$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YPAI6s64aX2LFtNgXLgL5UK-3QQ.roa File: YPAI6s64aX2LFtNgXLgL5UK-3QQ.roa (raw, json) Hash identifier: F/1C6b8zl41XVFuL1G/lDA5OWVoj39kFHrhSCynmF+I= Subject key identifier: 60:F0:08:EA:CE:B8:69:7D:8B:16:D3:60:5C:B8:0B:E5:42:BE:DD:04 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09C4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YPAI6s64aX2LFtNgXLgL5UK-3QQ.roa Signing time: Sun 30 Jun 2024 01:40:25 +0000 ROA not before: Sun 30 Jun 2024 01:40:25 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 220.210.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:25 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=60F008EACEB8697D8B16D3605CB80BE542BEDD04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d5:cd:c8:42:db:cb:d1:62:f6:2d:91:aa:db: ad:23:79:cb:ac:a1:ff:07:b9:45:0b:14:27:66:b2: 4a:b9:9c:75:af:d1:6a:17:e6:fc:e6:83:8d:1e:90: bb:8a:61:5a:8b:50:0a:f3:0d:f9:38:3c:26:ba:ab: 76:b9:e0:6c:6c:3f:1d:a4:ce:6b:f6:a8:0d:f1:04: 63:af:3c:c3:03:35:66:a2:65:ea:44:9d:c9:b8:1c: 26:ad:03:fe:0b:8d:9c:70:3c:50:ca:08:7f:af:c2: a3:dc:70:b2:9e:84:8c:8d:ed:03:83:88:67:9d:c0: 3e:96:93:ac:dc:fb:ac:25:d4:d6:a0:2b:8c:22:05: 7a:38:4e:26:cc:84:6d:11:01:84:af:87:a6:ea:ed: 7a:e9:d3:c5:78:84:2f:a8:b8:52:59:eb:32:6d:28: c5:90:c9:0c:6d:f3:d8:1b:b2:f0:96:04:87:d3:7d: 3f:7f:ae:35:d9:45:07:f2:6f:d1:cd:33:e3:06:dc: 5b:af:d2:3a:a2:7e:26:6c:a8:07:84:e1:0c:c4:f5: 1a:d7:1d:84:fc:d3:f7:23:07:8d:2e:59:4d:00:27: de:85:f3:23:11:93:f0:8f:c8:eb:c1:57:27:c0:59: 81:e2:53:6c:66:22:6d:15:0b:f2:56:7a:66:95:03: f3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F0:08:EA:CE:B8:69:7D:8B:16:D3:60:5C:B8:0B:E5:42:BE:DD:04 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YPAI6s64aX2LFtNgXLgL5UK-3QQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.32.0/21 Signature Algorithm: sha256WithRSAEncryption bd:11:d5:c9:1a:24:fe:f3:6b:61:42:2c:fb:5b:26:17:c0:7d: 32:89:f7:07:cd:a6:3c:fd:55:2a:c5:93:60:18:63:66:22:e7: b1:93:ae:73:c9:0b:3a:3d:32:56:34:cf:2c:cd:37:64:26:88: 7c:16:25:ab:d0:c8:af:bf:a3:56:fe:b5:e0:a1:35:0c:cf:38: 85:31:fa:98:8f:84:30:02:ff:58:04:5c:ce:6b:fb:4e:02:a4: 46:6d:ca:73:9e:59:2b:04:5a:90:85:a0:eb:95:a0:07:18:ee: f8:a7:a2:54:28:15:ea:7c:aa:07:40:d6:c6:80:67:5f:1d:3d: d0:c5:e4:78:90:68:ee:5a:81:fe:8e:59:a6:6d:5e:cc:0e:90: ab:28:97:ed:8b:d1:d3:92:8e:46:22:97:fc:42:67:7f:5c:5d: 7e:ff:58:53:85:ef:40:81:ed:93:07:cf:09:2d:e6:a2:f2:06: cf:63:98:eb:4a:17:51:f0:7a:62:fe:ec:50:95:9b:03:1e:23: c2:fb:57:e7:8e:5f:eb:e8:79:24:78:43:b9:2b:4b:0c:75:32: 99:2f:8e:00:56:e1:cd:bb:06:10:c4:f4:ab:a6:de:6f:a4:59: ad:1c:fe:a8:f9:85:16:0b:d3:3d:50:fa:8f:d8:44:a9:23:81: b1:07:e0:93 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMjVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDYwRjAwOEVBQ0VCODY5 N0Q4QjE2RDM2MDVDQjgwQkU1NDJCRUREMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC71c3IQtvL0WL2LZGq260jecusof8HuUULFCdmskq5nHWv0WoX 5vzmg40ekLuKYVqLUArzDfk4PCa6q3a54GxsPx2kzmv2qA3xBGOvPMMDNWaiZepE ncm4HCatA/4LjZxwPFDKCH+vwqPccLKehIyN7QODiGedwD6Wk6zc+6wl1NagK4wi BXo4TibMhG0RAYSvh6bq7Xrp08V4hC+ouFJZ6zJtKMWQyQxt89gbsvCWBIfTfT9/ rjXZRQfyb9HNM+MG3Fuv0jqifiZsqAeE4QzE9RrXHYT80/cjB40uWU0AJ96F8yMR k/CPyOvBVyfAWYHiU2xmIm0VC/JWemaVA/PxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYPAI6s64aX2LFtNgXLgL5UK+3QQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lQQUk2czY0YVgyTEZ0TmdYTGdMNVVLLTNRUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPc0iAwDQYJKoZIhvcNAQELBQADggEBAL0R1ckaJP7za2FCLPtbJhfAfTKJ 9wfNpjz9VSrFk2AYY2Yi57GTrnPJCzo9MlY0zyzNN2QmiHwWJavQyK+/o1b+teCh NQzPOIUx+piPhDAC/1gEXM5r+04CpEZtynOeWSsEWpCFoOuVoAcY7vinolQoFep8 qgdA1saAZ18dPdDF5HiQaO5agf6OWaZtXswOkKsol+2L0dOSjkYil/xCZ39cXX7/ WFOF70CB7ZMHzwkt5qLyBs9jmOtKF1HwemL+7FCVmwMeI8L7V+eOX+voeSR4Q7kr Swx1MpkvjgBW4c27BhDE9Kum3m+kWa0c/qj5hRYL0z1Q+o/YRKkjgbEH4JM= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:41 2024 by rpki-client on console-ams.rpki-client.org