$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/23CxK0Fq4kNGQeWs0lb7IktMW5s.cer File: 23CxK0Fq4kNGQeWs0lb7IktMW5s.cer (raw, json) Hash identifier: Qn/a7tTjojEwSs5SUSxK7QVClqeo/oYM4aTkaxny6uQ= Subject key identifier: DB:70:B1:2B:41:6A:E2:43:46:41:E5:AC:D2:56:FB:22:4B:4C:5B:9B Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0D6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/23CxK0Fq4kNGQeWs0lb7IktMW5s.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 Nov 2024 01:38:03 +0000 Certificate not after: Sat 15 Nov 2025 01:30:03 +0000 Subordinate resources: IP: 157.66.180.0/23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: Nov 15 01:38:03 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=DB70B12B416AE2434641E5ACD256FB224B4C5B9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5a:62:5d:db:d2:af:83:4a:cb:cc:6a:88:17: 4b:95:73:25:22:90:9a:cf:08:a6:69:ed:cb:62:1f: ae:8e:88:da:21:8d:32:c9:7c:fd:29:64:fc:a0:86: d3:25:16:6c:b7:4d:d9:9e:d0:e7:61:ce:5c:67:a3: df:c6:6e:a6:b0:86:59:58:53:44:9c:cf:f6:f4:29: c1:d2:2f:40:b7:4d:0c:d0:29:0b:f9:66:cc:53:fa: 79:3a:34:af:a0:ad:a5:30:f2:a0:d8:f2:b2:2d:9f: fd:76:7e:1a:ad:80:0d:87:17:d3:61:80:e3:7f:bc: 77:6d:ef:01:6a:e7:98:c3:b0:10:81:e0:a8:dc:b2: f4:da:d5:89:dd:1a:f1:7e:b9:fd:7b:22:7a:cf:b3: 4f:a1:13:5d:ac:71:8f:45:89:79:3f:eb:10:fc:53: 85:d5:2b:2f:ee:15:f5:57:33:6e:d2:ca:20:fe:cf: 70:8b:88:71:13:6d:47:f9:59:af:0f:8d:8d:3a:c9: 79:c6:29:34:4b:4f:c6:32:45:9b:52:4e:67:36:6a: b2:39:72:bc:f6:85:fb:52:73:ba:63:aa:bf:e1:4e: e0:18:d8:a4:5c:80:70:86:04:85:1d:ca:63:43:e1: d6:d5:e2:e6:21:99:28:4a:11:83:15:90:79:45:7b: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:70:B1:2B:41:6A:E2:43:46:41:E5:AC:D2:56:FB:22:4B:4C:5B:9B X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/23CxK0Fq4kNGQeWs0lb7IktMW5s.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.180.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:d4:cb:ba:d0:05:a3:a9:58:1d:c6:92:8c:9d:70:a1:9d:26: bd:7c:76:a2:2c:e4:86:b2:1b:ff:a4:ea:4c:21:2e:f2:70:c6: 83:1d:75:89:24:a8:66:4f:47:21:5e:ec:0c:4f:16:65:73:5b: d6:8b:7d:59:f7:32:ec:ae:a6:d6:80:80:3a:f1:df:2e:82:30: d6:24:16:16:f8:85:d6:de:fa:8b:5f:0f:87:28:67:f5:39:31: 7c:6b:c3:d1:5a:05:d5:6d:5e:63:ca:5b:b8:f9:4e:b7:4e:be: 40:e1:e5:36:d9:1e:bc:e7:a6:94:1d:42:3c:c2:75:42:30:6f: 1d:56:33:c7:b9:f9:b1:7a:4a:3a:0c:b4:0a:eb:07:c9:22:03: fb:b0:ae:6c:7e:dd:dd:eb:a2:9e:a4:dc:55:ae:19:98:50:67: ee:41:02:57:b5:dc:e9:d2:b4:08:7a:26:66:c0:54:af:39:44: 5b:4b:35:9f:a8:b3:60:90:c2:0c:b3:72:3c:32:fa:99:30:7a: 83:4f:86:3f:1d:2a:3b:10:35:38:3c:e6:e4:fe:1c:d5:9c:cf: 53:5f:0f:92:1b:5b:10:3d:1d:5f:9e:5b:24:2a:e8:59:0d:c8: 79:47:13:78:56:9f:13:55:dd:ce:17:e2:eb:97:62:38:b9:ef: f2:66:28:e2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDWowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI0MTExNTAxMzgwM1oXDTI1MTExNTAxMzAwM1owMzEx MC8GA1UEAxMoREI3MEIxMkI0MTZBRTI0MzQ2NDFFNUFDRDI1NkZCMjI0QjRDNUI5 QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOZaYl3b0q+DSsvMaogX S5VzJSKQms8Ipmnty2Ifro6I2iGNMsl8/Slk/KCG0yUWbLdN2Z7Q52HOXGej38Zu prCGWVhTRJzP9vQpwdIvQLdNDNApC/lmzFP6eTo0r6CtpTDyoNjysi2f/XZ+Gq2A DYcX02GA43+8d23vAWrnmMOwEIHgqNyy9NrVid0a8X65/Xsies+zT6ETXaxxj0WJ eT/rEPxThdUrL+4V9VczbtLKIP7PcIuIcRNtR/lZrw+NjTrJecYpNEtPxjJFm1JO ZzZqsjlyvPaF+1JzumOqv+FO4BjYpFyAcIYEhR3KY0Ph1tXi5iGZKEoRgxWQeUV7 yX0CAwEAAaOCAoswggKHMB0GA1UdDgQWBBTbcLErQWriQ0ZB5azSVvsiS0xbmzAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAyNjAvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMjYwLzIz Q3hLMEZxNGtOR1FlV3MwbGI3SWt0TVc1cy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQrQwDQYJKoZIhvcN AQELBQADggEBAArUy7rQBaOpWB3GkoydcKGdJr18dqIs5IayG/+k6kwhLvJwxoMd dYkkqGZPRyFe7AxPFmVzW9aLfVn3MuyuptaAgDrx3y6CMNYkFhb4hdbe+otfD4co Z/U5MXxrw9FaBdVtXmPKW7j5TrdOvkDh5TbZHrznppQdQjzCdUIwbx1WM8e5+bF6 SjoMtArrB8kiA/uwrmx+3d3rop6k3FWuGZhQZ+5BAle13OnStAh6JmbAVK85RFtL NZ+os2CQwgyzcjwy+pkweoNPhj8dKjsQNTg85uT+HNWcz1NfD5IbWxA9HV+eWyQq 6FkNyHlHE3hWnxNV3c4X4uuXYji57/JmKOI= -----END CERTIFICATE-----Generated at Fri Nov 22 09:40:40 2024 by rpki-client on console-ams.rpki-client.org