$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/BqhITfT7r-XEjZiKBGtqtqgbLfM.cer File: BqhITfT7r-XEjZiKBGtqtqgbLfM.cer (raw, json) Hash identifier: PmTZHdIXjEULtalghgTyqBPVGcaP9EbWfjK33Au0eCk= Subject key identifier: 06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 4921 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Apr 2025 01:35:24 +0000 Certificate not after: Wed 15 Apr 2026 01:30:03 +0000 Subordinate resources: IP: 27.133.208.0/20 IP: 103.167.206.0/23 IP: 180.233.136.0/21 IP: 203.80.24.0/21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18721 (0x4921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Apr 15 01:35:24 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=06A8484DF4FBAFE5C48D988A046B6AB6A81B2DF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d4:1a:54:d1:79:95:63:8d:d9:f8:fa:88:34: 9f:93:2c:ba:66:86:45:4b:3d:fb:b7:71:c4:dc:6a: d7:a0:73:a1:c5:6f:f7:7f:83:2c:a7:cb:16:b0:cd: b7:6b:8d:dc:f7:b3:e7:6b:3e:1a:26:ae:b3:4d:8d: 84:e9:ba:fa:9a:00:a8:f7:19:c1:9c:09:4d:9f:3b: a6:69:49:d6:d5:3a:b8:dc:60:f0:10:79:12:79:fd: 7a:6e:68:f1:b2:61:7d:ae:9d:86:9b:bf:e9:b7:df: ad:a9:03:3c:b9:65:ca:f4:6e:c8:23:70:6a:ce:51: 36:b1:c3:ea:9e:93:4c:87:ca:c2:bb:cf:d4:d2:08: ba:23:dc:67:24:0e:d0:2a:9a:ff:41:8b:69:28:0e: 6b:57:69:4e:74:86:fc:63:58:f0:ad:e7:ac:64:ab: 5e:9c:29:1f:31:d4:63:31:d5:f3:81:30:4d:ee:6d: 90:4f:74:f9:03:66:3d:55:47:26:e5:df:bd:60:ea: e7:d0:92:36:50:7f:e2:88:e7:67:8d:15:ac:61:b9: cd:50:e8:b9:b6:3c:c3:4e:08:8e:75:55:8a:b8:69: 7f:db:d5:a2:33:bb:99:63:97:29:52:fc:ec:a7:77: 7a:c2:3c:76:a3:4a:e3:22:c9:25:76:7e:1d:b5:d4: 4d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.208.0/20 103.167.206.0/23 180.233.136.0/21 203.80.24.0/21 Signature Algorithm: sha256WithRSAEncryption 54:ef:77:4f:10:7c:2b:1b:a6:b8:e9:2a:99:7f:0f:6d:0e:04: eb:8d:af:60:e4:70:13:07:a3:d9:e0:ea:b9:15:33:c0:41:1b: d8:20:a3:fb:0b:6c:f6:c4:76:3a:6f:a1:87:66:3e:76:11:35: 64:80:c1:41:5c:7c:9c:7d:b6:4a:4d:a9:c3:a2:e3:bd:ca:a5: 21:2e:76:75:e9:c1:de:15:80:7d:66:8e:22:a1:3b:49:8e:b7: 9f:80:30:be:88:c3:05:59:f6:97:1a:ec:58:b8:bb:99:1c:04: 77:2c:08:7a:c4:a4:3f:12:2d:75:71:64:55:0f:b6:41:1f:30: ba:75:3b:64:50:ef:9c:6d:f3:04:19:16:cc:4d:30:09:63:68: 6d:e9:ea:21:98:7b:c3:6f:9c:04:8a:04:e6:7e:82:24:a8:cf: f4:7d:49:ea:5d:32:bd:eb:7e:9a:5e:a9:b9:44:09:70:65:bd: 8e:55:4d:ae:98:a2:eb:19:dd:96:ee:8a:52:bc:be:3b:17:9e: 16:5f:7e:63:8f:2b:c8:5e:eb:e5:d0:f0:dc:f3:10:49:22:3b: ba:be:f7:3b:ff:6a:b1:3e:2d:51:41:b7:b1:6a:83:b8:48:a5: ba:40:bf:f5:74:11:3f:d2:90:5d:f4:39:fa:e0:f4:84:95:95: 83:42:cd:01 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICSSEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDQxNTAxMzUyNFoXDTI2MDQxNTAxMzAwM1owMzEx MC8GA1UEAxMoMDZBODQ4NERGNEZCQUZFNUM0OEQ5ODhBMDQ2QjZBQjZBODFCMkRG MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMbUGlTReZVjjdn4+og0 n5MsumaGRUs9+7dxxNxq16BzocVv93+DLKfLFrDNt2uN3Pez52s+Giaus02NhOm6 +poAqPcZwZwJTZ87pmlJ1tU6uNxg8BB5Enn9em5o8bJhfa6dhpu/6bffrakDPLll yvRuyCNwas5RNrHD6p6TTIfKwrvP1NIIuiPcZyQO0Cqa/0GLaSgOa1dpTnSG/GNY 8K3nrGSrXpwpHzHUYzHV84EwTe5tkE90+QNmPVVHJuXfvWDq59CSNlB/4ojnZ40V rGG5zVDoubY8w04IjnVVirhpf9vVojO7mWOXKVL87Kd3esI8dqNK4yLJJXZ+HbXU TdcCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQGqEhN9Puv5cSNmIoEa2q2qBst8zAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC85MjQvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzkyNC9CcWhJVGZU N3ItWEVqWmlLQkd0cXRxZ2JMZk0ubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQEG4XQAwQBZ6fOAwQDtOmIAwQD y1AYMA0GCSqGSIb3DQEBCwUAA4IBAQBU73dPEHwrG6a46SqZfw9tDgTrja9g5HAT B6PZ4Oq5FTPAQRvYIKP7C2z2xHY6b6GHZj52ETVkgMFBXHycfbZKTanDouO9yqUh LnZ16cHeFYB9Zo4ioTtJjrefgDC+iMMFWfaXGuxYuLuZHAR3LAh6xKQ/Ei11cWRV D7ZBHzC6dTtkUO+cbfMEGRbMTTAJY2ht6eohmHvDb5wEigTmfoIkqM/0fUnqXTK9 636aXqm5RAlwZb2OVU2umKLrGd2W7opSvL47F54WX35jjyvIXuvl0PDc8xBJIju6 vvc7/2qxPi1RQbexaoO4SKW6QL/1dBE/0pBd9Dn64PSElZWDQs0B -----END CERTIFICATE-----Generated at Sat Apr 26 08:18:01 2025 by rpki-client