$ rpki-client -vvf sakuya.nat.moe/repo/NATOCA/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer File: 9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer (raw, json) Hash identifier: nPmvMIeJB+xS051487WpjOSwTn2uzqQ5Mv0JrgYpBq4= Subject key identifier: 9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 Authority key identifier: 5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF Certificate issuer: /CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Certificate serial: 6350A65B2E02C56BB3B3BB40CE77E433CA285D45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Manifest: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.mft caRepository: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/ Notify URL: https://rpki-rrdp.mnihyc.com/rrdp/notification.xml Certificate not before: Wed 15 May 2024 15:11:00 +0000 Certificate not after: Wed 14 May 2025 15:16:00 +0000 Subordinate resources: AS: 140938 IP: 2406:4440:e000::/40 Validation: OK Signature path: rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 May 2024 15:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:50:a6:5b:2e:02:c5:6b:b3:b3:bb:40:ce:77:e4:33:ca:28:5d:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Validity Not Before: May 15 15:11:00 2024 GMT Not After : May 14 15:16:00 2025 GMT Subject: CN=9FE9B4C3090206D5B28CED4F5179539F698ADB91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:91:5b:f7:32:74:b1:74:b2:df:8a:62:79:3b: 22:3b:10:e8:7d:37:e5:9e:14:30:27:3e:81:0d:d3: 1f:07:63:3d:39:22:7f:99:06:ae:66:45:07:69:0a: d6:ef:e0:0d:3b:7c:fa:a2:d6:ae:f9:2d:87:9a:3d: 64:a9:09:a8:3c:9d:08:2c:98:d0:da:1c:df:fd:f6: eb:15:6e:c9:ca:67:e0:99:e4:88:5c:c3:67:7d:ad: e2:5d:6c:3b:0f:5d:29:59:5b:c9:fa:52:23:5e:4b: 68:53:e5:f7:b8:55:a4:12:33:d8:6e:54:29:a1:44: fd:d7:37:69:0e:7a:99:88:f1:78:10:a2:9f:93:15: 05:e5:43:76:45:8a:59:93:3f:31:ff:a0:8c:6f:3a: bf:f2:0f:68:cb:ba:01:dc:a2:c3:13:7c:29:30:25: 82:9b:2a:cf:06:5c:e6:2e:79:f1:f6:62:a3:4e:7c: e9:c8:56:6c:22:4a:8e:4c:ca:b5:35:4f:1f:9b:a4: 52:52:a1:a9:80:f9:91:92:05:c6:1c:48:70:68:64: 03:81:40:c0:ef:e4:e6:ba:31:31:ab:8f:7b:51:3d: bf:ae:e8:4f:0e:14:09:8e:54:7a:23:10:4f:1b:53: be:0f:a7:e3:aa:5b:7b:74:1f:d7:48:02:86:1a:7d: 16:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 X509v3 Authority Key Identifier: keyid:5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/ RPKI Manifest - URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.mft RPKI Notify - URI:https://rpki-rrdp.mnihyc.com/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:e000::/40 sbgp-autonomousSysNum: critical Autonomous System Numbers: 140938 Signature Algorithm: sha256WithRSAEncryption 94:0e:78:56:75:4f:db:c6:3a:7a:dd:e7:db:de:a9:42:d4:ae: 16:85:cd:25:e2:8f:cb:06:95:d5:2a:75:fc:e8:e1:66:97:56: b8:c8:d1:b2:4e:10:38:78:d2:0c:7f:45:24:8a:dc:79:42:cb: f8:00:f8:d0:f3:d6:a0:9b:94:77:19:01:d6:2c:f9:fe:31:b5: 6f:b8:62:e9:5f:a0:68:b5:97:4b:fb:02:dc:ee:96:98:69:70: 4e:e3:af:0e:cf:26:59:0c:97:3c:98:0b:de:ce:34:bb:3d:9b: 77:1e:4c:5f:14:cc:22:05:95:5e:eb:f1:77:10:fe:57:65:e2: ea:05:59:fa:3f:d2:db:a7:18:3b:8a:c9:68:9f:d0:f2:5a:7c: d0:08:8b:8b:41:6c:fa:81:39:7a:df:40:16:0c:f5:7c:de:b0: b2:bb:c3:4c:a9:9c:d3:2b:e6:12:b9:38:3f:26:ba:6a:7d:c4: 11:d7:45:1c:5e:c4:28:a9:95:94:c7:e3:b0:57:c9:42:45:c1: dc:62:c1:a5:9a:78:09:88:7c:2f:35:06:c3:f4:c7:a8:61:fd: 76:39:11:2f:cd:bf:0d:b8:06:2d:b5:77:e8:d7:b6:d6:20:cc: 01:0d:90:aa:db:63:74:76:cc:0a:c0:7f:6a:c2:ac:c7:97:b6: cd:b0:9c:e4 -----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgIUY1CmWy4CxWuzs7tAznfkM8ooXUUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMTRFNzUwMDAwMTEwLwYDVQQFEyg1QTE3OTY0OEIz RUYyMzY5RENFN0JEQjU4MTQwRkY3REM3MDYwQUJGMB4XDTI0MDUxNTE1MTEwMFoX DTI1MDUxNDE1MTYwMFowMzExMC8GA1UEAxMoOUZFOUI0QzMwOTAyMDZENUIyOENF RDRGNTE3OTUzOUY2OThBREI5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWRW/cydLF0st+KYnk7IjsQ6H035Z4UMCc+gQ3THwdjPTkif5kGrmZFB2kK 1u/gDTt8+qLWrvkth5o9ZKkJqDydCCyY0Noc3/326xVuycpn4JnkiFzDZ32t4l1s Ow9dKVlbyfpSI15LaFPl97hVpBIz2G5UKaFE/dc3aQ56mYjxeBCin5MVBeVDdkWK WZM/Mf+gjG86v/IPaMu6AdyiwxN8KTAlgpsqzwZc5i558fZio0586chWbCJKjkzK tTVPH5ukUlKhqYD5kZIFxhxIcGhkA4FAwO/k5roxMauPe1E9v67oTw4UCY5UeiMQ TxtTvg+n46pbe3Qf10gChhp9FvkCAwEAAaOCAp8wggKbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ/ptMMJAgbVsoztT1F5U59pituRMB8GA1UdIwQYMBaAFFoX lkiz7yNp3Oe9tYFA/33HBgq/MA4GA1UdDwEB/wQEAwIBBjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Nha3V5YS5uYXQubW9lL3JlcG8vTkFUT0NBLzEvNUExNzk2 NDhCM0VGMjM2OURDRTdCREI1ODE0MEZGN0RDNzA2MEFCRi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvV2hlV1NMUHZJ Mm5jNTcyMWdVRF9mY2NHQ3I4LmNlcjCB+gYIKwYBBQUHAQsEge0wgeowPQYIKwYB BQUHMAWGMXJzeW5jOi8vcnBraS1yc3luYy5tbmloeWMuY29tL3JlcG8vbW5paHlj LXJwa2kvMS8waQYIKwYBBQUHMAqGXXJzeW5jOi8vcnBraS1yc3luYy5tbmloeWMu Y29tL3JlcG8vbW5paHljLXJwa2kvMS85RkU5QjRDMzA5MDIwNkQ1QjI4Q0VENEY1 MTc5NTM5RjY5OEFEQjkxLm1mdDA+BggrBgEFBQcwDYYyaHR0cHM6Ly9ycGtpLXJy ZHAubW5paHljLmNvbS9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQGREDg MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwImijANBgkqhkiG9w0BAQsFAAOCAQEA lA54VnVP28Y6et3n296pQtSuFoXNJeKPywaV1Sp1/OjhZpdWuMjRsk4QOHjSDH9F JIrceULL+AD40PPWoJuUdxkB1iz5/jG1b7hi6V+gaLWXS/sC3O6WmGlwTuOvDs8m WQyXPJgL3s40uz2bdx5MXxTMIgWVXuvxdxD+V2Xi6gVZ+j/S26cYO4rJaJ/Q8lp8 0AiLi0Fs+oE5et9AFgz1fN6wsrvDTKmc0yvmErk4Pya6an3EEddFHF7EKKmVlMfj sFfJQkXB3GLBpZp4CYh8LzUGw/THqGH9djkRL82/DbgGLbV36Ne21iDMAQ2Qqttj dHbMCsB/asKsx5e2zbCc5A== -----END CERTIFICATE-----Generated at Wed May 15 17:28:37 2024 by rpki-client on console-ams.rpki-client.org