$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.cer File: LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.cer (raw, json) Hash identifier: prQ3TcRWd3oqYn6y659G+xbn8rA6ZOqOCDChndEqfxc= Subject key identifier: 2D:9D:92:F8:3F:5E:0C:EF:5F:EA:DD:BE:34:A8:FB:90:8D:A1:8D:14 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 306C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:37:53 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 2401:c20::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 12:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12396 (0x306c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:37:53 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=2D9D92F83F5E0CEF5FEADDBE34A8FB908DA18D14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9f:ce:b1:bb:00:e5:97:95:9d:bd:6c:52:7d: 6a:fb:bf:19:47:9a:8d:de:1d:b5:e1:6f:ee:34:54: be:58:6b:4b:1a:18:cb:74:1d:71:c4:eb:e5:0e:09: fc:a8:50:10:6f:ab:49:bf:5d:1a:eb:e0:bc:f6:44: b4:34:9d:f0:86:52:36:32:78:86:22:8d:22:66:53: 32:e7:e5:d7:aa:a2:8f:25:b8:04:b7:25:4c:61:57: 16:27:df:9d:c9:2e:c9:81:28:fc:c3:44:ca:e8:7e: 57:57:c9:44:51:53:d7:ab:0d:49:8b:84:35:9f:f0: a6:f0:48:b7:9e:36:94:84:c4:7b:f2:e2:60:ad:8f: 61:ab:6c:36:96:e0:d6:51:91:b6:76:ab:00:b9:9e: 9a:c2:7b:6c:af:d4:89:f1:ed:d0:29:f8:9e:f1:17: 0a:bd:1a:4b:38:1c:ae:35:6d:f6:55:7b:f0:9e:50: 7b:ab:e2:27:9d:d4:76:25:d1:9d:70:68:7f:19:58: 37:f7:ef:f6:9b:34:8d:e0:33:19:3e:61:c1:34:65: 00:8d:96:30:50:ed:7f:06:1b:03:f5:42:ee:01:0d: ef:31:56:a5:8e:3a:a1:9d:a8:5b:43:7f:bc:94:df: bb:3f:ee:9a:77:6c:38:22:58:d5:3d:58:d7:a0:7a: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:9D:92:F8:3F:5E:0C:EF:5F:EA:DD:BE:34:A8:FB:90:8D:A1:8D:14 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c20::/32 Signature Algorithm: sha256WithRSAEncryption 84:2c:f9:e5:7e:a0:7d:a2:ed:a3:ed:04:ba:ef:d2:be:d0:c5: 1a:f7:20:fc:4f:81:60:49:d4:31:14:a2:eb:65:6f:68:81:10: eb:14:94:48:90:b7:bf:71:e9:ee:e3:96:d6:94:d4:a8:05:21: ca:1e:fb:6a:d6:02:8b:16:f0:b2:ff:f7:bb:60:92:c4:e4:bf: f1:c4:e2:db:fe:b1:d6:da:29:4c:fc:da:67:62:ae:21:8b:a9: 6e:da:8f:ed:c5:14:4b:be:cd:8a:a1:99:5c:75:b3:60:b2:23: 00:69:02:3a:51:63:0f:f0:b7:50:f3:0f:70:9e:c7:cb:6a:56: f9:11:8f:bb:84:20:9b:0a:67:fd:3b:e1:c9:7e:50:a1:4f:25: b4:34:d8:c9:99:30:72:50:df:ea:df:fc:16:82:a1:18:4a:40: 4f:17:0c:ab:05:15:2c:c2:e7:55:94:05:ff:f9:37:80:bc:dd: 23:df:45:8f:66:4c:5f:45:48:42:d9:8f:c9:38:f2:c1:f9:1a: cc:ba:aa:56:ef:b5:a6:18:ac:97:87:43:81:bc:fe:76:6c:30: 2d:73:a9:11:f9:35:db:a6:c4:1b:a4:92:b6:2b:4c:bc:2e:03: 7c:b4:01:38:2d:ad:d1:5b:16:11:07:33:be:e4:cc:d4:01:70: 35:72:21:ac -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICMGwwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDUxNTAxMzc1M1oXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoMkQ5RDkyRjgzRjVFMENFRjVGRUFEREJFMzRBOEZCOTA4REExOEQx NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM+fzrG7AOWXlZ29bFJ9 avu/GUeajd4dteFv7jRUvlhrSxoYy3QdccTr5Q4J/KhQEG+rSb9dGuvgvPZEtDSd 8IZSNjJ4hiKNImZTMufl16qijyW4BLclTGFXFiffnckuyYEo/MNEyuh+V1fJRFFT 16sNSYuENZ/wpvBIt542lITEe/LiYK2PYatsNpbg1lGRtnarALmemsJ7bK/UifHt 0Cn4nvEXCr0aSzgcrjVt9lV78J5Qe6viJ53UdiXRnXBofxlYN/fv9ps0jeAzGT5h wTRlAI2WMFDtfwYbA/VC7gEN7zFWpY46oZ2oW0N/vJTfuz/umndsOCJY1T1Y16B6 UCMCAwEAAaOCAowwggKIMB0GA1UdDgQWBBQtnZL4P14M71/q3b40qPuQjaGNFDAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzA0MjIvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwNDIyL0xa MlMtRDllRE85ZjZ0Mi1OS2o3a0kyaGpSUS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAQwgMA0GCSqGSIb3 DQEBCwUAA4IBAQCELPnlfqB9ou2j7QS679K+0MUa9yD8T4FgSdQxFKLrZW9ogRDr FJRIkLe/cenu45bWlNSoBSHKHvtq1gKLFvCy//e7YJLE5L/xxOLb/rHW2ilM/Npn Yq4hi6lu2o/txRRLvs2KoZlcdbNgsiMAaQI6UWMP8LdQ8w9wnsfLalb5EY+7hCCb Cmf9O+HJflChTyW0NNjJmTByUN/q3/wWgqEYSkBPFwyrBRUswudVlAX/+TeAvN0j 30WPZkxfRUhC2Y/JOPLB+RrMuqpW77WmGKyXh0OBvP52bDAtc6kR+TXbpsQbpJK2 K0y8LgN8tAE4La3RWxYRBzO+5MzUAXA1ciGs -----END CERTIFICATE-----Generated at Fri May 17 13:12:25 2024 by rpki-client on console-ams.rpki-client.org