$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yhsPaQUsepfqsIo709theIkefAU.roa File: yhsPaQUsepfqsIo709theIkefAU.roa (raw, json) Hash identifier: DeU48GRP1WT3S0Pp2PuqkB3u3VwJwlDwA2Lzlh4Um2g= Subject key identifier: CA:1B:0F:69:05:2C:7A:97:EA:B0:8A:3B:D3:DB:61:78:89:1E:7C:05 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B8C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yhsPaQUsepfqsIo709theIkefAU.roa Signing time: Tue 01 Apr 2025 01:36:56 +0000 ROA not before: Tue 01 Apr 2025 01:36:56 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:56 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CA1B0F69052C7A97EAB08A3BD3DB6178891E7C05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:36:d7:91:f3:8c:cb:40:0b:8f:aa:6c:1e:1c: 6b:80:56:86:32:56:7d:37:34:49:81:ca:a4:de:a4: 9e:c2:c8:ae:14:3a:97:a0:88:81:1d:d1:c2:1e:42: 94:ac:d0:c3:f2:59:d5:b7:0c:bb:b8:fc:f0:60:d5: 2a:9a:97:6b:09:0c:49:4d:58:64:f2:37:1f:ed:56: 43:8c:27:0a:12:21:eb:f0:99:9b:16:7f:1e:1d:9f: b7:bf:3f:56:86:4a:be:a1:e9:26:59:28:00:87:26: 98:bc:6d:81:5f:1d:3a:0f:aa:39:c2:a5:1f:2a:78: 26:e1:59:94:5c:78:79:6e:89:3f:52:ed:b9:24:ab: e9:5b:06:f6:d7:02:ee:e7:2d:a7:85:c0:b1:40:76: 79:7d:cc:57:c8:7e:82:80:46:56:ad:da:bd:6a:f8: 4a:8c:fa:52:47:ff:53:5e:7d:d2:33:b9:53:42:9e: dc:3b:67:10:76:6d:4c:58:c5:29:d8:f9:c3:37:fe: b7:d8:43:57:d2:19:9b:9e:ad:c7:b4:eb:f6:c0:38: b3:68:02:49:f2:0f:a2:5f:7a:dc:b3:5a:33:dd:5b: d7:4b:fc:a3:ba:63:58:ff:72:e6:81:58:cd:e6:cc: df:ff:4d:2c:3a:c6:c8:01:de:9f:2d:1b:23:5a:4f: ac:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:1B:0F:69:05:2C:7A:97:EA:B0:8A:3B:D3:DB:61:78:89:1E:7C:05 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yhsPaQUsepfqsIo709theIkefAU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.32.0/19 Signature Algorithm: sha256WithRSAEncryption 26:c9:21:50:db:cd:9c:de:24:cb:85:f8:de:06:80:02:44:6b: 8f:fd:1e:e3:f7:30:d0:9b:81:fe:34:c8:4f:54:0e:9d:21:e2: ff:29:25:f9:f7:f2:d3:d3:34:60:bf:25:a2:4a:77:ce:fe:17: 2e:37:13:3c:41:5c:26:8e:b8:16:00:8c:83:d3:3e:69:cd:40: fb:f5:0a:62:ff:4e:82:de:9d:aa:59:f2:12:09:9f:40:66:18: 20:eb:4d:3f:a9:60:1d:1d:5b:17:99:3e:6d:f9:a2:1d:c1:60: e1:32:d9:c1:1f:5f:98:e7:14:1f:5e:74:2b:4b:30:82:f8:e7: b7:df:64:41:bc:19:eb:4f:93:f4:df:27:10:bc:67:d7:24:ac: 89:02:59:5f:e5:63:0a:36:a1:b7:64:af:f6:db:4e:b5:98:08: 3e:9f:20:58:f0:f6:15:01:7a:5e:19:02:72:0d:e8:e2:71:59: 92:9e:79:af:27:52:94:14:91:0f:fd:8b:2c:36:88:de:35:86: 5a:0d:fd:1d:c2:86:7b:ad:a4:93:c4:94:10:e3:7e:57:6d:64: c7:b0:ad:97:9f:95:4d:66:55:f4:5c:1b:b3:11:ab:a5:2d:59: 23:86:2a:32:15:7b:0d:b8:0c:03:e9:c8:3d:16:d3:f9:e4:53: fb:21:1f:5f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENBMUIwRjY5MDUyQzdB OTdFQUIwOEEzQkQzREI2MTc4ODkxRTdDMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyNteR84zLQAuPqmweHGuAVoYyVn03NEmByqTepJ7CyK4UOpeg iIEd0cIeQpSs0MPyWdW3DLu4/PBg1Sqal2sJDElNWGTyNx/tVkOMJwoSIevwmZsW fx4dn7e/P1aGSr6h6SZZKACHJpi8bYFfHToPqjnCpR8qeCbhWZRceHluiT9S7bkk q+lbBvbXAu7nLaeFwLFAdnl9zFfIfoKARlat2r1q+EqM+lJH/1NefdIzuVNCntw7 ZxB2bUxYxSnY+cM3/rfYQ1fSGZuerce06/bAOLNoAknyD6JfetyzWjPdW9dL/KO6 Y1j/cuaBWM3mzN//TSw6xsgB3p8tGyNaT6w9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyhsPaQUsepfqsIo709theIkefAUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3loc1BhUVVzZXBmcXNJbzcwOXRoZUlrZWZBVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSCAwDQYJKoZIhvcNAQELBQADggEBACbJIVDbzZzeJMuF+N4GgAJEa4/9 HuP3MNCbgf40yE9UDp0h4v8pJfn38tPTNGC/JaJKd87+Fy43EzxBXCaOuBYAjIPT PmnNQPv1CmL/ToLenapZ8hIJn0BmGCDrTT+pYB0dWxeZPm35oh3BYOEy2cEfX5jn FB9edCtLMIL457ffZEG8GetPk/TfJxC8Z9ckrIkCWV/lYwo2obdkr/bbTrWYCD6f IFjw9hUBel4ZAnIN6OJxWZKeea8nUpQUkQ/9iyw2iN41hloN/R3ChnutpJPElBDj fldtZMewrZeflU1mVfRcG7MRq6UtWSOGKjIVew24DAPpyD0W0/nkU/shH18= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:28 2025 by rpki-client on console.sobornost.net