$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer File: NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer (raw, json) Hash identifier: w742tADQ/YuTWrleA9tCQ0P4wgbLiYhOrnu3jpzmeX0= Subject key identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 3EE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 Nov 2024 01:35:47 +0000 Certificate not after: Sat 15 Nov 2025 01:30:03 +0000 Subordinate resources: IP: 202.250.16.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16104 (0x3ee8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Nov 15 01:35:47 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=35892143C493B9B2CC1E79133F5231C72E152685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:9c:c6:fe:72:f8:84:85:e6:20:b8:98:06: 97:c3:e3:cf:94:8e:9b:39:42:0d:5c:75:be:7c:42: 2e:2d:77:42:23:30:3a:7a:61:3e:53:03:31:eb:d0: d8:dc:23:d9:ad:fd:b3:46:b6:65:98:34:a1:16:15: 17:d9:3f:70:9f:53:65:79:11:11:a2:8d:9a:a3:98: 75:d6:16:b1:34:10:ed:52:ea:da:10:2b:59:48:fb: 85:be:4c:34:c0:0b:54:2f:dd:d9:87:30:c5:65:45: f0:77:e3:b8:30:13:54:4f:5d:be:f3:3b:12:3b:6a: 48:dd:8a:28:3d:e4:21:b1:b0:85:ee:e4:8a:16:bc: 0a:53:09:bd:18:d0:36:40:bf:d8:6a:7d:e4:fa:d4: 0e:87:69:71:aa:7d:c3:65:e8:ee:ab:dd:6a:13:f6: 8e:9d:0a:02:e7:d7:77:71:6e:a3:6c:90:9d:be:66: c9:26:d0:16:ac:05:18:7d:89:11:d0:d7:17:3f:94: da:98:fb:54:c1:af:e9:48:23:43:ce:71:20:f3:54: fa:84:26:c4:e9:cf:12:2e:cf:95:e3:38:25:8a:d2: 92:c0:1b:ec:c1:3d:ac:87:69:1b:3b:36:70:22:b6: 86:d5:1a:bf:08:f5:9a:6f:cd:8e:75:25:64:d2:cf: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.250.16.0/20 Signature Algorithm: sha256WithRSAEncryption 42:e9:00:ca:2d:90:ef:ab:98:f5:38:0a:3c:1a:9d:bf:65:d8: 91:22:bb:95:c9:7e:d8:af:5f:7e:80:72:c4:e5:a0:1d:c7:de: 25:34:ea:89:7f:cd:b8:fb:90:cd:24:03:26:0d:01:c0:be:3e: d3:a1:92:14:36:e8:bc:19:32:53:e3:a8:52:0c:35:3d:cf:f1: 81:6b:30:b5:03:c9:a1:cd:6c:5d:82:77:d8:d4:4b:6c:42:45: 2f:37:4d:96:ad:68:20:99:e6:46:26:18:73:48:d9:1c:22:da: d8:75:db:0a:fe:6d:56:a3:79:f1:cf:fd:f9:bc:a9:99:fa:68: 80:43:73:ec:67:f1:ce:8e:18:58:8e:f0:06:9a:ca:2a:62:99: c8:06:66:dd:35:99:05:3a:2f:98:2e:42:c6:6d:af:e5:d3:86: 27:42:6e:53:f8:69:3a:18:e6:41:38:1c:c9:e4:fa:87:68:a4: ed:90:bf:55:ff:71:bd:f6:fc:97:76:c8:bb:b7:6a:9f:7c:20: cf:34:06:c7:14:6b:f1:4b:a5:f2:80:d6:82:1b:4a:64:a8:38: 22:7f:ad:4a:63:16:62:e5:14:bb:32:e4:64:f9:a5:6c:62:96: a3:8b:73:23:2d:00:02:b9:24:55:e8:41:da:51:d0:1a:5a:07: 70:9d:70:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICPugwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MTExNTAxMzU0N1oXDTI1MTExNTAxMzAwM1owMzEx MC8GA1UEAxMoMzU4OTIxNDNDNDkzQjlCMkNDMUU3OTEzM0Y1MjMxQzcyRTE1MjY4 NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALV1nMb+cviEheYguJgG l8Pjz5SOmzlCDVx1vnxCLi13QiMwOnphPlMDMevQ2Nwj2a39s0a2ZZg0oRYVF9k/ cJ9TZXkREaKNmqOYddYWsTQQ7VLq2hArWUj7hb5MNMALVC/d2YcwxWVF8HfjuDAT VE9dvvM7EjtqSN2KKD3kIbGwhe7kiha8ClMJvRjQNkC/2Gp95PrUDodpcap9w2Xo 7qvdahP2jp0KAufXd3Fuo2yQnb5mySbQFqwFGH2JEdDXFz+U2pj7VMGv6UgjQ85x IPNU+oQmxOnPEi7PleM4JYrSksAb7ME9rIdpGzs2cCK2htUavwj1mm/NjnUlZNLP CPsCAwEAAaOCAokwggKFMB0GA1UdDgQWBBQ1iSFDxJO5ssweeRM/UjHHLhUmhTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAQYIKwYBBQUHAQsEgfQw gfEwQwYIKwYBBQUHMAWGN3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjE1NC8wYgYIKwYBBQUHMAqGVnJzeW5jOi8vcnBr aS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjE1NC9OWWto UThTVHViTE1IbmtUUDFJeHh5NFZKb1UubWZ0MEYGCCsGAQUFBzANhjpodHRwczov L3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24u eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyvoQMA0GCSqGSIb3DQEB CwUAA4IBAQBC6QDKLZDvq5j1OAo8Gp2/ZdiRIruVyX7Yr19+gHLE5aAdx94lNOqJ f824+5DNJAMmDQHAvj7ToZIUNui8GTJT46hSDDU9z/GBazC1A8mhzWxdgnfY1Ets QkUvN02WrWggmeZGJhhzSNkcItrYddsK/m1Wo3nxz/35vKmZ+miAQ3PsZ/HOjhhY jvAGmsoqYpnIBmbdNZkFOi+YLkLGba/l04YnQm5T+Gk6GOZBOBzJ5PqHaKTtkL9V /3G99vyXdsi7t2qffCDPNAbHFGvxS6XygNaCG0pkqDgif61KYxZi5RS7MuRk+aVs Ypaji3MjLQACuSRV6EHaUdAaWgdwnXB0 -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:36 2024 by rpki-client on console-fra.rpki-client.org