$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer File: NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer (raw, json) Hash identifier: DxIxgdANFhhUnSF+Me1Vw8P2CQ2PUyUen0lXxfyBMMs= Subject key identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 2DA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Mon 15 Apr 2024 01:31:00 +0000 Certificate not after: Tue 15 Apr 2025 01:30:02 +0000 Subordinate resources: IP: 202.250.16.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11682 (0x2da2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Apr 15 01:31:00 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=35892143C493B9B2CC1E79133F5231C72E152685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:9c:c6:fe:72:f8:84:85:e6:20:b8:98:06: 97:c3:e3:cf:94:8e:9b:39:42:0d:5c:75:be:7c:42: 2e:2d:77:42:23:30:3a:7a:61:3e:53:03:31:eb:d0: d8:dc:23:d9:ad:fd:b3:46:b6:65:98:34:a1:16:15: 17:d9:3f:70:9f:53:65:79:11:11:a2:8d:9a:a3:98: 75:d6:16:b1:34:10:ed:52:ea:da:10:2b:59:48:fb: 85:be:4c:34:c0:0b:54:2f:dd:d9:87:30:c5:65:45: f0:77:e3:b8:30:13:54:4f:5d:be:f3:3b:12:3b:6a: 48:dd:8a:28:3d:e4:21:b1:b0:85:ee:e4:8a:16:bc: 0a:53:09:bd:18:d0:36:40:bf:d8:6a:7d:e4:fa:d4: 0e:87:69:71:aa:7d:c3:65:e8:ee:ab:dd:6a:13:f6: 8e:9d:0a:02:e7:d7:77:71:6e:a3:6c:90:9d:be:66: c9:26:d0:16:ac:05:18:7d:89:11:d0:d7:17:3f:94: da:98:fb:54:c1:af:e9:48:23:43:ce:71:20:f3:54: fa:84:26:c4:e9:cf:12:2e:cf:95:e3:38:25:8a:d2: 92:c0:1b:ec:c1:3d:ac:87:69:1b:3b:36:70:22:b6: 86:d5:1a:bf:08:f5:9a:6f:cd:8e:75:25:64:d2:cf: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.250.16.0/20 Signature Algorithm: sha256WithRSAEncryption 90:2d:23:d3:f4:02:00:6c:73:7f:1d:01:aa:4f:70:0d:43:06: 8a:c2:02:14:f1:61:cf:16:26:48:15:7e:1c:c3:69:b8:d4:47: f0:03:4a:45:2e:31:ac:46:3d:32:7a:8c:dc:d6:7a:d2:e7:9b: 95:bc:14:e1:78:98:9f:37:f3:f7:be:3f:db:ce:df:59:a0:ea: b2:72:69:82:fb:c7:08:93:15:05:56:9e:d6:40:07:28:4e:b8: c8:4a:a0:2c:83:02:18:3b:61:2e:c6:d3:86:cf:5b:50:d1:30: 2d:ec:bc:31:bf:95:35:70:21:44:b5:da:1f:c6:1c:89:11:c3: e6:5f:d9:02:c5:f0:3d:71:11:14:02:cf:b5:d1:79:5c:64:f3: 4a:63:05:41:06:da:1b:8d:fd:ed:13:f2:7d:3e:73:22:0e:27: d6:de:e0:ce:65:18:6e:3d:3f:90:a4:ee:d6:e2:6d:78:e7:13: 79:a3:77:b4:ea:82:ba:2a:34:17:55:74:ca:1b:2a:9e:70:a5: 3b:95:1c:40:44:11:f2:0a:b6:9a:b9:19:2f:6d:c2:3d:47:f6: 3c:e3:b9:0b:55:11:c7:90:c2:e8:f4:9b:f8:75:62:71:74:89: 4d:ba:55:ef:35:f2:ce:11:26:12:04:11:ab:e5:fa:c6:0a:19: d5:67:0b:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLaIwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDQxNTAxMzEwMFoXDTI1MDQxNTAxMzAwMlowMzEx MC8GA1UEAxMoMzU4OTIxNDNDNDkzQjlCMkNDMUU3OTEzM0Y1MjMxQzcyRTE1MjY4 NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALV1nMb+cviEheYguJgG l8Pjz5SOmzlCDVx1vnxCLi13QiMwOnphPlMDMevQ2Nwj2a39s0a2ZZg0oRYVF9k/ cJ9TZXkREaKNmqOYddYWsTQQ7VLq2hArWUj7hb5MNMALVC/d2YcwxWVF8HfjuDAT VE9dvvM7EjtqSN2KKD3kIbGwhe7kiha8ClMJvRjQNkC/2Gp95PrUDodpcap9w2Xo 7qvdahP2jp0KAufXd3Fuo2yQnb5mySbQFqwFGH2JEdDXFz+U2pj7VMGv6UgjQ85x IPNU+oQmxOnPEi7PleM4JYrSksAb7ME9rIdpGzs2cCK2htUavwj1mm/NjnUlZNLP CPsCAwEAAaOCAokwggKFMB0GA1UdDgQWBBQ1iSFDxJO5ssweeRM/UjHHLhUmhTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAQYIKwYBBQUHAQsEgfQw gfEwQwYIKwYBBQUHMAWGN3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjE1NC8wYgYIKwYBBQUHMAqGVnJzeW5jOi8vcnBr aS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjE1NC9OWWto UThTVHViTE1IbmtUUDFJeHh5NFZKb1UubWZ0MEYGCCsGAQUFBzANhjpodHRwczov L3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24u eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyvoQMA0GCSqGSIb3DQEB CwUAA4IBAQCQLSPT9AIAbHN/HQGqT3ANQwaKwgIU8WHPFiZIFX4cw2m41EfwA0pF LjGsRj0yeozc1nrS55uVvBTheJifN/P3vj/bzt9ZoOqycmmC+8cIkxUFVp7WQAco TrjISqAsgwIYO2EuxtOGz1tQ0TAt7Lwxv5U1cCFEtdofxhyJEcPmX9kCxfA9cREU As+10XlcZPNKYwVBBtobjf3tE/J9PnMiDifW3uDOZRhuPT+QpO7W4m145xN5o3e0 6oK6KjQXVXTKGyqecKU7lRxARBHyCraauRkvbcI9R/Y847kLVRHHkMLo9Jv4dWJx dIlNulXvNfLOESYSBBGr5frGChnVZwvw -----END CERTIFICATE-----Generated at Wed May 8 10:07:29 2024 by rpki-client on console-ams.rpki-client.org