$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer File: 0Q2IZYK930iwQYUcOMC2MhFfXCE.cer (raw, json) Hash identifier: sdOmJch60vNxmDMuu7hCu4TtXqpvOaTSLYTrJquQVoQ= Subject key identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 5516 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 30 Jul 2025 06:37:17 +0000 Certificate not after: Thu 30 Jul 2026 06:29:08 +0000 Subordinate resources: IP: 2403:7800::/32 IP: 2406:bb00::/29 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21782 (0x5516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Jul 30 06:37:17 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=D10D886582BDDF48B041851C38C0B632115F5C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:58:ee:ce:fc:55:94:dc:c7:7a:0e:9b:a0:71: 6d:34:d8:d8:a9:d2:42:6e:da:f6:68:d7:9c:76:29: 8f:d4:1e:11:f5:dd:73:e4:76:1a:5f:1f:4c:b5:e9: 61:70:11:33:14:b3:fa:03:a9:85:2a:b2:3d:8e:79: f6:52:42:74:09:11:6b:58:56:41:61:31:6f:71:a3: 30:a5:88:9e:99:c1:17:d4:d2:35:ca:b9:dc:a8:d1: 1d:af:fa:2d:8a:05:79:ce:d1:59:4a:2f:dc:e0:6d: ca:1b:68:13:81:1c:d4:0d:ab:2f:0b:e3:20:9e:5d: 22:fa:3c:1a:2b:40:4e:78:ac:bb:6f:81:b4:a9:d7: 29:84:62:f9:b9:bd:ef:56:41:11:ea:ce:d6:80:2f: 65:85:9e:23:bc:f5:18:7a:81:0b:43:8c:fa:47:50: 84:9a:c4:41:16:44:78:ae:38:2f:1b:0c:56:0c:aa: f3:d5:11:54:05:bc:e8:6e:de:c3:13:ef:c1:73:2f: cd:be:76:08:0c:bb:46:41:94:9b:94:fb:e8:cb:b5: 43:12:ca:69:2c:41:1d:2f:3a:a7:ad:47:80:b0:3e: fe:4b:e6:59:bd:ea:35:6a:ed:9c:01:ab:e9:b5:5f: 96:8d:ae:be:52:fd:7d:f8:19:61:43:4f:15:17:1c: b9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7800::/32 2406:bb00::/29 Signature Algorithm: sha256WithRSAEncryption 8f:2f:2c:dd:72:b8:56:47:52:52:78:39:1d:9b:25:5f:7d:67: 97:59:f1:5f:42:07:07:73:45:88:52:91:4f:d2:0a:5e:fe:72: ae:5f:5b:95:77:1d:2b:90:a7:73:fc:29:2d:a6:34:27:25:0b: db:ce:ce:4c:32:fe:2b:00:68:df:6c:8f:3c:87:f5:18:95:80: d3:6d:b4:07:87:25:c5:cf:8d:af:91:f0:d3:b5:01:d8:fd:e0: 04:6b:bf:2a:4c:d8:d8:f8:04:5d:33:96:11:45:06:a4:57:ee: 61:b7:fb:1f:70:18:eb:a6:0d:6c:70:a3:93:36:d4:b4:51:f6: 1c:cf:5e:8d:98:d9:9d:04:71:f9:6d:3b:89:bf:0e:d8:cf:2f: 16:6f:fc:3a:d6:ad:2e:ef:73:d6:db:e7:2c:c4:5c:2c:30:f4: 57:df:b6:52:0a:34:e5:ef:a8:92:5f:a3:53:b7:a7:88:35:bd: 68:45:0d:a7:19:41:bb:98:34:df:97:c6:5e:72:3a:fe:66:40: d8:cf:bb:9d:29:c5:82:a9:25:b8:40:88:7a:43:15:1d:c4:83: 79:b1:83:a0:04:9a:98:cb:dd:2d:02:49:dd:8d:37:e5:1e:e9: eb:85:45:63:e1:ea:81:18:a0:a9:58:05:90:cf:e6:7c:97:2d: 5a:5b:74:16 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICVRYwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDczMDA2MzcxN1oXDTI2MDczMDA2MjkwOFowMzEx MC8GA1UEAxMoRDEwRDg4NjU4MkJEREY0OEIwNDE4NTFDMzhDMEI2MzIxMTVGNUMy MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1Y7s78VZTcx3oOm6Bx bTTY2KnSQm7a9mjXnHYpj9QeEfXdc+R2Gl8fTLXpYXARMxSz+gOphSqyPY559lJC dAkRa1hWQWExb3GjMKWInpnBF9TSNcq53KjRHa/6LYoFec7RWUov3OBtyhtoE4Ec 1A2rLwvjIJ5dIvo8GitATnisu2+BtKnXKYRi+bm971ZBEerO1oAvZYWeI7z1GHqB C0OM+kdQhJrEQRZEeK44LxsMVgyq89URVAW86G7ewxPvwXMvzb52CAy7RkGUm5T7 6Mu1QxLKaSxBHS86p61HgLA+/kvmWb3qNWrtnAGr6bVflo2uvlL9ffgZYUNPFRcc uZcCAwEAAaOCApMwggKPMB0GA1UdDgQWBBTRDYhlgr3fSLBBhRw4wLYyEV9cITAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAyMjgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMjI4LzBR MklaWUs5MzBpd1FZVWNPTUMyTWhGZlhDRS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAkA3gAAwUDJAa7ADAN BgkqhkiG9w0BAQsFAAOCAQEAjy8s3XK4VkdSUng5HZslX31nl1nxX0IHB3NFiFKR T9IKXv5yrl9blXcdK5Cnc/wpLaY0JyUL287OTDL+KwBo32yPPIf1GJWA0220B4cl xc+Nr5Hw07UB2P3gBGu/KkzY2PgEXTOWEUUGpFfuYbf7H3AY66YNbHCjkzbUtFH2 HM9ejZjZnQRx+W07ib8O2M8vFm/8OtatLu9z1tvnLMRcLDD0V9+2Ugo05e+okl+j U7eniDW9aEUNpxlBu5g035fGXnI6/mZA2M+7nSnFgqkluECIekMVHcSDebGDoASa mMvdLQJJ3Y035R7p64VFY+HqgRigqVgFkM/mfJctWlt0Fg== -----END CERTIFICATE-----Generated at Mon Aug 11 08:04:09 2025 by rpki-client