$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/BqhITfT7r-XEjZiKBGtqtqgbLfM.cer File: BqhITfT7r-XEjZiKBGtqtqgbLfM.cer (raw, json) Hash identifier: DL/56lgqZwfFBSDOe3rCMjHFpeoVy4bKUOGf8uAYkiM= Subject key identifier: 06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 555C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Wed 30 Jul 2025 06:39:32 +0000 Certificate not after: Thu 30 Jul 2026 06:29:08 +0000 Subordinate resources: IP: 27.133.208.0/20 IP: 103.167.206.0/23 IP: 180.233.136.0/21 IP: 203.80.24.0/21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21852 (0x555c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Jul 30 06:39:32 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=06A8484DF4FBAFE5C48D988A046B6AB6A81B2DF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d4:1a:54:d1:79:95:63:8d:d9:f8:fa:88:34: 9f:93:2c:ba:66:86:45:4b:3d:fb:b7:71:c4:dc:6a: d7:a0:73:a1:c5:6f:f7:7f:83:2c:a7:cb:16:b0:cd: b7:6b:8d:dc:f7:b3:e7:6b:3e:1a:26:ae:b3:4d:8d: 84:e9:ba:fa:9a:00:a8:f7:19:c1:9c:09:4d:9f:3b: a6:69:49:d6:d5:3a:b8:dc:60:f0:10:79:12:79:fd: 7a:6e:68:f1:b2:61:7d:ae:9d:86:9b:bf:e9:b7:df: ad:a9:03:3c:b9:65:ca:f4:6e:c8:23:70:6a:ce:51: 36:b1:c3:ea:9e:93:4c:87:ca:c2:bb:cf:d4:d2:08: ba:23:dc:67:24:0e:d0:2a:9a:ff:41:8b:69:28:0e: 6b:57:69:4e:74:86:fc:63:58:f0:ad:e7:ac:64:ab: 5e:9c:29:1f:31:d4:63:31:d5:f3:81:30:4d:ee:6d: 90:4f:74:f9:03:66:3d:55:47:26:e5:df:bd:60:ea: e7:d0:92:36:50:7f:e2:88:e7:67:8d:15:ac:61:b9: cd:50:e8:b9:b6:3c:c3:4e:08:8e:75:55:8a:b8:69: 7f:db:d5:a2:33:bb:99:63:97:29:52:fc:ec:a7:77: 7a:c2:3c:76:a3:4a:e3:22:c9:25:76:7e:1d:b5:d4: 4d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.208.0/20 103.167.206.0/23 180.233.136.0/21 203.80.24.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:30:d1:37:89:5a:e5:c0:d5:49:c0:8f:6e:f5:f5:b0:2a:55: df:06:43:28:e8:01:99:b7:3d:a7:61:a6:d3:e6:c8:49:76:15: 12:bd:03:9c:44:f2:50:23:84:cf:7c:04:f8:1b:81:b1:88:68: 22:9a:36:b1:51:df:20:92:75:3d:e3:bb:16:e6:be:26:df:60: 4f:a2:3f:6f:da:8f:cd:2a:34:5f:9f:ad:fa:5c:af:de:6a:a7: 94:7b:96:81:10:c3:46:f1:06:2b:91:60:62:e8:0e:35:ed:04: 3b:24:cc:b8:d2:16:18:f1:94:80:7b:6c:92:74:de:f8:b9:8c: a8:f9:1d:80:0f:6b:00:5d:3b:72:69:67:12:83:42:63:c0:10: 81:ce:eb:d3:fa:11:0f:86:b2:98:a2:f7:42:97:91:22:f2:04: a8:51:6c:89:7b:3c:97:5f:f4:11:65:39:94:9a:3b:27:1a:70: c8:cd:95:35:31:cb:26:1c:f8:2a:51:ab:20:c6:b6:3f:c7:a3: 8d:e5:ac:b6:2a:62:a2:c5:8e:2a:c1:71:68:b0:88:64:e8:15: 61:ea:b0:b0:b7:dc:06:0a:5c:b9:d0:6b:99:b7:0f:c6:1b:fd: bc:56:4e:1a:d6:99:d9:af:18:97:00:21:b4:f6:c6:a3:af:de: c5:a5:89:35 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICVVwwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDczMDA2MzkzMloXDTI2MDczMDA2MjkwOFowMzEx MC8GA1UEAxMoMDZBODQ4NERGNEZCQUZFNUM0OEQ5ODhBMDQ2QjZBQjZBODFCMkRG MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMbUGlTReZVjjdn4+og0 n5MsumaGRUs9+7dxxNxq16BzocVv93+DLKfLFrDNt2uN3Pez52s+Giaus02NhOm6 +poAqPcZwZwJTZ87pmlJ1tU6uNxg8BB5Enn9em5o8bJhfa6dhpu/6bffrakDPLll yvRuyCNwas5RNrHD6p6TTIfKwrvP1NIIuiPcZyQO0Cqa/0GLaSgOa1dpTnSG/GNY 8K3nrGSrXpwpHzHUYzHV84EwTe5tkE90+QNmPVVHJuXfvWDq59CSNlB/4ojnZ40V rGG5zVDoubY8w04IjnVVirhpf9vVojO7mWOXKVL87Kd3esI8dqNK4yLJJXZ+HbXU TdcCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQGqEhN9Puv5cSNmIoEa2q2qBst8zAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC85MjQvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzkyNC9CcWhJVGZU N3ItWEVqWmlLQkd0cXRxZ2JMZk0ubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQEG4XQAwQBZ6fOAwQDtOmIAwQD y1AYMA0GCSqGSIb3DQEBCwUAA4IBAQB9MNE3iVrlwNVJwI9u9fWwKlXfBkMo6AGZ tz2nYabT5shJdhUSvQOcRPJQI4TPfAT4G4GxiGgimjaxUd8gknU947sW5r4m32BP oj9v2o/NKjRfn636XK/eaqeUe5aBEMNG8QYrkWBi6A417QQ7JMy40hYY8ZSAe2yS dN74uYyo+R2AD2sAXTtyaWcSg0JjwBCBzuvT+hEPhrKYovdCl5Ei8gSoUWyJezyX X/QRZTmUmjsnGnDIzZU1McsmHPgqUasgxrY/x6ON5ay2KmKixY4qwXFosIhk6BVh 6rCwt9wGCly50GuZtw/GG/28Vk4a1pnZrxiXACG09sajr97FpYk1 -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:22 2025 by rpki-client