$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Yb36-6ioilguTTd7RwJVDarARHY.roa File: Yb36-6ioilguTTd7RwJVDarARHY.roa (raw, json) Hash identifier: NHhIvwRJjDeNQtCv3tb7Ph3F2+cr/X7Gx4LsdNVglP8= Subject key identifier: 61:BD:FA:FB:A8:A8:8A:58:2E:4D:37:7B:47:02:55:0D:AA:C0:44:76 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09A9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Yb36-6ioilguTTd7RwJVDarARHY.roa Signing time: Sun 30 Jun 2024 01:38:18 +0000 ROA not before: Sun 30 Jun 2024 01:38:18 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 219.114.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:38:18 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=61BDFAFBA8A88A582E4D377B4702550DAAC04476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:34:01:f1:9b:9e:07:a6:7f:48:a1:6f:bd:a3: 74:1a:22:07:e3:69:ee:5b:6a:a4:22:60:50:9a:6e: 5d:a1:f8:68:5c:5e:3a:cd:28:2e:c3:fb:3a:03:6d: ab:f4:84:c4:0e:fc:5b:71:9f:db:58:92:bf:82:96: b6:73:a7:b8:41:26:c3:97:8c:de:9b:38:07:df:5d: 6d:dd:33:c1:80:71:69:d7:b1:ff:53:0e:02:af:6f: 3b:b9:84:6f:a0:66:38:f8:ef:7d:16:fd:89:d9:14: 3d:94:4f:bd:8c:82:34:bb:ca:d3:46:12:c1:37:8f: e9:ad:c3:ad:12:db:fd:59:bd:74:f0:4e:de:9b:d5: 99:74:5b:7d:96:13:cc:6b:81:2e:9e:72:ee:8d:34: 99:68:10:e9:d7:e5:a4:47:89:78:e5:5f:16:bf:01: ca:43:33:53:65:a7:2f:6e:55:19:02:dc:20:73:92: b8:c5:ba:ce:86:71:08:58:f7:d2:57:ca:5e:ec:94: 9f:d2:80:1a:41:d1:e8:06:24:25:6a:72:26:5e:8e: 00:37:cd:58:e7:73:2e:fd:a4:d0:08:15:03:df:b2: 50:fc:e7:01:d4:18:4b:d6:15:e6:ac:f6:fe:d5:29: 64:c7:dc:4e:d6:2d:7c:9c:58:af:12:1f:61:88:05: 99:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BD:FA:FB:A8:A8:8A:58:2E:4D:37:7B:47:02:55:0D:AA:C0:44:76 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Yb36-6ioilguTTd7RwJVDarARHY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.188.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:d2:1e:f0:bf:9e:91:57:0a:bc:0e:03:63:ae:2b:19:fd:7c: 1c:35:f2:2f:bd:50:44:0d:57:b6:3c:33:30:14:c6:55:35:c9: c8:69:33:f8:42:ea:79:b2:2b:7f:c5:fb:88:67:ad:c1:0f:76: 54:f7:1f:e3:1c:ad:27:a4:86:9a:0f:4f:f6:25:8b:c3:ef:2d: 66:cf:e2:a8:63:3a:c0:e7:7e:f7:f4:04:26:09:0d:26:a9:85: 86:c7:0b:42:c4:81:b3:c9:4f:eb:dd:e6:c3:85:66:0d:8e:fc: e5:02:92:12:37:c5:db:a0:18:f1:69:22:e0:54:49:4c:b1:ae: 7c:47:8a:6d:a9:d6:78:96:ca:70:91:0b:9e:67:eb:f6:11:56: c4:b6:74:c5:3b:a1:9f:00:d9:16:f5:c6:9d:1c:5a:0a:3e:90: c5:ad:34:fa:b8:17:af:4a:bb:b9:7b:8e:77:4f:52:0a:8e:6c: 95:01:8b:73:f7:a8:93:63:58:e5:a7:d8:d9:3d:28:ff:53:67: f8:4e:8c:4a:cd:8c:b3:34:48:6c:2c:c2:5b:73:88:b0:36:05: 5b:f9:b2:8d:b9:aa:2f:c4:1e:66:39:ac:50:98:21:7b:2d:7d: aa:0b:8f:86:98:79:fc:72:e6:0c:70:41:7b:b7:01:f9:bc:16: c3:ac:80:8e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTM4MThaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDYxQkRGQUZCQThBODhB NTgyRTREMzc3QjQ3MDI1NTBEQUFDMDQ0NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrNAHxm54Hpn9IoW+9o3QaIgfjae5baqQiYFCabl2h+GhcXjrN KC7D+zoDbav0hMQO/Ftxn9tYkr+ClrZzp7hBJsOXjN6bOAffXW3dM8GAcWnXsf9T DgKvbzu5hG+gZjj4730W/YnZFD2UT72MgjS7ytNGEsE3j+mtw60S2/1ZvXTwTt6b 1Zl0W32WE8xrgS6ecu6NNJloEOnX5aRHiXjlXxa/AcpDM1Nlpy9uVRkC3CBzkrjF us6GcQhY99JXyl7slJ/SgBpB0egGJCVqciZejgA3zVjncy79pNAIFQPfslD85wHU GEvWFeas9v7VKWTH3E7WLXycWK8SH2GIBZlhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYb36+6ioilguTTd7RwJVDarARHYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1liMzYtNmlvaWxndVRUZDdSd0pWRGFyQVJIWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHbcrwwDQYJKoZIhvcNAQELBQADggEBAE7SHvC/npFXCrwOA2OuKxn9fBw1 8i+9UEQNV7Y8MzAUxlU1ychpM/hC6nmyK3/F+4hnrcEPdlT3H+McrSekhpoPT/Yl i8PvLWbP4qhjOsDnfvf0BCYJDSaphYbHC0LEgbPJT+vd5sOFZg2O/OUCkhI3xdug GPFpIuBUSUyxrnxHim2p1niWynCRC55n6/YRVsS2dMU7oZ8A2Rb1xp0cWgo+kMWt NPq4F69Ku7l7jndPUgqObJUBi3P3qJNjWOWn2Nk9KP9TZ/hOjErNjLM0SGwswltz iLA2BVv5so25qi/EHmY5rFCYIXstfaoLj4aYefxy5gxwQXu3Afm8FsOsgI4= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:24 2024 by rpki-client on console-ams.rpki-client.org