$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/pgghQ7zvUucStKW9XW5cGVN52Ro.cer File: pgghQ7zvUucStKW9XW5cGVN52Ro.cer (raw, json) Hash identifier: KQHPNOiRGrYhsHBx7IHi4BQ0tw367j/zJ9F7k5l4MnE= Subject key identifier: A6:08:21:43:BC:EF:52:E7:12:B4:A5:BD:5D:6E:5C:19:53:79:D9:1A Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0D24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/pgghQ7zvUucStKW9XW5cGVN52Ro.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 Nov 2024 01:30:14 +0000 Certificate not after: Sat 15 Nov 2025 01:30:03 +0000 Subordinate resources: IP: 192.47.166.0/24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3364 (0xd24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: Nov 15 01:30:14 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=A6082143BCEF52E712B4A5BD5D6E5C195379D91A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:03:ec:32:c5:b2:94:14:25:c2:88:eb:d7: b2:f5:86:83:29:f4:d1:11:31:61:3c:78:5d:33:38: ce:04:6f:14:1b:5a:34:b5:7d:8a:41:e2:06:c3:40: 6d:d7:c6:d3:e7:e8:5f:0d:43:c5:08:7e:cd:d1:46: 48:52:21:cc:76:9b:f4:2a:1f:78:28:e0:3d:02:28: 47:13:17:ae:6e:7c:aa:5d:78:98:84:e2:87:1e:51: 07:06:8a:06:ac:ad:61:ec:81:4d:a0:e0:d6:c5:01: 2b:27:d8:92:e8:13:c3:48:d2:e0:8a:59:a6:4c:0c: ee:c5:77:1f:17:04:7c:0a:1c:da:be:6c:23:af:35: 4f:e6:36:e9:0c:ed:2d:66:08:ce:de:60:a4:31:c0: dc:59:7e:71:61:4c:fa:19:0f:ab:6f:c4:7c:d2:86: db:8b:69:4b:6c:4d:ee:7d:98:7d:84:67:48:16:9b: 8d:88:b2:1e:08:68:c0:8a:92:c5:cb:d6:27:22:cb: 38:08:e5:01:43:92:55:48:75:0c:fe:97:e8:57:b0: f0:d7:fa:09:98:27:7d:ea:b4:37:e2:d8:a6:63:13: 68:a7:f8:7a:bf:b8:79:c0:3d:d6:d1:60:2b:ab:06: 28:c6:ab:3f:fd:e2:b9:97:33:7b:c6:a7:4f:76:10: 22:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:08:21:43:BC:EF:52:E7:12:B4:A5:BD:5D:6E:5C:19:53:79:D9:1A X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/pgghQ7zvUucStKW9XW5cGVN52Ro.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.47.166.0/24 Signature Algorithm: sha256WithRSAEncryption 62:06:de:43:b4:24:c2:bc:f4:7e:0e:a1:f3:55:09:3b:6a:50: 9a:5e:52:30:2f:3d:59:f4:76:4f:6e:61:65:f6:5d:9a:58:70: 44:c8:37:5c:01:59:9b:b2:93:9e:80:bb:52:9b:0e:50:9a:29: 5a:78:e1:8a:b2:94:42:d5:6e:ac:41:89:5e:22:85:f6:10:31: 7c:fe:e4:91:ae:fe:66:87:b2:8a:78:08:91:2e:6a:b9:1b:cd: ab:43:7b:67:ab:72:c8:dd:19:d5:46:59:9c:40:5f:09:0a:b9: c1:29:f9:93:e3:b4:74:db:85:b2:17:a3:c8:f6:3c:75:fd:bc: 5e:1d:f6:aa:91:07:be:da:45:cc:a8:9e:0f:16:f1:bf:fe:74: 8c:4a:db:67:31:c1:d2:35:dc:22:b5:21:b0:7c:b5:d9:28:dd: 17:d6:84:fa:4b:a2:c4:0c:ed:4a:3f:ac:29:76:ca:95:a6:08: ad:67:cb:c8:10:3d:d8:3a:5c:78:27:91:5c:0a:af:ea:94:63: e9:a3:2a:c9:19:0a:e8:a8:1a:88:79:7a:c5:71:bf:ae:38:a2: b7:ae:32:ac:15:f2:47:21:e6:2c:f3:89:e2:6f:6c:97:fe:5a: 85:66:c2:f5:b6:14:1e:18:cc:f5:df:21:b5:14:43:d6:23:0e: df:8e:69:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSQwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI0MTExNTAxMzAxNFoXDTI1MTExNTAxMzAwM1owMzEx MC8GA1UEAxMoQTYwODIxNDNCQ0VGNTJFNzEyQjRBNUJENUQ2RTVDMTk1Mzc5RDkx QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMcIA+wyxbKUFCXCiOvX svWGgyn00RExYTx4XTM4zgRvFBtaNLV9ikHiBsNAbdfG0+foXw1DxQh+zdFGSFIh zHab9CofeCjgPQIoRxMXrm58ql14mITihx5RBwaKBqytYeyBTaDg1sUBKyfYkugT w0jS4IpZpkwM7sV3HxcEfAoc2r5sI681T+Y26QztLWYIzt5gpDHA3Fl+cWFM+hkP q2/EfNKG24tpS2xN7n2YfYRnSBabjYiyHghowIqSxcvWJyLLOAjlAUOSVUh1DP6X 6Few8Nf6CZgnfeq0N+LYpmMTaKf4er+4ecA91tFgK6sGKMarP/3iuZcze8anT3YQ ImcCAwEAAaOCAokwggKFMB0GA1UdDgQWBBSmCCFDvO9S5xK0pb1dblwZU3nZGjAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAQYIKwYBBQUHAQsEgfQw gfEwQwYIKwYBBQUHMAWGN3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjcxNi8wYgYIKwYBBQUHMAqGVnJzeW5jOi8vcnBr aS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjcxNi9wZ2do UTd6dlV1Y1N0S1c5WFc1Y0dWTjUyUm8ubWZ0MEYGCCsGAQUFBzANhjpodHRwczov L3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24u eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwC+mMA0GCSqGSIb3DQEB CwUAA4IBAQBiBt5DtCTCvPR+DqHzVQk7alCaXlIwLz1Z9HZPbmFl9l2aWHBEyDdc AVmbspOegLtSmw5QmilaeOGKspRC1W6sQYleIoX2EDF8/uSRrv5mh7KKeAiRLmq5 G82rQ3tnq3LI3RnVRlmcQF8JCrnBKfmT47R024WyF6PI9jx1/bxeHfaqkQe+2kXM qJ4PFvG//nSMSttnMcHSNdwitSGwfLXZKN0X1oT6S6LEDO1KP6wpdsqVpgitZ8vI ED3YOlx4J5FcCq/qlGPpoyrJGQroqBqIeXrFcb+uOKK3rjKsFfJHIeYs84nib2yX /lqFZsL1thQeGMz13yG1FEPWIw7fjmlg -----END CERTIFICATE-----Generated at Fri Nov 22 09:41:09 2024 by rpki-client on console-ams.rpki-client.org