$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/207/YNc9pJkf_EnUj6pmbsZM4KC678g.roa File: YNc9pJkf_EnUj6pmbsZM4KC678g.roa (raw, json) Hash identifier: nRso5Af5hjCanEZPWMTAtJiijisvgBcHVvnqYfdwwVk= Subject key identifier: 60:D7:3D:A4:99:1F:FC:49:D4:8F:AA:66:6E:C6:4C:E0:A0:BA:EF:C8 Certificate issuer: /CN=67018B4DFE54BD644E000641A234B471DB20B892 Certificate serial: 8E Authority key identifier: 67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/YNc9pJkf_EnUj6pmbsZM4KC678g.roa Signing time: Sun 30 Jun 2024 01:28:22 +0000 ROA not before: Sun 30 Jun 2024 01:28:22 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 7521 IP address blocks: 210.173.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67018B4DFE54BD644E000641A234B471DB20B892 Validity Not Before: Jun 30 01:28:22 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=60D73DA4991FFC49D48FAA666EC64CE0A0BAEFC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b5:72:64:24:cf:1f:ed:68:38:2b:e7:1d:e5: ac:e6:d6:05:7d:81:0f:50:b8:00:21:24:de:9e:35: 6a:c8:e6:05:90:24:b5:3f:11:02:45:6b:03:52:a1: 23:0d:3c:6d:3d:c4:cd:95:44:d4:34:b0:70:2b:74: bb:b0:5b:af:e5:e3:d0:2e:7a:73:c0:28:db:f3:8e: be:cd:ac:d6:6a:11:7a:c7:9d:35:44:21:ef:88:b2: 66:e2:1a:5f:bf:fc:7f:c2:ee:44:1c:ba:a4:af:de: 19:e4:c6:45:8a:98:a5:6a:d0:10:e7:ac:8a:80:bb: 34:0a:ac:9f:1a:27:d8:bc:f1:4e:3e:0d:63:71:14: 23:d3:b8:6e:c0:64:2d:af:d4:9a:76:36:87:27:cc: 04:d7:53:9f:71:a8:51:85:57:0b:ba:e3:0c:c1:a5: d7:c8:14:cd:47:b9:72:77:9b:6d:e0:f7:78:37:49: 91:f0:97:3d:fe:ef:84:04:2d:5d:01:27:8a:bd:8e: 48:60:ec:88:95:cb:59:d1:4c:78:8d:56:c8:f5:f2: 40:bd:48:d3:ae:a4:a2:4e:fc:e3:ff:a5:4d:d3:23: cc:c7:50:d8:db:b3:0e:c0:bd:84:86:38:03:cf:55: a8:e6:b3:cd:29:59:bd:74:53:74:fd:a2:da:9f:56: da:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D7:3D:A4:99:1F:FC:49:D4:8F:AA:66:6E:C6:4C:E0:A0:BA:EF:C8 X509v3 Authority Key Identifier: keyid:67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/YNc9pJkf_EnUj6pmbsZM4KC678g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.173.172.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:39:97:f9:f2:e8:49:2c:2f:81:5c:da:60:9a:e4:be:1d:72: ae:72:f9:89:31:0d:88:2f:fe:82:34:b1:b1:53:6d:dc:dc:1f: 6d:1d:62:f5:d0:4d:1e:d9:9c:22:70:68:79:c2:11:7b:eb:c8: d8:2b:a3:94:87:d5:84:06:5c:22:11:8a:cd:2b:a4:e2:dd:40: 93:b9:51:dd:63:57:81:70:7b:21:a8:11:d2:76:1d:86:d9:63: 70:81:36:76:d9:bb:b6:f9:54:5c:e8:b7:5d:d9:09:7c:5c:2b: 6c:48:00:63:2d:96:c8:ca:51:c9:b3:a1:3a:d7:71:9e:3c:e7: 71:d5:1a:71:ec:21:f4:37:5f:f2:db:a7:32:1f:e7:7c:75:8a: d1:b3:e1:e5:a0:7a:e8:2d:48:4e:7c:e2:7d:bf:b9:b1:db:3d: 2d:d9:d3:f9:60:96:e2:cc:84:57:c6:ed:c4:29:64:59:76:d5: 55:50:77:78:98:68:f2:96:04:6a:c3:cc:5a:53:57:29:43:ff: 81:dd:7e:8e:32:83:66:f8:56:b9:33:71:26:b5:95:68:12:fe: 16:16:78:96:6e:3e:87:43:cf:76:cf:af:0a:d6:70:e3:18:b1: e8:7f:33:de:ca:65:bd:b8:1c:b6:91:5b:e5:79:4b:93:21:fc: 9b:06:82:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjcw MThCNERGRTU0QkQ2NDRFMDAwNjQxQTIzNEI0NzFEQjIwQjg5MjAeFw0yNDA2MzAw MTI4MjJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDYwRDczREE0OTkxRkZD NDlENDhGQUE2NjZFQzY0Q0UwQTBCQUVGQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJtXJkJM8f7Wg4K+cd5azm1gV9gQ9QuAAhJN6eNWrI5gWQJLU/ EQJFawNSoSMNPG09xM2VRNQ0sHArdLuwW6/l49AuenPAKNvzjr7NrNZqEXrHnTVE Ie+IsmbiGl+//H/C7kQcuqSv3hnkxkWKmKVq0BDnrIqAuzQKrJ8aJ9i88U4+DWNx FCPTuG7AZC2v1Jp2NocnzATXU59xqFGFVwu64wzBpdfIFM1HuXJ3m23g93g3SZHw lz3+74QELV0BJ4q9jkhg7IiVy1nRTHiNVsj18kC9SNOupKJO/OP/pU3TI8zHUNjb sw7AvYSGOAPPVajms80pWb10U3T9otqfVtp9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYNc9pJkf/EnUj6pmbsZM4KC678gwHwYDVR0jBBgwFoAUZwGLTf5UvWROAAZB ojS0cdsguJIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwNy9ad0dMVGY1VXZXUk9BQVpCb2pTMGNkc2d1SkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9ad0dMVGY1VXZXUk9BQVpCb2pTMGNk c2d1SkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjA3L1lOYzlwSmtmX0VuVWo2cG1ic1pNNEtDNjc4Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADSrawwDQYJKoZIhvcNAQELBQADggEBAG45l/ny6EksL4Fc2mCa5L4dcq5y +YkxDYgv/oI0sbFTbdzcH20dYvXQTR7ZnCJwaHnCEXvryNgro5SH1YQGXCIRis0r pOLdQJO5Ud1jV4FweyGoEdJ2HYbZY3CBNnbZu7b5VFzot13ZCXxcK2xIAGMtlsjK UcmzoTrXcZ4853HVGnHsIfQ3X/LbpzIf53x1itGz4eWgeugtSE584n2/ubHbPS3Z 0/lgluLMhFfG7cQpZFl21VVQd3iYaPKWBGrDzFpTVylD/4Hdfo4yg2b4VrkzcSa1 lWgS/hYWeJZuPodDz3bPrwrWcOMYseh/M97KZb24HLaRW+V5S5Mh/JsGggE= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:11 2024 by rpki-client on console-ams.rpki-client.org