$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/A2FO6cJj1BxMb07JdrGHIXyzkRI.cer File: A2FO6cJj1BxMb07JdrGHIXyzkRI.cer (raw, json) Hash identifier: oxHIzHHJ2cYzaTR4hOxc43rwrQBrx1UXj5QiW5qbTcE= Subject key identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0D59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 Nov 2024 01:35:56 +0000 Certificate not after: Sat 15 Nov 2025 01:30:03 +0000 Subordinate resources: IP: 134.180.0.0/16 IP: 157.192.0.0/16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: Nov 15 01:35:56 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=03614EE9C263D41C4C6F4EC976B187217CB39112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ae:a0:89:37:da:58:65:e6:24:28:52:73:c9: c0:12:41:d2:84:81:89:46:f0:fc:90:4a:f9:d8:fe: 00:90:88:f7:77:03:70:f6:89:ad:f7:99:f0:14:43: 44:9d:6f:37:c3:9e:17:ce:f5:64:0a:76:28:3e:a0: b0:7e:69:6b:72:de:d7:86:fb:c4:6d:60:23:25:53: 6c:68:78:38:3e:eb:bd:2c:71:17:be:7b:d3:7b:13: ef:92:f2:d3:47:d1:05:33:80:1a:60:94:5e:06:34: 78:89:63:cd:39:4f:8d:bd:b6:d3:58:0c:f0:a0:00: 8b:82:fa:e0:6b:ed:44:c7:75:e7:89:35:0d:b8:0d: 14:38:df:3a:36:48:8e:05:39:b7:c9:a2:8d:e8:cd: f0:9e:e3:bf:77:cc:93:6e:c9:80:1a:4e:5d:48:00: a2:af:52:38:6a:d4:42:b3:f8:d6:33:98:a2:15:b9: 58:c4:89:6e:91:66:87:fd:32:15:b6:40:b9:e4:af: 2c:88:6f:2d:89:d3:04:51:ec:dc:30:46:da:f4:4c: 09:b2:3d:00:3e:2d:79:4f:a9:39:9b:93:e1:1d:d6: 3b:60:88:c9:db:85:4e:9b:70:e1:23:c0:7e:c5:b3: a7:f8:61:13:91:7f:28:9f:7f:09:ec:81:fb:3a:92: ee:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.180.0.0/16 157.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:b9:ef:c0:a5:05:c2:d5:4c:dd:7e:14:97:17:41:84:f5:7e: 87:07:fd:96:3b:76:12:49:3c:31:8f:4e:17:64:b9:42:9b:cc: 1f:42:93:98:7f:b7:1e:9c:ba:29:f2:67:9c:a2:74:23:8e:ac: 7b:69:72:97:71:29:3c:82:18:e7:ba:22:4f:2e:0c:f8:0a:f2: a3:e0:84:64:a0:2e:0f:ef:b4:1f:0d:a6:75:ff:25:9f:1a:fe: f3:65:67:14:57:8e:ac:fb:7d:c1:c4:11:3c:92:ae:16:ba:78: 8d:5f:5e:23:f4:3e:5b:f3:39:71:65:3e:95:cd:aa:55:d6:ef: 7d:c4:7f:4e:9a:d0:cc:d4:11:3d:5c:4a:38:0b:21:74:b1:4a: 1b:1a:25:0e:a9:a5:e8:72:ab:1f:a0:f4:43:f3:38:e1:d8:48: 95:0e:50:42:ec:02:6d:ff:ab:70:fe:b3:0e:0c:4a:59:31:ba: 60:c5:e3:a2:d6:89:4a:51:6a:3b:20:c7:06:02:d9:d9:cc:0f: e2:81:41:df:6d:43:6b:3a:31:23:e3:3e:50:9b:cd:50:35:bc: 4d:1d:8f:80:9e:1a:24:51:ce:a1:d5:55:44:30:df:a4:7d:fa: 95:de:de:5a:7b:a9:c3:57:45:ba:63:6f:eb:a8:68:39:3d:c8: 7c:9b:f4:72 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI0MTExNTAxMzU1NloXDTI1MTExNTAxMzAwM1owMzEx MC8GA1UEAxMoMDM2MTRFRTlDMjYzRDQxQzRDNkY0RUM5NzZCMTg3MjE3Q0IzOTEx MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMSuoIk32lhl5iQoUnPJ wBJB0oSBiUbw/JBK+dj+AJCI93cDcPaJrfeZ8BRDRJ1vN8OeF871ZAp2KD6gsH5p a3Le14b7xG1gIyVTbGh4OD7rvSxxF75703sT75Ly00fRBTOAGmCUXgY0eIljzTlP jb2201gM8KAAi4L64GvtRMd154k1DbgNFDjfOjZIjgU5t8mijejN8J7jv3fMk27J gBpOXUgAoq9SOGrUQrP41jOYohW5WMSJbpFmh/0yFbZAueSvLIhvLYnTBFHs3DBG 2vRMCbI9AD4teU+pOZuT4R3WO2CIyduFTptw4SPAfsWzp/hhE5F/KJ9/CeyB+zqS 7p8CAwEAAaOCAo8wggKLMB0GA1UdDgQWBBQDYU7pwmPUHExvTsl2sYchfLOREjAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAwODgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMDg4L0Ey Rk82Y0pqMUJ4TWIwN0pkckdISVh5emtSSS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIwYIKwYBBQUHAQcBAf8EFDASMBAEAgABMAoDAwCGtAMDAJ3AMA0GCSqG SIb3DQEBCwUAA4IBAQAcue/ApQXC1UzdfhSXF0GE9X6HB/2WO3YSSTwxj04XZLlC m8wfQpOYf7cenLop8meconQjjqx7aXKXcSk8ghjnuiJPLgz4CvKj4IRkoC4P77Qf DaZ1/yWfGv7zZWcUV46s+33BxBE8kq4WuniNX14j9D5b8zlxZT6VzapV1u99xH9O mtDM1BE9XEo4CyF0sUobGiUOqaXocqsfoPRD8zjh2EiVDlBC7AJt/6tw/rMODEpZ MbpgxeOi1olKUWo7IMcGAtnZzA/igUHfbUNrOjEj4z5Qm81QNbxNHY+AnhokUc6h 1VVEMN+kffqV3t5ae6nDV0W6Y2/rqGg5Pch8m/Ry -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:36 2024 by rpki-client on console-fra.rpki-client.org