$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/BqhITfT7r-XEjZiKBGtqtqgbLfM.cer File: BqhITfT7r-XEjZiKBGtqtqgbLfM.cer (raw, json) Hash identifier: SU1CzlYCFxROf8xGIXVpQVkh7LRPD437iiVHbpfrL+M= Subject key identifier: 06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 66B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 15 Apr 2026 01:35:13 +0000 Certificate not after: Thu 15 Apr 2027 01:30:02 +0000 Subordinate resources: IP: 27.133.208.0/20 IP: 103.167.206.0/23 IP: 180.233.136.0/21 IP: 203.80.24.0/21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26289 (0x66b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Apr 15 01:35:13 2026 GMT Not After : Apr 15 01:30:02 2027 GMT Subject: CN=06A8484DF4FBAFE5C48D988A046B6AB6A81B2DF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d4:1a:54:d1:79:95:63:8d:d9:f8:fa:88:34: 9f:93:2c:ba:66:86:45:4b:3d:fb:b7:71:c4:dc:6a: d7:a0:73:a1:c5:6f:f7:7f:83:2c:a7:cb:16:b0:cd: b7:6b:8d:dc:f7:b3:e7:6b:3e:1a:26:ae:b3:4d:8d: 84:e9:ba:fa:9a:00:a8:f7:19:c1:9c:09:4d:9f:3b: a6:69:49:d6:d5:3a:b8:dc:60:f0:10:79:12:79:fd: 7a:6e:68:f1:b2:61:7d:ae:9d:86:9b:bf:e9:b7:df: ad:a9:03:3c:b9:65:ca:f4:6e:c8:23:70:6a:ce:51: 36:b1:c3:ea:9e:93:4c:87:ca:c2:bb:cf:d4:d2:08: ba:23:dc:67:24:0e:d0:2a:9a:ff:41:8b:69:28:0e: 6b:57:69:4e:74:86:fc:63:58:f0:ad:e7:ac:64:ab: 5e:9c:29:1f:31:d4:63:31:d5:f3:81:30:4d:ee:6d: 90:4f:74:f9:03:66:3d:55:47:26:e5:df:bd:60:ea: e7:d0:92:36:50:7f:e2:88:e7:67:8d:15:ac:61:b9: cd:50:e8:b9:b6:3c:c3:4e:08:8e:75:55:8a:b8:69: 7f:db:d5:a2:33:bb:99:63:97:29:52:fc:ec:a7:77: 7a:c2:3c:76:a3:4a:e3:22:c9:25:76:7e:1d:b5:d4: 4d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.208.0/20 103.167.206.0/23 180.233.136.0/21 203.80.24.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:68:27:80:73:f8:b7:95:2e:82:42:c2:34:5d:8c:39:e5:09: 53:c3:be:15:b4:3a:55:53:4c:f2:fb:ef:a3:28:41:94:d7:71: 65:b7:10:42:c2:c5:6e:b7:f3:8a:a3:91:14:e8:e0:7c:cc:64: 30:cf:6f:75:7b:6e:bb:99:f6:9e:6b:35:60:8e:fb:5a:34:4a: b4:88:42:ce:52:99:40:43:00:a1:f9:71:71:63:9d:85:f1:cf: 18:a2:a8:9a:35:7a:2f:8c:26:f4:42:6c:47:9d:2b:91:35:b4: c5:d3:b3:8c:7d:1e:2b:2b:b2:57:28:33:0c:3f:9f:ee:a9:9b: bf:1e:7e:72:64:3a:bc:06:e5:21:82:70:94:0f:57:47:14:94: a5:dc:ae:ad:15:6b:e9:7b:71:a7:38:a2:a0:ab:94:c6:f1:0c: a1:ee:7e:e8:77:48:97:50:8f:d6:58:f8:e7:23:ef:b9:c5:5d: e9:f8:ab:ea:af:13:b8:49:51:25:bc:d0:ef:05:e6:6e:db:6d: f0:71:1b:fa:89:6c:7b:39:90:c1:7f:52:67:99:b5:5e:aa:78: 21:53:84:ac:e0:6d:28:d9:36:65:ae:21:51:37:57:5f:37:24: 3a:73:3b:de:bc:fd:8f:21:f0:24:bb:2f:86:e6:d0:e3:fb:76: dc:d4:9f:a5 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICZrEwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI2MDQxNTAxMzUxM1oXDTI3MDQxNTAxMzAwMlowMzEx MC8GA1UEAxMoMDZBODQ4NERGNEZCQUZFNUM0OEQ5ODhBMDQ2QjZBQjZBODFCMkRG MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMbUGlTReZVjjdn4+og0 n5MsumaGRUs9+7dxxNxq16BzocVv93+DLKfLFrDNt2uN3Pez52s+Giaus02NhOm6 +poAqPcZwZwJTZ87pmlJ1tU6uNxg8BB5Enn9em5o8bJhfa6dhpu/6bffrakDPLll yvRuyCNwas5RNrHD6p6TTIfKwrvP1NIIuiPcZyQO0Cqa/0GLaSgOa1dpTnSG/GNY 8K3nrGSrXpwpHzHUYzHV84EwTe5tkE90+QNmPVVHJuXfvWDq59CSNlB/4ojnZ40V rGG5zVDoubY8w04IjnVVirhpf9vVojO7mWOXKVL87Kd3esI8dqNK4yLJJXZ+HbXU TdcCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQGqEhN9Puv5cSNmIoEa2q2qBst8zAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC85MjQvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzkyNC9CcWhJVGZU N3ItWEVqWmlLQkd0cXRxZ2JMZk0ubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQEG4XQAwQBZ6fOAwQDtOmIAwQD y1AYMA0GCSqGSIb3DQEBCwUAA4IBAQCaaCeAc/i3lS6CQsI0XYw55QlTw74VtDpV U0zy+++jKEGU13FltxBCwsVut/OKo5EU6OB8zGQwz291e267mfaeazVgjvtaNEq0 iELOUplAQwCh+XFxY52F8c8YoqiaNXovjCb0QmxHnSuRNbTF07OMfR4rK7JXKDMM P5/uqZu/Hn5yZDq8BuUhgnCUD1dHFJSl3K6tFWvpe3GnOKKgq5TG8Qyh7n7od0iX UI/WWPjnI++5xV3p+KvqrxO4SVElvNDvBeZu223wcRv6iWx7OZDBf1JnmbVeqngh U4Ss4G0o2TZlriFRN1dfNyQ6czvevP2PIfAkuy+G5tDj+3bc1J+l -----END CERTIFICATE-----Generated at Fri Apr 17 08:05:55 2026 by rpki-client