$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/pimqiuskKhP7NxpEyl4fKVenDhs.cer File: pimqiuskKhP7NxpEyl4fKVenDhs.cer (raw, json) Hash identifier: gQ7nVdXjf2kfqCg3zAnQw0/xlueNebxMBq/T0A/DR1M= Subject key identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 2FC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:34:38 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 2001:268::/32 IP: 2001:2a0::/32 IP: 2001:2c8::/32 IP: 240f::/23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12231 (0x2fc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:34:38 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=A629AA8AEB242A13FB371A44CA5E1F2957A70E1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:16:94:24:d2:84:11:8c:5f:dc:a1:a2:61: 77:ac:ba:d9:45:2a:1a:53:ae:5d:80:25:b3:c4:ca: eb:40:26:b7:68:0d:24:a5:bc:30:3a:dc:25:6a:f7: e1:82:a5:4c:0f:d6:ab:3e:bf:d6:21:56:40:67:97: 3b:0a:d0:11:06:04:b1:ea:49:d7:f7:07:67:d0:3f: 02:80:b5:d0:6c:dd:f1:89:d2:98:d2:d7:76:f7:bc: ac:5d:87:4c:38:40:da:fa:d3:b6:45:00:e9:b1:57: 1e:a3:8d:98:c4:4f:9a:a2:cd:df:b5:d7:fa:e8:01: 89:a1:6e:f1:9e:c7:ab:46:fe:fd:5a:4c:7f:27:e9: 87:a5:52:99:f2:33:52:a8:a1:7f:c5:ce:33:32:a6: ad:05:8c:2b:03:df:f9:71:65:21:b3:8d:c7:b9:d0: 8a:37:cb:82:5f:b0:4e:fd:5d:25:7f:98:ba:61:8e: 90:c5:f5:dc:98:59:43:d4:a1:1e:a1:d0:12:de:72: 5c:f5:9c:5e:c3:f5:60:73:d5:23:7f:79:ae:df:c0: da:9b:3d:ce:bc:36:00:1c:b3:4a:52:77:68:03:33: 79:7a:43:ea:b3:ce:48:57:14:f2:79:46:7c:db:a2: ae:cb:46:d6:e6:c6:db:bc:07:81:05:e2:99:1e:93: 1c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:268::/32 2001:2a0::/32 2001:2c8::/32 240f::/23 Signature Algorithm: sha256WithRSAEncryption 16:ab:2a:57:af:79:0b:29:ca:c9:ec:82:14:62:be:8b:96:6d: be:e7:3f:ec:f1:c9:14:d0:7d:3a:d0:3d:31:56:87:20:35:47: ea:f3:7e:ab:9b:86:ca:1d:5e:ae:8e:57:64:63:6d:96:16:22: 03:43:76:a1:14:25:c6:31:89:25:de:64:74:8c:16:57:62:fa: fb:11:45:73:62:9c:c5:aa:1e:b7:aa:aa:19:8d:4a:bd:17:48: 47:91:62:44:66:ef:e2:42:69:28:f1:25:d6:37:25:0b:ef:6e: d9:e6:9a:6f:16:3d:d1:cf:35:8a:d4:2b:b1:c5:75:b0:b4:e5: bc:5a:38:af:66:00:02:95:73:70:cd:9e:1c:dd:6d:ab:48:92: b5:dc:59:05:1d:65:f8:cf:2a:c1:d1:8d:2e:a1:c2:4a:cb:50: 36:8f:bf:f9:ee:90:1a:15:af:1d:ae:96:a3:fb:db:63:f0:98: 5f:e9:82:f1:2f:54:ba:ca:57:12:b2:2c:97:30:5f:52:78:39: 22:62:56:02:8a:bf:54:d0:b0:52:f3:d9:a4:fb:ea:65:9f:7b: c9:15:96:be:9a:cb:f3:71:14:96:b7:d2:66:b6:ef:5f:ed:5a: d1:1f:2f:36:5e:23:ef:d4:24:c4:b7:9e:48:53:e9:4d:c7:c5: 92:39:50:8a -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICL8cwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDUxNTAxMzQzOFoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoQTYyOUFBOEFFQjI0MkExM0ZCMzcxQTQ0Q0E1RTFGMjk1N0E3MEUx QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALLaFpQk0oQRjF/coaJh d6y62UUqGlOuXYAls8TK60Amt2gNJKW8MDrcJWr34YKlTA/Wqz6/1iFWQGeXOwrQ EQYEsepJ1/cHZ9A/AoC10Gzd8YnSmNLXdve8rF2HTDhA2vrTtkUA6bFXHqONmMRP mqLN37XX+ugBiaFu8Z7Hq0b+/VpMfyfph6VSmfIzUqihf8XOMzKmrQWMKwPf+XFl IbONx7nQijfLgl+wTv1dJX+YumGOkMX13JhZQ9ShHqHQEt5yXPWcXsP1YHPVI395 rt/A2ps9zrw2AByzSlJ3aAMzeXpD6rPOSFcU8nlGfNuirstG1ubG27wHgQXimR6T HBsCAwEAAaOCAqAwggKcMB0GA1UdDgQWBBSmKaqK6yQqE/s3GkTKXh8pV6cOGzAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwMTcvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDE3L3Bp bXFpdXNrS2hQN054cEV5bDRmS1ZlbkRocy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwNAYIKwYBBQUHAQcBAf8EJTAjMCEEAgACMBsDBQAgAQJoAwUAIAECoAMF ACABAsgDBAEkDwAwDQYJKoZIhvcNAQELBQADggEBABarKleveQspysnsghRivouW bb7nP+zxyRTQfTrQPTFWhyA1R+rzfqubhsodXq6OV2RjbZYWIgNDdqEUJcYxiSXe ZHSMFldi+vsRRXNinMWqHreqqhmNSr0XSEeRYkRm7+JCaSjxJdY3JQvvbtnmmm8W PdHPNYrUK7HFdbC05bxaOK9mAAKVc3DNnhzdbatIkrXcWQUdZfjPKsHRjS6hwkrL UDaPv/nukBoVrx2ulqP722PwmF/pgvEvVLrKVxKyLJcwX1J4OSJiVgKKv1TQsFLz 2aT76mWfe8kVlr6ay/NxFJa30ma271/tWtEfLzZeI+/UJMS3nkhT6U3HxZI5UIo= -----END CERTIFICATE-----Generated at Fri May 17 01:06:28 2024 by rpki-client on console-fra.rpki-client.org