$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer File: XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer (raw, json) Hash identifier: +MVqJLtZy9ma3oDHKujeBeq+avGWy5VpqwxyKyyYCtM= Subject key identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 3F6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 Nov 2024 01:38:25 +0000 Certificate not after: Sat 15 Nov 2025 01:30:03 +0000 Subordinate resources: IP: 103.167.44.0/23 IP: 133.32.104.0 -- 133.32.109.255 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16237 (0x3f6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Nov 15 01:38:25 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=5C57DDC59248271E71E1325877992B9738E043D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5d:e2:bd:49:06:d7:ec:3b:5b:3a:55:e8:2f: e8:6a:81:a1:80:d1:34:43:e1:e2:43:c4:e7:15:f1: a6:9e:ec:5d:29:cc:fe:d4:6f:2d:95:e3:21:e0:c5: d0:09:83:06:4a:4e:59:d5:07:70:1b:d1:d7:ff:f4: 5f:25:6d:ad:f2:f2:a8:e1:80:19:c6:7c:8f:df:92: 66:d2:43:b9:44:bf:e5:ac:4f:49:81:94:93:8b:cb: 9a:1b:54:ca:a7:5b:c1:fc:78:36:9f:e5:0f:14:74: d9:0c:c1:b7:13:ea:25:d0:36:c2:2d:aa:6a:b0:b4: eb:d2:96:90:59:96:22:b4:36:1c:c3:a3:2c:85:f9: db:19:3f:54:74:c0:7a:12:69:72:ab:eb:72:5d:2b: c3:a3:cf:4e:38:45:ea:16:d2:fe:13:2c:e8:27:14: 53:e7:6a:43:5f:c9:df:7d:4a:4e:d0:57:49:bd:e2: 25:c5:ca:73:11:65:81:63:ff:05:22:a7:09:f4:f8: 73:eb:58:b7:5d:8d:b9:d4:47:9f:5a:b7:6b:79:5e: 60:34:64:97:f4:ac:67:d4:2f:80:f1:c5:ec:69:c1: 31:26:6a:54:c8:ed:4f:af:d9:43:71:49:19:98:b0: 31:eb:28:e5:ab:33:15:0a:49:bb:d1:9c:63:be:fb: 90:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.44.0/23 133.32.104.0-133.32.109.255 Signature Algorithm: sha256WithRSAEncryption 79:3b:ed:5d:0c:b9:e6:98:54:84:3d:c5:2c:3c:aa:77:3a:15: 89:d2:00:85:67:4a:21:b0:52:0d:1a:68:d1:bf:71:fe:4b:5e: 3f:10:cf:d4:90:83:e0:85:97:44:2f:d3:a6:af:da:5c:37:11: 8b:d8:71:81:09:84:03:cc:f5:68:6c:68:a1:5e:14:3e:93:cf: 58:2b:2f:68:a0:14:32:70:c0:f9:e9:34:29:f6:6a:f8:73:34: cd:aa:a8:0f:87:00:f7:32:09:1e:e9:d9:66:61:4d:86:f7:4f: 35:2e:b5:f2:ec:56:4c:0f:5f:45:d8:6c:d9:cb:4e:45:9f:cb: df:0a:0c:2d:52:d7:7d:35:c4:19:8a:06:56:c2:39:bf:8d:f3: 2d:15:26:54:0b:7b:7f:d1:7c:a6:cc:06:76:38:81:1e:78:c4: 23:b3:62:a0:6e:0a:05:6b:33:52:51:bb:75:f4:36:ff:5f:1e: 24:b7:64:ca:e0:d3:e1:77:9a:1b:a0:80:e0:ed:6e:c8:11:fa: f8:6c:a7:b5:da:06:3e:02:9b:14:10:fc:b0:40:e7:5c:65:22: fd:e7:f7:5c:bc:f5:8b:4f:6e:9f:6c:17:f0:39:fd:30:79:58: bb:38:a3:96:5a:cd:cd:9c:f8:98:28:50:71:f4:9c:f6:de:c2: e1:95:ed:c9 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICP20wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MTExNTAxMzgyNVoXDTI1MTExNTAxMzAwM1owMzEx MC8GA1UEAxMoNUM1N0REQzU5MjQ4MjcxRTcxRTEzMjU4Nzc5OTJCOTczOEUwNDNE NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOld4r1JBtfsO1s6Vegv 6GqBoYDRNEPh4kPE5xXxpp7sXSnM/tRvLZXjIeDF0AmDBkpOWdUHcBvR1//0XyVt rfLyqOGAGcZ8j9+SZtJDuUS/5axPSYGUk4vLmhtUyqdbwfx4Np/lDxR02QzBtxPq JdA2wi2qarC069KWkFmWIrQ2HMOjLIX52xk/VHTAehJpcqvrcl0rw6PPTjhF6hbS /hMs6CcUU+dqQ1/J331KTtBXSb3iJcXKcxFlgWP/BSKnCfT4c+tYt12NudRHn1q3 a3leYDRkl/SsZ9QvgPHF7GnBMSZqVMjtT6/ZQ3FJGZiwMeso5aszFQpJu9GcY777 kP0CAwEAAaOCApkwggKVMB0GA1UdDgQWBBRcV93FkkgnHnHhMlh3mSuXOOBD1DAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAxNTMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMTUzL1hG ZmR4WkpJSng1eDRUSllkNWtybHpqZ1E5US5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgABMBQDBAFnpywwDAMEA4UgaAME AYUgbDANBgkqhkiG9w0BAQsFAAOCAQEAeTvtXQy55phUhD3FLDyqdzoVidIAhWdK IbBSDRpo0b9x/ktePxDP1JCD4IWXRC/Tpq/aXDcRi9hxgQmEA8z1aGxooV4UPpPP WCsvaKAUMnDA+ek0KfZq+HM0zaqoD4cA9zIJHunZZmFNhvdPNS618uxWTA9fRdhs 2ctORZ/L3woMLVLXfTXEGYoGVsI5v43zLRUmVAt7f9F8pswGdjiBHnjEI7NioG4K BWszUlG7dfQ2/18eJLdkyuDT4XeaG6CA4O1uyBH6+GyntdoGPgKbFBD8sEDnXGUi /ef3XLz1i09un2wX8Dn9MHlYuzijllrNzZz4mChQcfSc9t7C4ZXtyQ== -----END CERTIFICATE-----Generated at Fri Nov 22 09:41:08 2024 by rpki-client on console-ams.rpki-client.org