$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer File: KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer (raw, json) Hash identifier: PTHw98vHrKQ9Rx1cjPf98GwoZfGrcK9ApH0HgCkPLBQ= Subject key identifier: 29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 3033 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:36:50 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 2001:240::/32 IP: 2001:300::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12339 (0x3033) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:36:50 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=2905A3EE8F9C361ABD971B0CA9726DF83CFA6BF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:77:a9:da:3a:c4:f9:6e:b7:22:96:4e:90: 4d:98:c1:a0:94:8a:12:f7:0f:72:dd:d1:d9:79:ce: a9:63:ee:7a:11:2b:10:98:a9:2b:b0:ab:32:04:cd: 93:92:d0:fc:cd:66:21:40:e6:4e:5b:97:9e:0f:eb: 00:5a:89:4e:a5:1e:7d:cc:48:ea:8a:15:19:d8:21: 48:79:6d:10:19:2d:6a:54:1b:b9:73:42:95:23:f5: a8:f0:58:b5:b9:be:24:2b:e1:d4:6c:9c:3f:29:db: 78:f9:63:dc:46:6d:ad:8f:ec:a8:9b:c2:7d:2a:4a: 40:b5:ba:70:5f:47:8f:17:15:c9:68:cb:dc:87:4e: a1:f6:b7:04:8f:68:5e:b5:40:08:60:bb:e9:13:3d: d2:d4:1b:c5:2d:aa:16:56:dd:bb:ec:83:1c:9f:3f: 07:ba:61:4b:af:05:00:71:62:bb:d0:28:af:98:5f: 32:55:8f:86:97:0c:3a:d1:2b:0d:bf:e8:79:93:5e: ca:71:92:1f:e5:31:d4:60:b0:03:52:9f:69:ca:92: 03:6d:85:66:dd:18:5c:d8:34:ac:ac:3e:ae:1e:1f: 58:67:ea:71:b9:c2:99:0e:73:b5:c6:56:e4:b2:88: 9e:cf:c6:59:af:a5:c7:e8:fb:df:78:de:d0:63:68: 8f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:240::/32 2001:300::/32 Signature Algorithm: sha256WithRSAEncryption 95:9a:bc:f1:22:c3:62:cc:d9:04:ef:68:c3:75:f1:91:04:1c: d1:cd:04:46:c4:30:b6:5b:14:3f:4f:cc:b8:ed:bd:a0:c9:c4: a8:12:fd:34:0b:1d:d8:1d:98:3d:87:12:55:e9:f9:d7:bf:d4: a9:77:6a:af:3c:9b:9e:5c:d0:14:8e:e4:03:92:b8:2c:f9:57: 18:49:90:77:cd:e6:3b:8f:ae:81:e8:89:bb:21:e6:c8:83:43: 5f:36:41:b7:27:0e:1c:37:93:90:74:03:57:4d:36:81:dd:ee: 8d:8b:eb:b4:02:37:bb:9f:0a:ac:26:10:84:6b:02:8d:40:a7: 8f:38:b7:d8:05:9f:e7:68:6e:4c:eb:9a:87:f7:d8:53:8a:0a: a3:38:c0:70:fb:18:79:dd:a0:85:9d:f5:1a:5e:55:6f:d4:f3: 65:34:62:45:8b:02:73:53:2f:58:73:cc:1a:c1:43:c2:36:73: 6c:81:42:ce:25:7a:14:83:a2:5b:e9:35:09:47:c3:1c:89:18: 0e:04:a6:21:72:2b:f1:bf:39:08:f0:6d:aa:46:41:57:50:db: 99:79:71:6d:a3:91:81:f8:cd:0a:be:65:32:2c:48:3b:a7:c8: 83:40:27:63:38:4a:eb:b5:80:05:d5:fc:c0:eb:71:f6:f9:53: 1b:9e:26:fd -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICMDMwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDUxNTAxMzY1MFoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoMjkwNUEzRUU4RjlDMzYxQUJEOTcxQjBDQTk3MjZERjgzQ0ZBNkJG ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMevd6naOsT5brcilk6Q TZjBoJSKEvcPct3R2XnOqWPuehErEJipK7CrMgTNk5LQ/M1mIUDmTluXng/rAFqJ TqUefcxI6ooVGdghSHltEBktalQbuXNClSP1qPBYtbm+JCvh1GycPynbePlj3EZt rY/sqJvCfSpKQLW6cF9HjxcVyWjL3IdOofa3BI9oXrVACGC76RM90tQbxS2qFlbd u+yDHJ8/B7phS68FAHFiu9Aor5hfMlWPhpcMOtErDb/oeZNeynGSH+Ux1GCwA1Kf acqSA22FZt0YXNg0rKw+rh4fWGfqcbnCmQ5ztcZW5LKIns/GWa+lx+j733je0GNo j+MCAwEAAaOCApMwggKPMB0GA1UdDgQWBBQpBaPuj5w2Gr2XGwypcm34PPpr+DAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwMTYvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDE2L0tR V2o3by1jTmhxOWx4c01xWEp0LUR6NmFfZy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAgAQJAAwUAIAEDADAN BgkqhkiG9w0BAQsFAAOCAQEAlZq88SLDYszZBO9ow3XxkQQc0c0ERsQwtlsUP0/M uO29oMnEqBL9NAsd2B2YPYcSVen517/UqXdqrzybnlzQFI7kA5K4LPlXGEmQd83m O4+ugeiJuyHmyINDXzZBtycOHDeTkHQDV002gd3ujYvrtAI3u58KrCYQhGsCjUCn jzi32AWf52huTOuah/fYU4oKozjAcPsYed2ghZ31Gl5Vb9TzZTRiRYsCc1MvWHPM GsFDwjZzbIFCziV6FIOiW+k1CUfDHIkYDgSmIXIr8b85CPBtqkZBV1DbmXlxbaOR gfjNCr5lMixIO6fIg0AnYzhK67WABdX8wOtx9vlTG54m/Q== -----END CERTIFICATE-----Generated at Fri May 17 08:51:51 2024 by rpki-client on console-ams.rpki-client.org