$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/YTU-XvpYuOP3vapIAouC1643XY4.roa File: YTU-XvpYuOP3vapIAouC1643XY4.roa (raw, json) Hash identifier: 4GISwb59skd8RZxU7JFmpX6Vh5bFgp4TTbEOjkHPZdI= Subject key identifier: 61:35:3E:5E:FA:58:B8:E3:F7:BD:AA:48:02:8B:82:D7:AE:37:5D:8E Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 2A Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/YTU-XvpYuOP3vapIAouC1643XY4.roa Signing time: Tue 26 Sep 2023 06:53:15 +0000 ROA not before: Tue 26 Sep 2023 06:53:15 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 17941 IP address blocks: 175.111.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Sep 26 06:53:15 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=61353E5EFA58B8E3F7BDAA48028B82D7AE375D8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:17:21:8f:4e:36:0f:13:63:f9:e7:12:ca:67: 99:73:24:24:c7:05:41:26:30:cb:ea:b4:9e:70:41: a0:38:3a:17:33:f2:14:02:1f:84:73:e6:ca:25:db: 5a:2d:6f:01:3d:a3:55:16:89:62:16:8f:93:b9:47: 1c:44:2a:11:73:c6:a3:44:a8:8e:29:e0:ca:06:0d: 86:57:fc:f7:e5:e2:28:08:c6:1c:16:9e:7e:3e:63: f6:4c:22:93:68:03:fb:3c:3f:49:8f:89:d7:4d:0e: 3e:a1:06:f4:18:a4:5f:b3:dd:f5:80:8c:cd:88:8f: c1:f8:5f:f8:5a:83:13:8f:22:e5:26:b1:7c:7d:f7: a0:44:b1:e3:a8:87:38:48:df:77:3b:ad:fb:f8:7a: 2f:d2:3b:4b:9e:17:e2:fc:09:f6:ad:ca:4f:30:d5: d7:c9:81:3e:49:91:1f:aa:82:27:51:2c:7a:99:01: ca:d0:90:64:d4:81:ad:5d:d4:1b:76:57:15:e6:eb: 97:03:68:26:18:08:64:c8:f1:4e:89:f6:08:b1:e4: 0b:cc:59:e9:91:5d:32:19:bd:4f:15:02:94:3d:f7: 31:6e:23:9a:67:f5:d2:fe:f0:1d:21:4f:68:54:14: 9a:e6:9e:04:a5:19:96:16:70:51:a6:88:75:f0:ce: 67:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:35:3E:5E:FA:58:B8:E3:F7:BD:AA:48:02:8B:82:D7:AE:37:5D:8E X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/YTU-XvpYuOP3vapIAouC1643XY4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.111.64.0/20 Signature Algorithm: sha256WithRSAEncryption 63:bd:f6:5d:89:d4:a7:a3:da:91:a2:e8:2a:7d:aa:7b:73:c0: 2e:e5:bb:1e:4f:bc:5f:28:12:a4:be:81:7e:a3:bc:ef:af:ce: d0:2e:23:aa:d0:c6:02:6c:88:8d:57:1a:6c:c1:20:cb:5f:11: fc:d0:3e:e0:f9:58:98:6c:26:74:7c:c6:e1:f8:84:10:ed:ef: 29:9b:9e:5d:d3:36:83:45:92:3b:1a:ce:90:ce:46:17:e8:da: a3:58:e1:a2:af:7e:4f:b0:6a:98:64:b5:26:09:13:92:d6:03: 96:9e:8e:cc:77:bb:a1:f0:2d:7a:91:c9:48:7c:f2:6b:3c:46: 85:a4:a4:c2:14:25:d4:8c:e8:80:dc:58:a4:d8:f1:60:67:64: 31:6f:98:98:a5:54:10:3c:81:f4:51:86:a0:fe:4f:f5:c4:19: 53:b7:f4:d6:68:ee:b6:c5:1e:ce:ab:83:fa:b4:2a:d0:7d:e1: 61:45:76:2c:b0:2a:48:6e:0f:2e:10:81:a4:36:f5:45:6c:20: b6:31:69:43:d4:d2:b7:10:29:91:e4:5f:7e:f0:33:ab:f6:f0: 9e:0f:14:2e:a8:77:7c:ad:1b:09:6a:f9:e2:39:06:70:9e:2d: 1a:ca:19:6e:a9:71:48:c4:aa:55:f0:a0:b7:cd:84:ca:d8:88: 49:95:6d:5c -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NjFC QzE4NTEyNzIyQUFGOUE5MEQ4OThBREVBOUFGNzc5M0MyNTQzMB4XDTIzMDkyNjA2 NTMxNVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoNjEzNTNFNUVGQTU4QjhF M0Y3QkRBQTQ4MDI4QjgyRDdBRTM3NUQ4RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOAXIY9ONg8TY/nnEspnmXMkJMcFQSYwy+q0nnBBoDg6FzPyFAIf hHPmyiXbWi1vAT2jVRaJYhaPk7lHHEQqEXPGo0SojingygYNhlf89+XiKAjGHBae fj5j9kwik2gD+zw/SY+J100OPqEG9BikX7Pd9YCMzYiPwfhf+FqDE48i5SaxfH33 oESx46iHOEjfdzut+/h6L9I7S54X4vwJ9q3KTzDV18mBPkmRH6qCJ1EsepkBytCQ ZNSBrV3UG3ZXFebrlwNoJhgIZMjxTon2CLHkC8xZ6ZFdMhm9TxUClD33MW4jmmf1 0v7wHSFPaFQUmuaeBKUZlhZwUaaIdfDOZ48CAwEAAaOCAigwggIkMB0GA1UdDgQW BBRhNT5e+li44/e9qkgCi4LXrjddjjAfBgNVHSMEGDAWgBSWG8GFEnIqr5qQ2Jit 6pr3eTwlQzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNDIvbGh2QmhSSnlLcS1ha05pWXJlcWE5M2s4SlVNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbGh2QmhSSnlLcS1ha05pWXJlcWE5 M2s4SlVNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDQyL1lUVS1YdnBZdU9QM3ZhcElBb3VDMTY0M1hZNC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASvb0AwDQYJKoZIhvcNAQELBQADggEBAGO99l2J1Kej2pGi6Cp9qntz wC7lux5PvF8oEqS+gX6jvO+vztAuI6rQxgJsiI1XGmzBIMtfEfzQPuD5WJhsJnR8 xuH4hBDt7ymbnl3TNoNFkjsazpDORhfo2qNY4aKvfk+waphktSYJE5LWA5aejsx3 u6HwLXqRyUh88ms8RoWkpMIUJdSM6IDcWKTY8WBnZDFvmJilVBA8gfRRhqD+T/XE GVO39NZo7rbFHs6rg/q0KtB94WFFdiywKkhuDy4QgaQ29UVsILYxaUPU0rcQKZHk X37wM6v28J4PFC6od3ytGwlq+eI5BnCeLRrKGW6pcUjEqlXwoLfNhMrYiEmVbVw= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:43 2024 by rpki-client on console-fra.rpki-client.org