$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer File: 0Q2IZYK930iwQYUcOMC2MhFfXCE.cer (raw, json) Hash identifier: n+4c4C7Pymxxz5/g8jRzxC9zLylnbaYMZQ3U3vLdWHw= Subject key identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 48DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Apr 2025 01:33:12 +0000 Certificate not after: Wed 15 Apr 2026 01:30:03 +0000 Subordinate resources: IP: 2403:7800::/32 IP: 2406:bb00::/29 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18651 (0x48db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Apr 15 01:33:12 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=D10D886582BDDF48B041851C38C0B632115F5C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:58:ee:ce:fc:55:94:dc:c7:7a:0e:9b:a0:71: 6d:34:d8:d8:a9:d2:42:6e:da:f6:68:d7:9c:76:29: 8f:d4:1e:11:f5:dd:73:e4:76:1a:5f:1f:4c:b5:e9: 61:70:11:33:14:b3:fa:03:a9:85:2a:b2:3d:8e:79: f6:52:42:74:09:11:6b:58:56:41:61:31:6f:71:a3: 30:a5:88:9e:99:c1:17:d4:d2:35:ca:b9:dc:a8:d1: 1d:af:fa:2d:8a:05:79:ce:d1:59:4a:2f:dc:e0:6d: ca:1b:68:13:81:1c:d4:0d:ab:2f:0b:e3:20:9e:5d: 22:fa:3c:1a:2b:40:4e:78:ac:bb:6f:81:b4:a9:d7: 29:84:62:f9:b9:bd:ef:56:41:11:ea:ce:d6:80:2f: 65:85:9e:23:bc:f5:18:7a:81:0b:43:8c:fa:47:50: 84:9a:c4:41:16:44:78:ae:38:2f:1b:0c:56:0c:aa: f3:d5:11:54:05:bc:e8:6e:de:c3:13:ef:c1:73:2f: cd:be:76:08:0c:bb:46:41:94:9b:94:fb:e8:cb:b5: 43:12:ca:69:2c:41:1d:2f:3a:a7:ad:47:80:b0:3e: fe:4b:e6:59:bd:ea:35:6a:ed:9c:01:ab:e9:b5:5f: 96:8d:ae:be:52:fd:7d:f8:19:61:43:4f:15:17:1c: b9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7800::/32 2406:bb00::/29 Signature Algorithm: sha256WithRSAEncryption 7d:02:64:93:f2:e1:d1:7f:16:94:fe:66:28:82:a9:b7:4b:4a: 35:0a:70:c9:2b:69:98:41:95:1b:bc:1d:65:3a:d8:9d:79:00: 3f:8a:c3:31:61:8d:66:c0:fb:12:c6:02:8d:c9:de:22:15:d9: 29:50:53:9f:37:94:29:97:68:d8:c2:08:c1:3b:c5:6b:16:70: 9f:45:33:95:7b:c5:ec:ba:ec:6a:4e:44:d9:27:32:37:0c:24: 23:bc:f2:c8:df:d9:55:52:54:47:07:7b:a4:76:ee:f2:e5:03: 61:84:ad:b4:19:1e:e8:ac:3d:f5:ae:50:fa:73:3e:19:3d:3b: f7:2a:55:79:71:ad:a7:e7:dc:33:6b:c2:b7:96:e3:cc:ac:87: 3b:1f:8e:f8:88:3f:c5:86:ac:35:93:21:08:d9:f8:85:ca:72: eb:49:4c:32:de:f4:8f:a5:0c:e8:56:6b:08:fe:79:8c:cd:83: 35:06:cc:ab:ad:c5:04:51:63:5f:c1:92:32:fc:04:9c:ba:ce: 06:de:d0:ce:46:7b:0d:16:fb:a6:55:94:52:8b:6d:d7:cc:47: 13:ba:14:b7:a1:88:eb:90:87:7e:a0:17:38:5c:3f:1a:2b:69: 35:22:26:d5:88:5f:89:db:38:02:96:82:35:1f:1a:fb:56:79: 38:dc:d0:aa -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICSNswDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDQxNTAxMzMxMloXDTI2MDQxNTAxMzAwM1owMzEx MC8GA1UEAxMoRDEwRDg4NjU4MkJEREY0OEIwNDE4NTFDMzhDMEI2MzIxMTVGNUMy MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1Y7s78VZTcx3oOm6Bx bTTY2KnSQm7a9mjXnHYpj9QeEfXdc+R2Gl8fTLXpYXARMxSz+gOphSqyPY559lJC dAkRa1hWQWExb3GjMKWInpnBF9TSNcq53KjRHa/6LYoFec7RWUov3OBtyhtoE4Ec 1A2rLwvjIJ5dIvo8GitATnisu2+BtKnXKYRi+bm971ZBEerO1oAvZYWeI7z1GHqB C0OM+kdQhJrEQRZEeK44LxsMVgyq89URVAW86G7ewxPvwXMvzb52CAy7RkGUm5T7 6Mu1QxLKaSxBHS86p61HgLA+/kvmWb3qNWrtnAGr6bVflo2uvlL9ffgZYUNPFRcc uZcCAwEAAaOCApMwggKPMB0GA1UdDgQWBBTRDYhlgr3fSLBBhRw4wLYyEV9cITAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAyMjgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMjI4LzBR MklaWUs5MzBpd1FZVWNPTUMyTWhGZlhDRS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAkA3gAAwUDJAa7ADAN BgkqhkiG9w0BAQsFAAOCAQEAfQJkk/Lh0X8WlP5mKIKpt0tKNQpwyStpmEGVG7wd ZTrYnXkAP4rDMWGNZsD7EsYCjcneIhXZKVBTnzeUKZdo2MIIwTvFaxZwn0UzlXvF 7Lrsak5E2ScyNwwkI7zyyN/ZVVJURwd7pHbu8uUDYYSttBke6Kw99a5Q+nM+GT07 9ypVeXGtp+fcM2vCt5bjzKyHOx+O+Ig/xYasNZMhCNn4hcpy60lMMt70j6UM6FZr CP55jM2DNQbMq63FBFFjX8GSMvwEnLrOBt7QzkZ7DRb7plWUUott18xHE7oUt6GI 65CHfqAXOFw/GitpNSIm1Yhfids4ApaCNR8a+1Z5ONzQqg== -----END CERTIFICATE-----Generated at Sat Apr 26 08:24:14 2025 by rpki-client