$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YOYgOkSEU8wDrdu7VN-UvRySGzw.roa File: YOYgOkSEU8wDrdu7VN-UvRySGzw.roa (raw, json) Hash identifier: IX1ztWt8D1LthMXbDYwRe8CCGwAk93bUseHubLMZLao= Subject key identifier: 60:E6:20:3A:44:84:53:CC:03:AD:DB:BB:54:DF:94:BD:1C:92:1B:3C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 05DB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YOYgOkSEU8wDrdu7VN-UvRySGzw.roa Signing time: Thu 29 Feb 2024 01:32:18 +0000 ROA not before: Thu 29 Feb 2024 01:32:18 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.73.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:32:18 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=60E6203A448453CC03ADDBBB54DF94BD1C921B3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:61:24:2f:3d:2d:1c:8e:a1:f4:99:12:e6:ed: 7b:8c:24:7e:a5:b4:79:98:da:16:0d:b6:d7:d4:6d: 6e:f5:4b:ba:8a:82:ba:3c:20:61:78:eb:15:5a:e8: c1:99:1c:0b:95:1a:1d:88:83:ba:ea:35:e8:63:23: 46:11:93:db:24:54:da:3b:ee:9a:b2:43:8a:f3:7e: 19:b6:d9:a0:00:2f:d8:4d:2f:68:9a:ad:2c:31:cd: e4:d9:13:b3:70:bf:22:0e:b4:30:3a:4f:bc:cd:e3: 29:f7:73:8e:32:8f:2b:3b:1e:ce:89:20:64:4c:8d: a6:91:5c:9e:a2:78:9e:66:eb:c2:81:e3:a7:7b:c0: 4f:96:7c:7a:d7:3c:c8:82:71:0c:76:42:83:ca:34: 99:b1:c8:c2:f5:a7:53:d1:2c:19:84:31:a6:68:af: d4:cc:75:fc:1a:de:f5:dd:05:c7:e6:68:22:a2:2b: 33:bb:12:99:2e:39:f5:76:c8:01:45:c9:4e:af:e4: 5f:8f:98:ca:87:b2:53:a5:33:b1:6e:72:58:e9:c8: 2e:00:a3:d2:65:28:36:d7:50:17:29:89:0c:64:0b: 38:a6:8e:15:e0:96:65:7c:e5:3f:91:d8:56:37:8b: 41:54:e6:74:93:72:43:a2:e8:aa:c9:4a:8a:82:50: ef:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E6:20:3A:44:84:53:CC:03:AD:DB:BB:54:DF:94:BD:1C:92:1B:3C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YOYgOkSEU8wDrdu7VN-UvRySGzw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.73.228.0/22 Signature Algorithm: sha256WithRSAEncryption bd:1a:21:9b:fe:1a:23:2c:13:78:0c:6d:72:02:19:50:41:4f: 90:94:e6:98:96:77:70:18:72:37:f7:d8:85:21:1c:12:05:f1: 13:f7:7d:a6:e1:88:f5:56:50:c7:e2:6d:48:10:1f:9a:4d:5f: c8:d5:fd:29:d1:36:93:a4:63:de:a6:37:e9:03:d7:0d:b3:4c: 09:44:73:ce:a3:f7:56:b5:7c:51:fd:32:ce:3e:5e:32:34:b3: 7a:6f:c3:a6:95:b2:d6:7b:4e:53:df:67:9c:da:62:3c:04:45: ca:c1:6a:20:ff:9c:52:06:f1:ed:69:80:ba:13:a0:1f:21:c0: 8b:da:28:0c:17:f4:18:8e:2f:1f:21:03:83:aa:02:9e:0a:f2: a8:a4:7f:36:ab:73:f4:d8:84:5d:28:19:e9:6f:64:fd:33:4a: cc:7e:9f:d5:e6:ea:c2:68:68:f9:00:93:90:97:f2:1e:4e:a0: f6:69:9c:fc:97:db:51:bf:80:f5:58:0e:fa:73:c4:73:0f:2f: 6f:ab:71:08:68:da:a2:a6:8f:9e:9d:d0:0d:3f:4b:05:be:aa: 8a:c0:49:d0:46:ff:d5:3e:34:40:0a:4d:86:3f:ef:7e:b5:00: 5c:3b:07:32:dd:73:dc:5d:84:46:b6:b3:cd:0e:30:a3:83:96: e0:e4:a9:b0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTMyMThaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDYwRTYyMDNBNDQ4NDUz Q0MwM0FEREJCQjU0REY5NEJEMUM5MjFCM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoYSQvPS0cjqH0mRLm7XuMJH6ltHmY2hYNttfUbW71S7qKgro8 IGF46xVa6MGZHAuVGh2Ig7rqNehjI0YRk9skVNo77pqyQ4rzfhm22aAAL9hNL2ia rSwxzeTZE7NwvyIOtDA6T7zN4yn3c44yjys7Hs6JIGRMjaaRXJ6ieJ5m68KB46d7 wE+WfHrXPMiCcQx2QoPKNJmxyML1p1PRLBmEMaZor9TMdfwa3vXdBcfmaCKiKzO7 EpkuOfV2yAFFyU6v5F+PmMqHslOlM7FucljpyC4Ao9JlKDbXUBcpiQxkCzimjhXg lmV85T+R2FY3i0FU5nSTckOi6KrJSoqCUO8BAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYOYgOkSEU8wDrdu7VN+UvRySGzwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lPWWdPa1NFVTh3RHJkdTdWTi1VdlJ5U0d6dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBSeQwDQYJKoZIhvcNAQELBQADggEBAL0aIZv+GiMsE3gMbXICGVBBT5CU 5piWd3AYcjf32IUhHBIF8RP3fabhiPVWUMfibUgQH5pNX8jV/SnRNpOkY96mN+kD 1w2zTAlEc86j91a1fFH9Ms4+XjI0s3pvw6aVstZ7TlPfZ5zaYjwERcrBaiD/nFIG 8e1pgLoToB8hwIvaKAwX9BiOLx8hA4OqAp4K8qikfzarc/TYhF0oGelvZP0zSsx+ n9Xm6sJoaPkAk5CX8h5OoPZpnPyX21G/gPVYDvpzxHMPL2+rcQho2qKmj56d0A0/ SwW+qorASdBG/9U+NEAKTYY/7361AFw7BzLdc9xdhEa2s80OMKODluDkqbA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:40 2024 by rpki-client on console-ams.rpki-client.org