$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yZr6QpWr8_8MWT_ncVjReO1DmaM.roa File: yZr6QpWr8_8MWT_ncVjReO1DmaM.roa (raw, json) Hash identifier: Sp5uicbRokC1ar8CKV+rfNn39hdtdzWoRIvEe4L3mCs= Subject key identifier: C9:9A:FA:42:95:AB:F3:FF:0C:59:3F:E7:71:58:D1:78:ED:43:99:A3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 095D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yZr6QpWr8_8MWT_ncVjReO1DmaM.roa Signing time: Sun 30 Jun 2024 01:33:29 +0000 ROA not before: Sun 30 Jun 2024 01:33:29 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:29 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=C99AFA4295ABF3FF0C593FE77158D178ED4399A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:e7:84:70:7e:11:eb:54:6d:bc:74:6f:4b:41: be:58:4c:c8:7b:83:7e:90:92:7e:77:9b:54:c3:91: 08:ae:b7:59:74:0d:ff:97:a8:70:c7:75:d9:5f:9c: 39:00:de:b2:80:e7:fa:9f:39:3a:ec:28:d2:60:0b: ef:15:20:fe:3e:40:9c:b7:09:ec:3f:9f:40:c3:2e: 9f:5d:5f:9c:ab:ba:99:5a:bd:45:3d:45:01:c6:d3: 7a:62:6e:34:ca:75:6a:d4:ff:5d:c0:fd:c8:70:ff: 6f:4c:d1:09:e8:5b:b0:24:b4:79:2c:43:e7:d0:7e: ab:da:8e:11:28:eb:c8:a4:27:3b:6f:40:0e:bb:e5: 7e:0c:00:f4:8f:90:a0:39:25:0d:0e:21:05:0e:86: 55:4c:08:90:3b:41:1a:5f:0b:db:42:a6:92:9c:12: cb:6e:05:9b:02:02:d7:70:c2:1b:6e:4b:d1:3b:a8: 78:7b:7e:9c:9e:21:c8:ba:4a:6b:a5:aa:d6:a5:df: 59:05:0b:ea:a5:b8:ba:d6:83:4b:a6:e7:1c:e8:fc: bb:91:1c:66:6c:77:cb:f9:ae:0c:d9:51:e4:21:79: 2d:c4:f6:e7:2e:13:d7:8d:be:df:3f:8b:67:fa:db: 5d:8a:4b:91:03:32:a7:cf:c1:27:48:4a:49:f4:b9: 29:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9A:FA:42:95:AB:F3:FF:0C:59:3F:E7:71:58:D1:78:ED:43:99:A3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yZr6QpWr8_8MWT_ncVjReO1DmaM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.108.0/23 Signature Algorithm: sha256WithRSAEncryption 95:f8:65:42:ad:b5:4c:c7:e2:c8:ad:13:a6:d8:e8:97:2f:b5: 38:dd:2d:85:4b:71:5b:17:c5:a7:67:74:d9:f7:34:b5:f8:03: 04:6e:c0:27:7e:4d:66:d7:42:be:fb:40:e3:32:b8:21:6b:db: d1:e3:c5:75:3f:c2:11:a5:30:a4:c2:a2:7a:2f:d2:cf:5a:85: 35:ae:bc:cf:70:90:3b:60:11:5e:7b:3b:74:e4:a9:6f:f2:c9: aa:12:d5:e7:89:5d:5d:66:fc:cd:87:aa:6e:8c:ac:95:e6:4b: b3:ae:4a:85:08:ec:04:e9:43:43:f2:9f:49:c2:5c:e7:da:92: 63:0f:51:1d:c1:44:aa:dd:b4:50:3d:d9:af:ef:b3:bb:ac:ae: ef:32:1f:57:01:10:e5:3c:d0:3a:bb:03:4d:2b:e1:af:97:9b: 9c:83:11:8b:a5:8f:22:20:ca:67:e1:bb:3d:94:8a:49:8e:d6: dc:f4:5d:e7:5f:d7:9d:ee:05:61:f6:02:2d:77:ee:05:66:82: cf:40:d6:b0:97:25:21:7f:00:23:c5:d1:b3:2e:56:2e:7b:df: b7:39:13:e9:cf:53:db:af:97:de:0a:34:a4:6f:86:69:b7:72: 17:8a:c7:a2:6f:e5:20:97:6c:fe:7a:fe:cc:b9:dd:d2:94:8a: 80:08:44:dc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzMjlaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEM5OUFGQTQyOTVBQkYz RkYwQzU5M0ZFNzcxNThEMTc4RUQ0Mzk5QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD554RwfhHrVG28dG9LQb5YTMh7g36Qkn53m1TDkQiut1l0Df+X qHDHddlfnDkA3rKA5/qfOTrsKNJgC+8VIP4+QJy3Cew/n0DDLp9dX5yruplavUU9 RQHG03pibjTKdWrU/13A/chw/29M0QnoW7AktHksQ+fQfqvajhEo68ikJztvQA67 5X4MAPSPkKA5JQ0OIQUOhlVMCJA7QRpfC9tCppKcEstuBZsCAtdwwhtuS9E7qHh7 fpyeIci6Smulqtal31kFC+qluLrWg0um5xzo/LuRHGZsd8v5rgzZUeQheS3E9ucu E9eNvt8/i2f6212KS5EDMqfPwSdISkn0uSlvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyZr6QpWr8/8MWT/ncVjReO1DmaMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3lacjZRcFdyOF84TVdUX25jVmpSZU8xRG1hTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0mwwDQYJKoZIhvcNAQELBQADggEBAJX4ZUKttUzH4sitE6bY6JcvtTjd LYVLcVsXxadndNn3NLX4AwRuwCd+TWbXQr77QOMyuCFr29HjxXU/whGlMKTConov 0s9ahTWuvM9wkDtgEV57O3TkqW/yyaoS1eeJXV1m/M2Hqm6MrJXmS7OuSoUI7ATp Q0Pyn0nCXOfakmMPUR3BRKrdtFA92a/vs7usru8yH1cBEOU80Dq7A00r4a+Xm5yD EYuljyIgymfhuz2UikmO1tz0Xedf153uBWH2Ai137gVmgs9A1rCXJSF/ACPF0bMu Vi5737c5E+nPU9uvl94KNKRvhmm3cheKx6Jv5SCXbP56/sy53dKUioAIRNw= -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:40 2025 by rpki-client