$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer File: 0Q2IZYK930iwQYUcOMC2MhFfXCE.cer (raw, json) Hash identifier: UnnOdUNKMxqMdBpPh2INqKdiiYnY1XB3Qva4buY3TkY= Subject key identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 2F48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:31:49 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 2403:7800::/32 IP: 2406:bb00::/29 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12104 (0x2f48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:31:49 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=D10D886582BDDF48B041851C38C0B632115F5C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:58:ee:ce:fc:55:94:dc:c7:7a:0e:9b:a0:71: 6d:34:d8:d8:a9:d2:42:6e:da:f6:68:d7:9c:76:29: 8f:d4:1e:11:f5:dd:73:e4:76:1a:5f:1f:4c:b5:e9: 61:70:11:33:14:b3:fa:03:a9:85:2a:b2:3d:8e:79: f6:52:42:74:09:11:6b:58:56:41:61:31:6f:71:a3: 30:a5:88:9e:99:c1:17:d4:d2:35:ca:b9:dc:a8:d1: 1d:af:fa:2d:8a:05:79:ce:d1:59:4a:2f:dc:e0:6d: ca:1b:68:13:81:1c:d4:0d:ab:2f:0b:e3:20:9e:5d: 22:fa:3c:1a:2b:40:4e:78:ac:bb:6f:81:b4:a9:d7: 29:84:62:f9:b9:bd:ef:56:41:11:ea:ce:d6:80:2f: 65:85:9e:23:bc:f5:18:7a:81:0b:43:8c:fa:47:50: 84:9a:c4:41:16:44:78:ae:38:2f:1b:0c:56:0c:aa: f3:d5:11:54:05:bc:e8:6e:de:c3:13:ef:c1:73:2f: cd:be:76:08:0c:bb:46:41:94:9b:94:fb:e8:cb:b5: 43:12:ca:69:2c:41:1d:2f:3a:a7:ad:47:80:b0:3e: fe:4b:e6:59:bd:ea:35:6a:ed:9c:01:ab:e9:b5:5f: 96:8d:ae:be:52:fd:7d:f8:19:61:43:4f:15:17:1c: b9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7800::/32 2406:bb00::/29 Signature Algorithm: sha256WithRSAEncryption 82:c7:16:55:3b:40:ba:b4:29:1f:0f:3f:29:91:3b:8e:3a:2b: f6:20:83:94:db:81:60:4e:fc:ec:fc:a0:9a:ad:60:62:ee:0f: 6e:1a:30:4c:cd:35:9a:43:82:0e:c8:e0:3a:20:90:48:35:47: 6d:73:a3:b7:c5:af:1b:fa:b0:3b:4d:d2:55:3c:ed:d8:cc:3e: 6e:50:e2:43:d9:f7:fe:59:a9:07:33:02:e0:ac:ae:97:10:a5: 70:84:4a:14:aa:d8:45:76:6d:c3:7c:3b:73:c4:b7:78:b3:bc: fd:fa:a2:55:12:05:56:9b:02:b0:2b:80:29:4a:93:3d:f7:84: 1e:e8:82:28:a9:a0:d3:1a:6b:43:6c:24:3a:f0:fb:14:47:0c: 07:02:64:5e:37:75:39:f3:45:24:b1:3d:a8:7c:1f:42:ee:df: 83:8d:a2:3e:b6:ec:29:5a:70:55:47:95:a1:6f:a1:78:9a:16: cd:7f:dc:ca:52:d3:c6:9f:b2:89:96:0a:14:c8:76:0c:63:af: a2:c7:f3:0c:89:4e:83:1d:04:e7:0f:14:9d:78:ee:2a:75:f2: 66:b8:c8:07:ab:f2:93:16:39:c0:cf:5d:ba:7a:21:57:7e:8c: 02:6d:cd:5c:47:da:d4:27:04:87:77:4e:45:b3:37:4e:75:82: 01:9b:a4:76 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICL0gwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDUxNTAxMzE0OVoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoRDEwRDg4NjU4MkJEREY0OEIwNDE4NTFDMzhDMEI2MzIxMTVGNUMy MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1Y7s78VZTcx3oOm6Bx bTTY2KnSQm7a9mjXnHYpj9QeEfXdc+R2Gl8fTLXpYXARMxSz+gOphSqyPY559lJC dAkRa1hWQWExb3GjMKWInpnBF9TSNcq53KjRHa/6LYoFec7RWUov3OBtyhtoE4Ec 1A2rLwvjIJ5dIvo8GitATnisu2+BtKnXKYRi+bm971ZBEerO1oAvZYWeI7z1GHqB C0OM+kdQhJrEQRZEeK44LxsMVgyq89URVAW86G7ewxPvwXMvzb52CAy7RkGUm5T7 6Mu1QxLKaSxBHS86p61HgLA+/kvmWb3qNWrtnAGr6bVflo2uvlL9ffgZYUNPFRcc uZcCAwEAAaOCApMwggKPMB0GA1UdDgQWBBTRDYhlgr3fSLBBhRw4wLYyEV9cITAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAyMjgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMjI4LzBR MklaWUs5MzBpd1FZVWNPTUMyTWhGZlhDRS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAkA3gAAwUDJAa7ADAN BgkqhkiG9w0BAQsFAAOCAQEAgscWVTtAurQpHw8/KZE7jjor9iCDlNuBYE787Pyg mq1gYu4PbhowTM01mkOCDsjgOiCQSDVHbXOjt8WvG/qwO03SVTzt2Mw+blDiQ9n3 /lmpBzMC4KyulxClcIRKFKrYRXZtw3w7c8S3eLO8/fqiVRIFVpsCsCuAKUqTPfeE HuiCKKmg0xprQ2wkOvD7FEcMBwJkXjd1OfNFJLE9qHwfQu7fg42iPrbsKVpwVUeV oW+heJoWzX/cylLTxp+yiZYKFMh2DGOvosfzDIlOgx0E5w8UnXjuKnXyZrjIB6vy kxY5wM9dunohV36MAm3NXEfa1CcEh3dORbM3TnWCAZukdg== -----END CERTIFICATE-----Generated at Fri May 17 12:06:14 2024 by rpki-client on console-fra.rpki-client.org