$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YUEqHOVlGIeojw0mNLPuvQZtg_s.roa File: YUEqHOVlGIeojw0mNLPuvQZtg_s.roa (raw, json) Hash identifier: W9xWRNjjz3ULbFwFZVVMj3T7YCb8M3/0Qql5uXHK/ec= Subject key identifier: 61:41:2A:1C:E5:65:18:87:A8:8F:0D:26:34:B3:EE:BD:06:6D:83:FB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08AC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YUEqHOVlGIeojw0mNLPuvQZtg_s.roa Signing time: Tue 30 Apr 2024 02:22:35 +0000 ROA not before: Tue 30 Apr 2024 02:22:35 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2220 (0x8ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:22:35 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=61412A1CE5651887A88F0D2634B3EEBD066D83FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f1:bb:9d:f5:c0:c5:c5:e6:8a:b1:70:16:24: 24:5e:8b:72:25:84:52:96:78:98:13:b0:68:6c:86: 94:5c:34:52:61:52:b0:11:93:7a:d1:be:7c:60:f4: 35:7c:c0:47:10:98:65:1c:ef:76:6b:53:f9:74:66: 47:9e:10:a4:bc:b4:20:ab:26:a0:d1:7e:3f:c0:54: be:e5:4b:58:38:36:b6:69:87:12:4d:a6:8d:f0:fc: aa:f4:e2:78:7d:43:77:e2:80:86:9d:9a:c2:db:e3: 1c:c8:58:b5:3e:0c:18:c8:2b:a7:7b:68:7b:60:36: 13:22:4a:ea:79:b8:38:b3:52:95:40:7c:41:24:13: 0e:9c:57:7c:0c:fd:ec:44:02:e4:e0:0a:66:36:9d: c8:ac:cd:a4:d3:ec:c7:fc:88:36:bc:ba:cb:7e:6b: 52:00:60:c2:05:02:bb:f0:fc:f1:b0:02:15:71:b5: 4c:bc:3f:09:3d:93:7a:18:ee:f6:20:2d:7c:91:e8: 0d:59:85:b4:28:8a:b2:de:9b:33:62:4b:95:c1:ac: 02:d5:b2:92:d8:ad:94:ea:87:36:9d:23:33:53:c2: 4a:2c:1e:9a:fe:5f:12:38:36:cd:cd:19:cc:47:85: 2e:f5:fe:7a:b9:50:3c:d4:e8:18:67:9e:3f:ef:cd: 4e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:41:2A:1C:E5:65:18:87:A8:8F:0D:26:34:B3:EE:BD:06:6D:83:FB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YUEqHOVlGIeojw0mNLPuvQZtg_s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.24.0/21 Signature Algorithm: sha256WithRSAEncryption df:d6:c7:29:be:42:03:da:86:90:41:1a:b3:31:07:ac:d8:8a: 4c:90:d8:3e:5c:e6:be:5d:4a:c2:49:92:89:4e:44:78:95:eb: 22:0c:3a:86:0b:ea:43:ed:b6:96:b0:f1:bf:fc:7b:e5:6e:24: 87:21:3d:35:2e:a4:d3:f1:e6:88:02:d0:30:d4:ac:cd:50:87: 62:aa:82:ae:c2:11:0e:5f:e6:4b:e2:6a:32:01:3c:39:49:6c: 7e:17:0b:ce:24:b5:1a:f7:0f:5a:4c:dc:ea:45:03:de:32:80: 8a:cd:d9:6c:e8:ac:2a:40:e6:39:af:e5:a9:dc:93:14:6b:6c: d6:c7:1c:12:24:6d:b6:f7:c9:98:da:fe:75:a8:85:bd:9a:68: 53:ae:07:23:9f:ea:92:d6:e7:d5:e5:0f:9f:fb:2e:3d:c9:9e: d1:0b:9e:0f:43:33:46:32:df:75:ae:af:9b:ee:04:79:59:e6: 52:d7:67:73:45:7c:ec:2d:da:86:5d:6a:0b:1c:ce:7d:5c:80: ea:18:a4:be:7e:b8:54:22:58:e7:1d:fb:e1:c4:1d:80:37:3c: 58:08:30:01:4a:b2:d0:1e:52:46:55:50:7c:28:a1:1c:58:7a: ad:72:b6:1d:1a:ff:ff:ff:86:34:46:cd:4a:c1:ab:cc:5e:fa: 6c:99:39:c9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCKwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIyMzVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYxNDEyQTFDRTU2NTE4 ODdBODhGMEQyNjM0QjNFRUJEMDY2RDgzRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw8bud9cDFxeaKsXAWJCRei3IlhFKWeJgTsGhshpRcNFJhUrAR k3rRvnxg9DV8wEcQmGUc73ZrU/l0ZkeeEKS8tCCrJqDRfj/AVL7lS1g4NrZphxJN po3w/Kr04nh9Q3figIadmsLb4xzIWLU+DBjIK6d7aHtgNhMiSup5uDizUpVAfEEk Ew6cV3wM/exEAuTgCmY2nciszaTT7Mf8iDa8ust+a1IAYMIFArvw/PGwAhVxtUy8 Pwk9k3oY7vYgLXyR6A1ZhbQoirLemzNiS5XBrALVspLYrZTqhzadIzNTwkosHpr+ XxI4Ns3NGcxHhS71/nq5UDzU6Bhnnj/vzU71AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYUEqHOVlGIeojw0mNLPuvQZtg/swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lVRXFIT1ZsR0llb2p3MG1OTFB1dlFadGdfcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBQhgwDQYJKoZIhvcNAQELBQADggEBAN/Wxym+QgPahpBBGrMxB6zYikyQ 2D5c5r5dSsJJkolORHiV6yIMOoYL6kPttpaw8b/8e+VuJIchPTUupNPx5ogC0DDU rM1Qh2Kqgq7CEQ5f5kviajIBPDlJbH4XC84ktRr3D1pM3OpFA94ygIrN2WzorCpA 5jmv5anckxRrbNbHHBIkbbb3yZja/nWohb2aaFOuByOf6pLW59XlD5/7Lj3JntEL ng9DM0Yy33Wur5vuBHlZ5lLXZ3NFfOwt2oZdagsczn1cgOoYpL5+uFQiWOcd++HE HYA3PFgIMAFKstAeUkZVUHwooRxYeq1yth0a////hjRGzUrBq8xe+myZOck= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:40 2024 by rpki-client on console-ams.rpki-client.org