$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/pimqiuskKhP7NxpEyl4fKVenDhs.cer File: pimqiuskKhP7NxpEyl4fKVenDhs.cer (raw, json) Hash identifier: zTl+tJsqd6KVvCZVKBaEp/I9v6TQ7UsvKogAIunNYX4= Subject key identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 496A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Apr 2025 01:36:45 +0000 Certificate not after: Wed 15 Apr 2026 01:30:03 +0000 Subordinate resources: IP: 2001:268::/32 IP: 2001:2a0::/32 IP: 2001:2c8::/32 IP: 240f::/23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18794 (0x496a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Apr 15 01:36:45 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=A629AA8AEB242A13FB371A44CA5E1F2957A70E1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:16:94:24:d2:84:11:8c:5f:dc:a1:a2:61: 77:ac:ba:d9:45:2a:1a:53:ae:5d:80:25:b3:c4:ca: eb:40:26:b7:68:0d:24:a5:bc:30:3a:dc:25:6a:f7: e1:82:a5:4c:0f:d6:ab:3e:bf:d6:21:56:40:67:97: 3b:0a:d0:11:06:04:b1:ea:49:d7:f7:07:67:d0:3f: 02:80:b5:d0:6c:dd:f1:89:d2:98:d2:d7:76:f7:bc: ac:5d:87:4c:38:40:da:fa:d3:b6:45:00:e9:b1:57: 1e:a3:8d:98:c4:4f:9a:a2:cd:df:b5:d7:fa:e8:01: 89:a1:6e:f1:9e:c7:ab:46:fe:fd:5a:4c:7f:27:e9: 87:a5:52:99:f2:33:52:a8:a1:7f:c5:ce:33:32:a6: ad:05:8c:2b:03:df:f9:71:65:21:b3:8d:c7:b9:d0: 8a:37:cb:82:5f:b0:4e:fd:5d:25:7f:98:ba:61:8e: 90:c5:f5:dc:98:59:43:d4:a1:1e:a1:d0:12:de:72: 5c:f5:9c:5e:c3:f5:60:73:d5:23:7f:79:ae:df:c0: da:9b:3d:ce:bc:36:00:1c:b3:4a:52:77:68:03:33: 79:7a:43:ea:b3:ce:48:57:14:f2:79:46:7c:db:a2: ae:cb:46:d6:e6:c6:db:bc:07:81:05:e2:99:1e:93: 1c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:268::/32 2001:2a0::/32 2001:2c8::/32 240f::/23 Signature Algorithm: sha256WithRSAEncryption 0e:8d:59:c7:29:24:58:5b:6e:a8:f4:dc:78:8f:38:40:42:dd: 98:2f:92:c0:89:36:7e:94:17:c6:71:d0:3e:ff:ff:3b:d3:67: 74:47:27:af:5e:ed:65:e6:b4:cb:12:f6:6e:43:eb:d2:fe:a0: 66:8e:1a:d4:ab:02:4e:e9:56:ac:da:7c:e0:79:b6:0b:89:5e: 50:98:20:e3:a7:e0:38:df:f3:41:0b:b3:c7:56:02:fe:30:f2: d0:5f:64:eb:3d:67:a7:a5:80:f9:f9:ce:ea:90:4e:11:da:c6: a3:36:99:73:44:a2:f1:f6:2a:f6:c5:17:4d:76:da:0d:26:6c: 1a:05:8f:4d:fd:ad:a8:db:c4:23:bc:95:8d:2d:cb:62:25:b9: 9e:02:7f:9a:2d:e8:5d:53:35:1d:ea:01:95:0e:5b:22:d2:4e: ca:86:32:ec:8a:a3:b9:4e:08:c0:7c:e5:63:19:5d:ad:53:10: df:28:c9:9c:89:89:bc:80:11:cb:0b:c2:2e:4e:48:50:7c:d5: db:04:c8:7a:d2:24:87:40:51:2e:ca:54:7c:aa:e9:f1:ad:2e: 1d:4f:43:68:be:d6:8d:0c:50:d5:ec:89:28:34:c1:e8:68:fc: 47:fd:87:7b:f5:8d:1d:76:a3:88:cb:90:21:ea:cc:96:d9:b5: b7:d9:64:57 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICSWowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDQxNTAxMzY0NVoXDTI2MDQxNTAxMzAwM1owMzEx MC8GA1UEAxMoQTYyOUFBOEFFQjI0MkExM0ZCMzcxQTQ0Q0E1RTFGMjk1N0E3MEUx QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALLaFpQk0oQRjF/coaJh d6y62UUqGlOuXYAls8TK60Amt2gNJKW8MDrcJWr34YKlTA/Wqz6/1iFWQGeXOwrQ EQYEsepJ1/cHZ9A/AoC10Gzd8YnSmNLXdve8rF2HTDhA2vrTtkUA6bFXHqONmMRP mqLN37XX+ugBiaFu8Z7Hq0b+/VpMfyfph6VSmfIzUqihf8XOMzKmrQWMKwPf+XFl IbONx7nQijfLgl+wTv1dJX+YumGOkMX13JhZQ9ShHqHQEt5yXPWcXsP1YHPVI395 rt/A2ps9zrw2AByzSlJ3aAMzeXpD6rPOSFcU8nlGfNuirstG1ubG27wHgQXimR6T HBsCAwEAAaOCAqAwggKcMB0GA1UdDgQWBBSmKaqK6yQqE/s3GkTKXh8pV6cOGzAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwMTcvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDE3L3Bp bXFpdXNrS2hQN054cEV5bDRmS1ZlbkRocy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwNAYIKwYBBQUHAQcBAf8EJTAjMCEEAgACMBsDBQAgAQJoAwUAIAECoAMF ACABAsgDBAEkDwAwDQYJKoZIhvcNAQELBQADggEBAA6NWccpJFhbbqj03HiPOEBC 3ZgvksCJNn6UF8Zx0D7//zvTZ3RHJ69e7WXmtMsS9m5D69L+oGaOGtSrAk7pVqza fOB5tguJXlCYIOOn4Djf80ELs8dWAv4w8tBfZOs9Z6elgPn5zuqQThHaxqM2mXNE ovH2KvbFF0122g0mbBoFj039rajbxCO8lY0ty2IluZ4Cf5ot6F1TNR3qAZUOWyLS TsqGMuyKo7lOCMB85WMZXa1TEN8oyZyJibyAEcsLwi5OSFB81dsEyHrSJIdAUS7K VHyq6fGtLh1PQ2i+1o0MUNXsiSg0weho/Ef9h3v1jR12o4jLkCHqzJbZtbfZZFc= -----END CERTIFICATE-----Generated at Sat Apr 26 09:37:31 2025 by rpki-client