$ rpki-client -vvf sakuya.nat.moe/repo/NATOCA/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer File: 9FE9B4C3090206D5B28CED4F5179539F698ADB91.cer (raw, json) Hash identifier: FqcqaK70ydTZMxC6YCnd1SPlxVTn7JLZ51PyVADC+6w= Subject key identifier: 9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 Authority key identifier: 5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF Certificate issuer: /CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Certificate serial: 3DD5DB966F64FD8F1ACBBEFBB6165404E730A406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Manifest: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.mft caRepository: rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/ Notify URL: https://rpki-rrdp.mnihyc.com/rrdp/notification.xml Certificate not before: Thu 16 May 2024 11:40:49 +0000 Certificate not after: Thu 15 May 2025 11:45:49 +0000 Subordinate resources: AS: 140938 IP: 2406:4440:e000::/40 Validation: OK Signature path: rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d5:db:96:6f:64:fd:8f:1a:cb:be:fb:b6:16:54:04:e7:30:a4:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114E750000/serialNumber=5A179648B3EF2369DCE7BDB58140FF7DC7060ABF Validity Not Before: May 16 11:40:49 2024 GMT Not After : May 15 11:45:49 2025 GMT Subject: CN=9FE9B4C3090206D5B28CED4F5179539F698ADB91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:91:5b:f7:32:74:b1:74:b2:df:8a:62:79:3b: 22:3b:10:e8:7d:37:e5:9e:14:30:27:3e:81:0d:d3: 1f:07:63:3d:39:22:7f:99:06:ae:66:45:07:69:0a: d6:ef:e0:0d:3b:7c:fa:a2:d6:ae:f9:2d:87:9a:3d: 64:a9:09:a8:3c:9d:08:2c:98:d0:da:1c:df:fd:f6: eb:15:6e:c9:ca:67:e0:99:e4:88:5c:c3:67:7d:ad: e2:5d:6c:3b:0f:5d:29:59:5b:c9:fa:52:23:5e:4b: 68:53:e5:f7:b8:55:a4:12:33:d8:6e:54:29:a1:44: fd:d7:37:69:0e:7a:99:88:f1:78:10:a2:9f:93:15: 05:e5:43:76:45:8a:59:93:3f:31:ff:a0:8c:6f:3a: bf:f2:0f:68:cb:ba:01:dc:a2:c3:13:7c:29:30:25: 82:9b:2a:cf:06:5c:e6:2e:79:f1:f6:62:a3:4e:7c: e9:c8:56:6c:22:4a:8e:4c:ca:b5:35:4f:1f:9b:a4: 52:52:a1:a9:80:f9:91:92:05:c6:1c:48:70:68:64: 03:81:40:c0:ef:e4:e6:ba:31:31:ab:8f:7b:51:3d: bf:ae:e8:4f:0e:14:09:8e:54:7a:23:10:4f:1b:53: be:0f:a7:e3:aa:5b:7b:74:1f:d7:48:02:86:1a:7d: 16:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9F:E9:B4:C3:09:02:06:D5:B2:8C:ED:4F:51:79:53:9F:69:8A:DB:91 X509v3 Authority Key Identifier: keyid:5A:17:96:48:B3:EF:23:69:DC:E7:BD:B5:81:40:FF:7D:C7:06:0A:BF X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://sakuya.nat.moe/repo/NATOCA/1/5A179648B3EF2369DCE7BDB58140FF7DC7060ABF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WheWSLPvI2nc5721gUD_fccGCr8.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/ RPKI Manifest - URI:rsync://rpki-rsync.mnihyc.com/repo/mnihyc-rpki/1/9FE9B4C3090206D5B28CED4F5179539F698ADB91.mft RPKI Notify - URI:https://rpki-rrdp.mnihyc.com/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4440:e000::/40 sbgp-autonomousSysNum: critical Autonomous System Numbers: 140938 Signature Algorithm: sha256WithRSAEncryption 02:bf:c4:bd:b2:2c:50:0d:35:66:71:c9:07:d1:6e:fb:a0:9e: 83:a6:9a:99:20:77:40:da:7a:ac:28:d0:a7:01:41:05:aa:24: ab:63:2d:9a:05:5f:15:a0:f1:74:44:66:9c:ce:d5:0e:f4:3d: 27:d4:ea:db:b3:50:04:dc:db:b0:e4:a4:54:8a:ec:41:c8:64: 61:a6:6e:ba:fb:5b:00:ea:0b:59:8b:83:98:89:e2:52:45:24: eb:d6:a8:d7:bc:e8:c7:3e:15:0c:60:35:9f:d9:6e:96:f3:c3: 5e:0d:5c:14:ff:fd:09:5c:43:f9:b5:05:9b:0c:45:01:b3:81: 71:52:50:b9:3b:c5:16:ac:d9:e3:f7:93:23:92:61:9f:c4:9e: 94:ea:2f:d4:ff:c4:3c:24:da:c2:7f:9d:e3:6f:81:dd:d4:ea: ac:bf:16:90:28:b4:1c:ee:7c:f1:6d:dd:44:50:8c:e1:7c:06: ed:12:ab:e0:57:2b:3d:a9:c9:cc:61:36:49:d9:47:8f:00:15: 25:d1:23:b0:89:b7:e5:1c:bd:27:43:d2:77:0d:ff:62:a1:54: 2e:9b:df:86:91:30:7e:4f:69:0b:c2:c0:0e:96:8a:ee:7a:75: f8:fd:dd:60:8f:c0:00:ef:55:82:c0:47:0d:64:05:b9:13:f8: 8b:58:db:5d -----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgIUPdXblm9k/Y8ay777thZUBOcwpAYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMTRFNzUwMDAwMTEwLwYDVQQFEyg1QTE3OTY0OEIz RUYyMzY5RENFN0JEQjU4MTQwRkY3REM3MDYwQUJGMB4XDTI0MDUxNjExNDA0OVoX DTI1MDUxNTExNDU0OVowMzExMC8GA1UEAxMoOUZFOUI0QzMwOTAyMDZENUIyOENF RDRGNTE3OTUzOUY2OThBREI5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWRW/cydLF0st+KYnk7IjsQ6H035Z4UMCc+gQ3THwdjPTkif5kGrmZFB2kK 1u/gDTt8+qLWrvkth5o9ZKkJqDydCCyY0Noc3/326xVuycpn4JnkiFzDZ32t4l1s Ow9dKVlbyfpSI15LaFPl97hVpBIz2G5UKaFE/dc3aQ56mYjxeBCin5MVBeVDdkWK WZM/Mf+gjG86v/IPaMu6AdyiwxN8KTAlgpsqzwZc5i558fZio0586chWbCJKjkzK tTVPH5ukUlKhqYD5kZIFxhxIcGhkA4FAwO/k5roxMauPe1E9v67oTw4UCY5UeiMQ TxtTvg+n46pbe3Qf10gChhp9FvkCAwEAAaOCAp8wggKbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ/ptMMJAgbVsoztT1F5U59pituRMB8GA1UdIwQYMBaAFFoX lkiz7yNp3Oe9tYFA/33HBgq/MA4GA1UdDwEB/wQEAwIBBjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Nha3V5YS5uYXQubW9lL3JlcG8vTkFUT0NBLzEvNUExNzk2 NDhCM0VGMjM2OURDRTdCREI1ODE0MEZGN0RDNzA2MEFCRi5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvV2hlV1NMUHZJ Mm5jNTcyMWdVRF9mY2NHQ3I4LmNlcjCB+gYIKwYBBQUHAQsEge0wgeowPQYIKwYB BQUHMAWGMXJzeW5jOi8vcnBraS1yc3luYy5tbmloeWMuY29tL3JlcG8vbW5paHlj LXJwa2kvMS8waQYIKwYBBQUHMAqGXXJzeW5jOi8vcnBraS1yc3luYy5tbmloeWMu Y29tL3JlcG8vbW5paHljLXJwa2kvMS85RkU5QjRDMzA5MDIwNkQ1QjI4Q0VENEY1 MTc5NTM5RjY5OEFEQjkxLm1mdDA+BggrBgEFBQcwDYYyaHR0cHM6Ly9ycGtpLXJy ZHAubW5paHljLmNvbS9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQGREDg MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwImijANBgkqhkiG9w0BAQsFAAOCAQEA Ar/EvbIsUA01ZnHJB9Fu+6Ceg6aamSB3QNp6rCjQpwFBBaokq2MtmgVfFaDxdERm nM7VDvQ9J9Tq27NQBNzbsOSkVIrsQchkYaZuuvtbAOoLWYuDmIniUkUk69ao17zo xz4VDGA1n9lulvPDXg1cFP/9CVxD+bUFmwxFAbOBcVJQuTvFFqzZ4/eTI5Jhn8Se lOov1P/EPCTawn+d42+B3dTqrL8WkCi0HO588W3dRFCM4XwG7RKr4FcrPanJzGE2 SdlHjwAVJdEjsIm35Ry9J0PSdw3/YqFULpvfhpEwfk9pC8LADpaK7np1+P3dYI/A AO9VgsBHDWQFuRP4i1jbXQ== -----END CERTIFICATE-----Generated at Mon Nov 25 06:08:20 2024 by rpki-client on console-ams.rpki-client.org