$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/4oKHAq-VJLLD1X4biwxkliVmlJw.cer File: 4oKHAq-VJLLD1X4biwxkliVmlJw.cer (raw, json) Hash identifier: l32BktI/X5jfZc4PvBL14H3FVgAStIy9hiXcyxh4td0= Subject key identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 2FC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:34:34 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 2407:58c0::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12227 (0x2fc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:34:34 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=E2828702AF9524B2C3D57E1B8B0C64962566949C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:f9:3f:55:c9:c1:51:e3:78:cc:6b:2a:f6: 53:0a:24:1c:59:3f:17:10:18:32:ea:2b:24:8a:fd: 6b:ae:2c:ce:fb:8d:dc:74:1c:4d:6c:e3:39:72:0c: ed:09:04:37:88:5c:92:0c:94:8e:73:aa:0f:2f:2d: 3a:3a:1f:eb:62:32:99:f4:a8:85:ca:bf:6a:80:01: 04:2c:80:1c:76:e6:71:7a:2f:4f:0b:17:4a:7c:fa: 04:f2:9a:9f:74:c1:63:15:4c:51:9c:25:13:cd:9c: b4:8a:27:cf:4f:24:6d:18:cc:d3:1a:20:2e:92:43: 3f:f9:4a:3f:e7:d2:a9:75:14:9c:d2:d0:62:8f:23: 4e:ee:5d:df:29:d6:f8:18:b1:99:55:3f:f4:20:e2: 17:28:63:03:b2:d0:02:8f:b8:cb:18:0b:69:50:16: 3c:17:44:45:3b:c5:d8:80:c3:8c:ae:8e:cb:c5:86: 3f:94:59:5a:8b:cf:b9:bc:69:8b:23:77:39:98:72: 90:fd:28:de:be:cb:b8:68:5e:bd:54:7b:8d:69:98: 77:eb:14:6d:ca:86:40:97:bc:4e:3d:6f:bb:e8:1f: 0c:ca:45:30:88:5c:c3:d0:ee:f9:c7:f6:7d:c2:10: d2:90:14:97:ff:00:fa:af:bb:dd:62:fc:a7:41:a5: 84:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:58c0::/32 Signature Algorithm: sha256WithRSAEncryption 59:e0:b3:40:a2:b4:e0:23:8b:f1:16:e0:f3:89:69:c9:10:01: 64:44:28:50:56:88:51:6b:6e:41:05:a1:95:f0:a0:a0:7c:14: 2a:6e:1b:a1:9e:a9:62:08:83:45:b0:17:f9:84:bd:18:20:4b: 2c:29:44:83:b6:28:17:50:0b:74:0d:e0:ce:11:f9:50:21:ca: b2:2f:c8:f5:11:df:bc:60:ab:6f:f6:0f:06:e6:30:11:04:bc: 7b:83:13:aa:d7:be:ad:05:62:28:26:79:66:94:c8:6a:c8:8f: 7f:04:af:4a:e8:a3:42:3f:13:cd:b0:30:ca:1d:cc:44:b8:84: 78:f6:60:9f:73:f4:c3:ae:b8:e6:b4:d8:a0:bb:30:53:0f:79: fc:a0:0f:76:9e:1c:6f:da:90:97:a6:b4:46:5a:7c:de:19:3b: e2:ba:f9:c1:bc:c6:2f:52:18:25:15:88:8e:c7:4b:6f:df:94: 4a:11:e6:84:66:68:97:ee:3b:98:33:0f:ec:c9:c1:e5:93:9e: 42:ca:10:77:5f:04:5e:46:31:07:5a:07:3f:ad:c7:9e:fb:17: 43:79:5a:ad:af:2d:dd:93:0d:80:d4:55:fc:05:de:d5:d8:6c: 27:9c:03:f7:41:ab:19:cd:4f:7c:ce:08:21:e6:1e:13:eb:4a: 6b:6e:85:dc -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICL8MwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDUxNTAxMzQzNFoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoRTI4Mjg3MDJBRjk1MjRCMkMzRDU3RTFCOEIwQzY0OTYyNTY2OTQ5 QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALR2+T9VycFR43jMayr2 UwokHFk/FxAYMuorJIr9a64szvuN3HQcTWzjOXIM7QkEN4hckgyUjnOqDy8tOjof 62IymfSohcq/aoABBCyAHHbmcXovTwsXSnz6BPKan3TBYxVMUZwlE82ctIonz08k bRjM0xogLpJDP/lKP+fSqXUUnNLQYo8jTu5d3ynW+BixmVU/9CDiFyhjA7LQAo+4 yxgLaVAWPBdERTvF2IDDjK6Oy8WGP5RZWovPubxpiyN3OZhykP0o3r7LuGhevVR7 jWmYd+sUbcqGQJe8Tj1vu+gfDMpFMIhcw9Du+cf2fcIQ0pAUl/8A+q+73WL8p0Gl hNcCAwEAAaOCAowwggKIMB0GA1UdDgQWBBTigocCr5UkssPVfhuLDGSWJWaUnDAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAzNzYvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMzc2LzRv S0hBcS1WSkxMRDFYNGJpd3hrbGlWbWxKdy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB1jAMA0GCSqGSIb3 DQEBCwUAA4IBAQBZ4LNAorTgI4vxFuDziWnJEAFkRChQVohRa25BBaGV8KCgfBQq bhuhnqliCINFsBf5hL0YIEssKUSDtigXUAt0DeDOEflQIcqyL8j1Ed+8YKtv9g8G 5jARBLx7gxOq176tBWIoJnlmlMhqyI9/BK9K6KNCPxPNsDDKHcxEuIR49mCfc/TD rrjmtNiguzBTD3n8oA92nhxv2pCXprRGWnzeGTviuvnBvMYvUhglFYiOx0tv35RK EeaEZmiX7juYMw/sycHlk55CyhB3XwReRjEHWgc/rcee+xdDeVqtry3dkw2A1FX8 Bd7V2GwnnAP3QasZzU98zggh5h4T60prboXc -----END CERTIFICATE-----Generated at Fri May 17 01:01:17 2024 by rpki-client on console-ams.rpki-client.org