$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/h-45TMixZRt1jziPc6iOaL0nIi8.cer File: h-45TMixZRt1jziPc6iOaL0nIi8.cer (raw, json) Hash identifier: 6kiCEj/u5w3zBCkDT2aPGyDWlhXfQyVkh05xZGfUhaE= Subject key identifier: 87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 2F6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:32:34 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 113.212.104.0/22 IP: 122.200.128.0/22 IP: 203.79.48.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12139 (0x2f6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:32:34 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=87EE394CC8B1651B758F388F73A88E68BD27222F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cf:96:5c:6a:64:0a:a5:0e:b1:be:46:93:a4: 56:08:06:e7:af:ff:c6:b0:c0:5b:82:c6:63:e2:b5: 71:e2:52:08:1c:f0:b5:cf:01:34:10:d4:c0:18:31: ed:25:ec:35:8a:a1:3d:c3:c9:47:38:7e:1a:7b:bf: 30:dc:df:b3:bd:f6:ac:e3:d1:eb:c6:72:9d:e8:29: 71:e0:b6:f5:72:4a:be:e8:eb:b3:b1:f4:6d:76:55: 5d:51:e5:39:44:a1:0c:61:42:67:9a:c8:b9:75:bf: c6:ad:fa:ec:16:bc:f9:70:fd:20:55:5b:7c:2b:18: a7:4c:8d:cd:2f:ed:7f:25:c1:19:72:b0:bd:bd:ea: dd:11:c9:fe:a3:45:ff:f5:4a:94:3b:c9:ed:32:9e: d4:af:c8:85:ae:ec:b9:df:bb:21:94:2c:9f:6f:fb: cd:37:22:fb:57:e0:22:7d:aa:35:4e:0a:26:41:0a: ea:4b:28:22:a0:22:51:82:40:c3:31:6a:55:9a:4b: f2:5a:25:9c:eb:02:85:19:23:28:7e:54:f6:c9:0f: 1a:60:33:8f:9e:42:8b:3c:9e:0d:91:7b:a2:39:b0: 43:37:e5:27:47:9c:2d:68:89:de:f1:8a:52:37:c5: df:b5:ac:f1:9e:68:7a:98:d2:60:03:36:c7:ac:64: a3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.212.104.0/22 122.200.128.0/22 203.79.48.0/20 Signature Algorithm: sha256WithRSAEncryption 3d:d2:78:d0:c3:3e:47:a6:4f:a7:8b:cc:b3:c5:b4:46:05:bd: 99:dc:e8:2d:92:ff:a8:61:60:d5:ef:35:d8:cd:d0:3f:c1:16: 57:82:bf:e4:0e:f4:8c:53:14:43:11:c9:24:cc:b9:b7:9d:aa: a3:dc:10:fb:f7:b5:7b:1f:21:14:f0:cd:e4:0b:3a:cd:6c:c1: 60:72:83:a8:a5:1b:5c:05:ff:a9:fb:49:ab:1a:76:8e:d6:8f: 4e:fe:ea:80:fe:aa:cf:4c:8c:ee:fc:ee:50:33:f8:e5:a2:23: 81:7e:51:2d:9c:ff:f7:eb:74:cc:24:a6:22:ff:74:1e:d4:bc: 19:41:bc:6f:70:62:5d:84:ea:14:7a:a8:57:a3:fe:1f:ba:5c: 0d:18:38:2b:53:65:67:98:2e:3f:5a:4f:f3:ea:7d:d5:1a:21: dd:0c:51:54:ff:10:a2:7e:b3:bb:96:cd:d6:f4:ce:7c:c3:03: f2:39:4f:8f:b3:c7:8f:2e:a6:68:12:25:0d:af:8b:b2:f4:29: a2:fa:c9:63:0a:fb:02:f1:ca:b3:ca:95:2d:d3:70:da:2c:2f: 93:03:aa:5c:26:43:40:2a:3b:9f:75:63:e5:be:89:d8:cb:2e: 7f:ee:71:2f:c1:64:2b:c6:65:42:25:f6:40:ba:eb:79:84:54: 0c:08:13:d7 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICL2swDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDUxNTAxMzIzNFoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoODdFRTM5NENDOEIxNjUxQjc1OEYzODhGNzNBODhFNjhCRDI3MjIy RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKrPllxqZAqlDrG+RpOk VggG56//xrDAW4LGY+K1ceJSCBzwtc8BNBDUwBgx7SXsNYqhPcPJRzh+Gnu/MNzf s732rOPR68ZynegpceC29XJKvujrs7H0bXZVXVHlOUShDGFCZ5rIuXW/xq367Ba8 +XD9IFVbfCsYp0yNzS/tfyXBGXKwvb3q3RHJ/qNF//VKlDvJ7TKe1K/Iha7sud+7 IZQsn2/7zTci+1fgIn2qNU4KJkEK6ksoIqAiUYJAwzFqVZpL8lolnOsChRkjKH5U 9skPGmAzj55CizyeDZF7ojmwQzflJ0ecLWiJ3vGKUjfF37Ws8Z5oepjSYAM2x6xk o6cCAwEAAaOCApIwggKOMB0GA1UdDgQWBBSH7jlMyLFlG3WPOI9zqI5ovSciLzAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC84ODMvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzg4My9oLTQ1VE1p eFpSdDFqemlQYzZpT2FMMG5JaTgubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCcdRoAwQCesiAAwQEy08wMA0G CSqGSIb3DQEBCwUAA4IBAQA90njQwz5Hpk+ni8yzxbRGBb2Z3Ogtkv+oYWDV7zXY zdA/wRZXgr/kDvSMUxRDEckkzLm3naqj3BD797V7HyEU8M3kCzrNbMFgcoOopRtc Bf+p+0mrGnaO1o9O/uqA/qrPTIzu/O5QM/jloiOBflEtnP/363TMJKYi/3Qe1LwZ QbxvcGJdhOoUeqhXo/4fulwNGDgrU2VnmC4/Wk/z6n3VGiHdDFFU/xCifrO7ls3W 9M58wwPyOU+Ps8ePLqZoEiUNr4uy9Cmi+sljCvsC8cqzypUt03DaLC+TA6pcJkNA KjufdWPlvonYyy5/7nEvwWQrxmVCJfZAuut5hFQMCBPX -----END CERTIFICATE-----Generated at Fri May 17 01:01:20 2024 by rpki-client on console-ams.rpki-client.org