$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/nIZpvxizEBJxD0jJqN4Ltx18L2Y.cer File: nIZpvxizEBJxD0jJqN4Ltx18L2Y.cer (raw, json) Hash identifier: 1oCt6DA6hv/oaPvi2w27mLA+RjKOcB4MqWAY8rt8vss= Subject key identifier: 9C:86:69:BF:18:B3:10:12:71:0F:48:C9:A8:DE:0B:B7:1D:7C:2F:66 Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0A8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/nIZpvxizEBJxD0jJqN4Ltx18L2Y.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:37:38 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 158.199.128.0/17 IP: 192.50.199.0/24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2702 (0xa8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: May 15 01:37:38 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=9C8669BF18B31012710F48C9A8DE0BB71D7C2F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4c:53:14:7f:64:e1:b1:cf:c3:52:11:38:43: 4e:b4:6e:cf:09:31:27:c2:6b:b6:a1:c4:0f:d4:ca: 5e:54:5a:b1:4f:71:9e:ee:bd:b3:cc:7b:70:b2:5b: 07:a6:d4:7b:c2:9e:3d:84:d4:0f:c5:01:37:98:47: 91:86:70:86:c5:1b:c7:88:bc:cd:78:0c:be:01:7a: 7e:16:dc:63:e5:16:e3:30:07:f2:78:6f:e7:a0:73: bf:5f:47:54:f4:75:65:cc:cd:aa:a1:c4:8b:d6:e3: 67:96:10:44:05:70:43:57:db:4b:41:66:9f:e4:a1: 42:d4:7b:8c:5d:83:a6:8a:c6:34:36:ae:4c:40:14: dd:0d:3d:af:f1:a5:5a:df:f9:3c:1d:65:6c:02:52: dc:ee:16:fd:0e:5c:ec:e3:f7:cb:2f:f3:96:42:0f: eb:53:75:78:b1:23:c7:b5:df:d5:e2:cf:80:0a:31: 52:96:9f:db:13:4d:f6:21:0d:d7:4b:3a:db:57:94: 7d:5d:dd:b5:a8:d1:19:4b:85:0f:9d:d6:78:72:ba: 88:c5:36:6e:f1:fd:ab:56:16:2c:37:35:df:23:34: c4:77:3f:4c:ad:f0:8b:df:98:3b:07:3c:f3:d5:31: 83:26:8f:b7:e0:7d:7c:f1:e2:72:16:f0:34:bf:8f: 97:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:86:69:BF:18:B3:10:12:71:0F:48:C9:A8:DE:0B:B7:1D:7C:2F:66 X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/nIZpvxizEBJxD0jJqN4Ltx18L2Y.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.199.128.0/17 192.50.199.0/24 Signature Algorithm: sha256WithRSAEncryption 34:44:a0:62:06:b9:56:da:66:bb:6e:b6:b9:0f:63:87:19:93: aa:3f:c4:ca:62:a7:d9:c6:21:73:d7:65:10:a2:04:48:60:3d: 02:49:c8:df:39:29:e3:9f:6e:14:1b:5f:b2:2b:25:58:b7:f4: 5d:8b:89:36:9e:a5:19:04:9f:1a:67:d1:47:2e:1f:e7:85:22: 28:fa:e2:ea:b6:7e:ae:ec:ca:5f:2a:94:02:1f:8e:c1:fb:86: bd:50:7a:dc:e6:e7:46:d7:ea:4b:e5:62:32:be:9a:05:4a:07: 41:db:a7:64:c1:ce:74:67:f4:d8:8e:0f:a0:50:e1:00:49:fc: 29:e0:cd:eb:36:d0:fd:84:3e:20:a1:f0:79:87:7c:7c:92:bf: 03:8b:78:0c:58:d5:b9:9f:27:b5:bd:2f:71:14:93:91:bb:be: 5a:68:30:d6:78:d1:8b:d5:af:a0:ea:4c:81:36:d4:fe:6b:eb: bf:ac:73:ab:65:51:09:78:cb:72:8a:b7:50:a4:5e:d9:67:88: 12:a1:2d:4d:7f:5b:09:37:90:25:13:4c:d9:9e:e9:66:f1:1a: 05:a1:02:89:8f:e2:32:05:88:a3:ee:45:e1:2d:50:c1:9b:b6: 28:38:e0:da:fb:95:df:75:2a:65:de:f5:24:dd:ec:4a:cb:5b: cf:9f:da:8c -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICCo4wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI0MDUxNTAxMzczOFoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoOUM4NjY5QkYxOEIzMTAxMjcxMEY0OEM5QThERTBCQjcxRDdDMkY2 NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO5MUxR/ZOGxz8NSEThD TrRuzwkxJ8JrtqHED9TKXlRasU9xnu69s8x7cLJbB6bUe8KePYTUD8UBN5hHkYZw hsUbx4i8zXgMvgF6fhbcY+UW4zAH8nhv56Bzv19HVPR1ZczNqqHEi9bjZ5YQRAVw Q1fbS0Fmn+ShQtR7jF2DporGNDauTEAU3Q09r/GlWt/5PB1lbAJS3O4W/Q5c7OP3 yy/zlkIP61N1eLEjx7Xf1eLPgAoxUpaf2xNN9iEN10s621eUfV3dtajRGUuFD53W eHK6iMU2bvH9q1YWLDc13yM0xHc/TK3wi9+YOwc889UxgyaPt+B9fPHichbwNL+P l7kCAwEAAaOCAowwggKIMB0GA1UdDgQWBBSchmm/GLMQEnEPSMmo3gu3HXwvZjAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC8yNDAvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzI0MC9uSVpwdnhp ekVCSnhEMGpKcU40THR4MThMMlkubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQHnseAAwQAwDLHMA0GCSqGSIb3 DQEBCwUAA4IBAQA0RKBiBrlW2ma7bra5D2OHGZOqP8TKYqfZxiFz12UQogRIYD0C ScjfOSnjn24UG1+yKyVYt/Rdi4k2nqUZBJ8aZ9FHLh/nhSIo+uLqtn6u7MpfKpQC H47B+4a9UHrc5udG1+pL5WIyvpoFSgdB26dkwc50Z/TYjg+gUOEASfwp4M3rNtD9 hD4gofB5h3x8kr8Di3gMWNW5nye1vS9xFJORu75aaDDWeNGL1a+g6kyBNtT+a+u/ rHOrZVEJeMtyirdQpF7ZZ4gSoS1Nf1sJN5AlE0zZnulm8RoFoQKJj+IyBYij7kXh LVDBm7YoOODa+5XfdSpl3vUk3exKy1vPn9qM -----END CERTIFICATE-----Generated at Fri May 17 01:01:20 2024 by rpki-client on console-ams.rpki-client.org