$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/A2FO6cJj1BxMb07JdrGHIXyzkRI.cer File: A2FO6cJj1BxMb07JdrGHIXyzkRI.cer (raw, json) Hash identifier: Tk6YEbmXymNzBjzKqdI2UsXFY/UxcaapXDYljhAXrF4= Subject key identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0A77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:34:10 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 134.180.0.0/16 IP: 157.192.0.0/16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2679 (0xa77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: May 15 01:34:10 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=03614EE9C263D41C4C6F4EC976B187217CB39112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ae:a0:89:37:da:58:65:e6:24:28:52:73:c9: c0:12:41:d2:84:81:89:46:f0:fc:90:4a:f9:d8:fe: 00:90:88:f7:77:03:70:f6:89:ad:f7:99:f0:14:43: 44:9d:6f:37:c3:9e:17:ce:f5:64:0a:76:28:3e:a0: b0:7e:69:6b:72:de:d7:86:fb:c4:6d:60:23:25:53: 6c:68:78:38:3e:eb:bd:2c:71:17:be:7b:d3:7b:13: ef:92:f2:d3:47:d1:05:33:80:1a:60:94:5e:06:34: 78:89:63:cd:39:4f:8d:bd:b6:d3:58:0c:f0:a0:00: 8b:82:fa:e0:6b:ed:44:c7:75:e7:89:35:0d:b8:0d: 14:38:df:3a:36:48:8e:05:39:b7:c9:a2:8d:e8:cd: f0:9e:e3:bf:77:cc:93:6e:c9:80:1a:4e:5d:48:00: a2:af:52:38:6a:d4:42:b3:f8:d6:33:98:a2:15:b9: 58:c4:89:6e:91:66:87:fd:32:15:b6:40:b9:e4:af: 2c:88:6f:2d:89:d3:04:51:ec:dc:30:46:da:f4:4c: 09:b2:3d:00:3e:2d:79:4f:a9:39:9b:93:e1:1d:d6: 3b:60:88:c9:db:85:4e:9b:70:e1:23:c0:7e:c5:b3: a7:f8:61:13:91:7f:28:9f:7f:09:ec:81:fb:3a:92: ee:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.180.0.0/16 157.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:d0:4a:6b:06:e4:04:f3:d4:2e:0b:1c:2e:34:30:c9:38:70: 9d:48:b8:39:e0:67:8d:ca:29:23:03:6e:2a:32:31:bf:88:a0: 60:d9:f3:a9:a5:40:10:2b:ae:8d:90:66:19:44:88:c3:62:91: 25:50:08:f9:e1:2c:75:ff:6c:8f:03:49:58:97:34:d3:62:89: b8:8d:74:89:8c:0a:24:99:3b:0f:da:e8:ef:5c:5f:94:64:97: 8b:f0:da:34:2e:b1:ac:0b:2c:9e:87:2a:ac:1d:a3:59:74:d2: 8b:c2:e4:de:60:f9:d0:63:d8:8e:d1:42:96:c4:c9:50:c3:2e: c1:26:4c:8d:44:4e:20:61:bc:8a:d3:40:4c:02:b5:70:95:18: 75:db:c5:66:d7:dd:7b:f2:fb:ba:27:d2:5b:b5:0e:35:a3:a2: a1:d3:61:21:eb:18:cb:ba:86:88:e8:c7:0f:0e:76:8a:b4:a3: 4a:a6:59:b6:f9:57:67:89:e1:78:9b:77:89:bf:d5:2a:a6:02: 01:c5:b9:98:f9:61:db:0e:da:4b:d3:fa:5d:65:b8:30:0a:a1: ab:49:1e:e8:e7:27:0e:1a:f6:7a:94:e6:a4:30:47:0c:87:08: e2:00:dd:f5:f0:56:18:d1:a6:8b:7a:a3:cd:d5:70:0e:1a:33: ef:33:a9:11 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICCncwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI0MDUxNTAxMzQxMFoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoMDM2MTRFRTlDMjYzRDQxQzRDNkY0RUM5NzZCMTg3MjE3Q0IzOTEx MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMSuoIk32lhl5iQoUnPJ wBJB0oSBiUbw/JBK+dj+AJCI93cDcPaJrfeZ8BRDRJ1vN8OeF871ZAp2KD6gsH5p a3Le14b7xG1gIyVTbGh4OD7rvSxxF75703sT75Ly00fRBTOAGmCUXgY0eIljzTlP jb2201gM8KAAi4L64GvtRMd154k1DbgNFDjfOjZIjgU5t8mijejN8J7jv3fMk27J gBpOXUgAoq9SOGrUQrP41jOYohW5WMSJbpFmh/0yFbZAueSvLIhvLYnTBFHs3DBG 2vRMCbI9AD4teU+pOZuT4R3WO2CIyduFTptw4SPAfsWzp/hhE5F/KJ9/CeyB+zqS 7p8CAwEAAaOCAo8wggKLMB0GA1UdDgQWBBQDYU7pwmPUHExvTsl2sYchfLOREjAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAwODgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMDg4L0Ey Rk82Y0pqMUJ4TWIwN0pkckdISVh5emtSSS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIwYIKwYBBQUHAQcBAf8EFDASMBAEAgABMAoDAwCGtAMDAJ3AMA0GCSqG SIb3DQEBCwUAA4IBAQA30EprBuQE89QuCxwuNDDJOHCdSLg54GeNyikjA24qMjG/ iKBg2fOppUAQK66NkGYZRIjDYpElUAj54Sx1/2yPA0lYlzTTYom4jXSJjAokmTsP 2ujvXF+UZJeL8No0LrGsCyyehyqsHaNZdNKLwuTeYPnQY9iO0UKWxMlQwy7BJkyN RE4gYbyK00BMArVwlRh128Vm19178vu6J9JbtQ41o6Kh02Eh6xjLuoaI6McPDnaK tKNKplm2+VdnieF4m3eJv9UqpgIBxbmY+WHbDtpL0/pdZbgwCqGrSR7o5ycOGvZ6 lOakMEcMhwjiAN318FYY0aaLeqPN1XAOGjPvM6kR -----END CERTIFICATE-----Generated at Fri May 17 08:51:51 2024 by rpki-client on console-ams.rpki-client.org