$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer File: s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer (raw, json) Hash identifier: k8pcsCB5BVaWmbi9/dRbdx9XuZDFgBLQqyIFcd2uDtI= Subject key identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 2F7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 May 2024 01:32:58 +0000 Certificate not after: Thu 15 May 2025 01:30:03 +0000 Subordinate resources: IP: 2001:380::/32 IP: 2400:4000::/22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12155 (0x2f7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 15 01:32:58 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:35:89:19:e0:ad:c0:50:32:0f:b3:e1:21: cf:cb:2c:b4:5b:ad:32:fc:8a:90:8d:5c:58:42:89: 29:27:b8:72:10:ed:49:ff:1d:83:d2:fd:46:08:cb: 96:d3:77:aa:c9:0e:5b:ab:51:db:31:b8:bc:36:e6: bf:a5:25:c2:eb:5b:92:89:a7:2a:b3:0a:51:e8:99: 25:2d:3a:3e:6c:f1:22:ae:e8:42:16:16:4e:eb:e6: 71:b9:e8:e5:30:c1:30:0c:db:b4:d1:fc:7d:c8:b3: 90:2c:ae:18:7a:96:ce:22:d6:c5:3d:ba:5f:fe:ae: 4f:a1:6f:78:98:f6:68:a2:42:b9:0e:7d:3c:5a:5f: e6:20:eb:cd:c8:1a:48:20:56:90:07:2b:86:77:31: 0d:c8:84:45:ff:4b:c2:80:5d:82:1d:1b:dd:ec:3d: b1:e7:9b:10:d1:a4:83:ea:cf:bb:88:ad:02:43:bd: d6:1e:73:11:33:6b:66:89:6a:3f:b3:4a:98:b6:11: 5d:f6:0c:03:e1:11:97:7a:6e:2d:78:71:f0:79:1a: aa:a1:fc:43:7f:47:12:a2:d3:0d:2a:60:fd:a1:ea: b2:17:c5:df:65:a7:8b:d9:1b:45:28:d7:c7:4d:c5: 22:5a:c1:bc:4b:93:58:f2:a3:13:74:1b:1b:f1:f3: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:380::/32 2400:4000::/22 Signature Algorithm: sha256WithRSAEncryption 3a:d4:43:32:bf:59:d3:9b:9a:1f:7a:fb:1a:4e:d0:b5:dd:c7: 28:23:1a:7c:25:c0:60:14:38:95:18:8d:95:6a:92:c6:06:85: 0d:50:7a:21:90:a2:8a:b7:e9:8c:a7:b6:99:61:6c:6c:f3:14: 62:d0:54:0f:18:14:ea:6c:fa:8b:b9:13:ed:cb:5c:8f:0b:65: 2e:23:5b:db:ac:cd:c3:a2:5f:85:dc:53:d4:2f:5c:89:53:89: 2f:1a:18:2d:a3:cf:10:9f:a6:a8:bb:f7:f9:aa:7c:11:06:57: 8e:af:d8:4f:6e:fe:dd:29:e8:76:cc:c8:0a:80:34:38:26:45: 3b:22:89:a6:ff:a2:b8:5d:e7:65:9e:36:c1:4a:b4:0d:7f:8b: b7:57:74:5f:0c:21:de:6a:96:48:0e:12:3d:43:09:7b:a7:42: 54:eb:84:dc:3b:9c:4a:a9:21:43:91:17:ad:5e:0a:ad:0a:0e: 23:61:58:f4:81:2b:bc:3e:4c:90:d3:66:f2:7e:6c:5d:b5:13: 52:2d:23:fb:01:c7:6b:0c:4e:5d:78:d9:36:cc:24:47:ac:31: f5:5c:15:f8:c3:4a:89:f4:c1:37:6a:a0:2d:bc:04:d0:5e:cf: 9e:d1:45:ba:71:22:c5:22:95:ab:6e:a3:d1:dd:e4:16:cc:26: f0:3a:27:8b -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICL3swDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI0MDUxNTAxMzI1OFoXDTI1MDUxNTAxMzAwM1owMzEx MC8GA1UEAxMoQjNDN0ExOTgwNEY3MjhFOEZGNUU0NUJFQzhEQTU4MjEwNUEzREE5 RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMLmNYkZ4K3AUDIPs+Eh z8sstFutMvyKkI1cWEKJKSe4chDtSf8dg9L9RgjLltN3qskOW6tR2zG4vDbmv6Ul wutbkomnKrMKUeiZJS06PmzxIq7oQhYWTuvmcbno5TDBMAzbtNH8fcizkCyuGHqW ziLWxT26X/6uT6FveJj2aKJCuQ59PFpf5iDrzcgaSCBWkAcrhncxDciERf9LwoBd gh0b3ew9seebENGkg+rPu4itAkO91h5zETNrZolqP7NKmLYRXfYMA+ERl3puLXhx 8HkaqqH8Q39HEqLTDSpg/aHqshfF32Wni9kbRSjXx03FIlrBvEuTWPKjE3QbG/Hz iVkCAwEAAaOCApIwggKOMB0GA1UdDgQWBBSzx6GYBPco6P9eRb7I2lghBaPanTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwNzMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDczL3M4 ZWhtQVQzS09qX1hrVy15TnBZSVFXajJwMC5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJgYIKwYBBQUHAQcBAf8EFzAVMBMEAgACMA0DBQAgAQOAAwQCJABAMA0G CSqGSIb3DQEBCwUAA4IBAQA61EMyv1nTm5ofevsaTtC13ccoIxp8JcBgFDiVGI2V apLGBoUNUHohkKKKt+mMp7aZYWxs8xRi0FQPGBTqbPqLuRPty1yPC2UuI1vbrM3D ol+F3FPUL1yJU4kvGhgto88Qn6aou/f5qnwRBleOr9hPbv7dKeh2zMgKgDQ4JkU7 Iomm/6K4XedlnjbBSrQNf4u3V3RfDCHeapZIDhI9Qwl7p0JU64TcO5xKqSFDkRet XgqtCg4jYVj0gSu8PkyQ02byfmxdtRNSLSP7AcdrDE5deNk2zCRHrDH1XBX4w0qJ 9ME3aqAtvATQXs+e0UW6cSLFIpWrbqPR3eQWzCbwOieL -----END CERTIFICATE-----Generated at Fri May 17 01:01:20 2024 by rpki-client on console-ams.rpki-client.org