: cd:ce:ba:f1:c8:a7:8e:b1:a6:9c:66:c6:51:fa:f4: 0d:59:b3:ee:d8:01:4d:77:2f:10:5d:42:83:96:96: f0:31:e6:7f:d4:c8:e0:78:1a:5f:4d:e4:6f:aa:a3: 83:74:9f:ba:24:c2:dd:f6:99:25:06:93:d7:79:a3: cd:fb:e0:0a:1b:79:fb:2f:02:18:2b:d3:92:69:1d: dd:d4:87:22:d4:1a:2a:7f:cd:f0:ee:3f:55:68:c1: bb:fc:f1:7f:3f:08:58:bb:5c:c5:f4:d8:31:e0:50: 1d:7d:08:c9:4b:3b:53:89:d0:53:97:e4:d2:2a:05: 9b:d1:0e:56:9d:d0:6a:bc:d4:2f:84:d8:77:50:28: 1a:ee:1a:8a:1f:1a:a2:46:0f:ec:d5:24:27:0b:cf: 16:82:82:6a:a3:f8:90:30:02:4e:2b:5b:b0:01:9a: b7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F5:60:C7:95:75:FD:D1:21:41:8B:4E:36:29:FE:08:4E:09:5A:58 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oPVgx5V1_dEhQYtONin-CE4JWlg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.95.0/24 Signature Algorithm: sha256WithRSAEncryption 47:c6:61:ac:30:d4:ef:1b:28:1c:e0:d9:05:aa:2d:58:11:44: ed:e9:26:d3:e4:25:f8:63:5c:a7:39:76:26:a5:c1:c6:51:c1: 84:29:cd:97:80:04:d2:f3:05:06:cd:18:8b:c4:c7:5a:da:13: 6a:7c:06:97:16:d0:13:b2:5e:c6:03:c7:9f:99:14:d9:4d:01: 4f:c9:be:31:c7:e2:0a:5f:7b:bb:e3:8a:90:87:aa:88:f3:f8: d1:67:38:ad:93:9f:4f:57:84:75:93:b9:d0:06:30:a3:2e:54: 91:d2:ef:af:a3:17:b0:64:2d:b0:b4:9a:18:dd:70:90:16:f2: a9:63:3e:d9:de:71:b3:97:56:26:43:5f:bd:a6:f1:16:da:af: f6:9f:2d:7c:35:77:77:92:b0:52:ff:1e:fe:87:7b:83:a9:b9: 1f:0b:d7:d3:45:af:cd:ba:3d:53:8d:81:cb:59:0f:44:e6:75: ec:52:1a:fa:d4:98:e6:a1:d7:54:3b:08:ce:86:9e:a2:3c:d0: a8:08:1a:f6:97:8c:29:94:7d:da:28:91:ed:79:35:9f:ac:4a: ae:d1:f4:48:7d:2e:19:b2:fd:dd:34:9c:99:33:31:e2:e3:98: a0:e8:9e:97:79:8a:d2:f2:dc:e2:53:7d:2d:a7:34:20:92:49: 8a:93:a7:d5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCCswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE0MjNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEwRjU2MEM3OTU3NUZE RDEyMTQxOEI0RTM2MjlGRTA4NEUwOTVBNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkLQtKqVmOzPzEzicBMBXflck7oMFfXjZstHmlrVEpzE03bc7z TRmx6D+3EHHGPsyp3wmfn3YNCr2RmbWoZYW82UXf6YRzNIfCx+7dFo3P8Vb3gFBx unkauM3OuvHIp46xppxmxlH69A1Zs+7YAU13LxBdQoOWlvAx5n/UyOB4Gl9N5G+q o4N0n7okwt32mSUGk9d5o8374AobefsvAhgr05JpHd3UhyLUGip/zfDuP1Vowbv8 8X8/CFi7XMX02DHgUB19CMlLO1OJ0FOX5NIqBZvRDlad0Gq81C+E2HdQKBruGoof GqJGD+zVJCcLzxaCgmqj+JAwAk4rW7ABmreLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoPVgx5V1/dEhQYtONin+CE4JWlgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29QVmd4NVYxX2RFaFFZdE9OaW4tQ0U0SldsZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAb5l8wDQYJKoZIhvcNAQELBQADggEBAEfGYaww1O8bKBzg2QWqLVgRRO3p JtPkJfhjXKc5dialwcZRwYQpzZeABNLzBQbNGIvEx1raE2p8BpcW0BOyXsYDx5+Z FNlNAU/JvjHH4gpfe7vjipCHqojz+NFnOK2Tn09XhHWTudAGMKMuVJHS76+jF7Bk LbC0mhjdcJAW8qljPtnecbOXViZDX72m8Rbar/afLXw1d3eSsFL/Hv6He4OpuR8L 19NFr826PVONgctZD0TmdexSGvrUmOah11Q7CM6GnqI80KgIGvaXjCmUfdooke15 NZ+sSq7R9Eh9Lhmy/d00nJkzMeLjmKDonpd5itLy3OJTfS2nNCCSSYqTp9U= -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:39 2025 by rpki-client