$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer File: 0Q2IZYK930iwQYUcOMC2MhFfXCE.cer (raw, json) Hash identifier: S6SHMO5kMHnsDRFUoWiYx1uGP4/PJNlCtPlfGRVEUkg= Subject key identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 585E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Mon 15 Sep 2025 01:33:01 +0000 Certificate not after: Tue 15 Sep 2026 01:30:02 +0000 Subordinate resources: IP: 2403:7800::/32 IP: 2406:bb00::/29 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 14:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22622 (0x585e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Sep 15 01:33:01 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=D10D886582BDDF48B041851C38C0B632115F5C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:58:ee:ce:fc:55:94:dc:c7:7a:0e:9b:a0:71: 6d:34:d8:d8:a9:d2:42:6e:da:f6:68:d7:9c:76:29: 8f:d4:1e:11:f5:dd:73:e4:76:1a:5f:1f:4c:b5:e9: 61:70:11:33:14:b3:fa:03:a9:85:2a:b2:3d:8e:79: f6:52:42:74:09:11:6b:58:56:41:61:31:6f:71:a3: 30:a5:88:9e:99:c1:17:d4:d2:35:ca:b9:dc:a8:d1: 1d:af:fa:2d:8a:05:79:ce:d1:59:4a:2f:dc:e0:6d: ca:1b:68:13:81:1c:d4:0d:ab:2f:0b:e3:20:9e:5d: 22:fa:3c:1a:2b:40:4e:78:ac:bb:6f:81:b4:a9:d7: 29:84:62:f9:b9:bd:ef:56:41:11:ea:ce:d6:80:2f: 65:85:9e:23:bc:f5:18:7a:81:0b:43:8c:fa:47:50: 84:9a:c4:41:16:44:78:ae:38:2f:1b:0c:56:0c:aa: f3:d5:11:54:05:bc:e8:6e:de:c3:13:ef:c1:73:2f: cd:be:76:08:0c:bb:46:41:94:9b:94:fb:e8:cb:b5: 43:12:ca:69:2c:41:1d:2f:3a:a7:ad:47:80:b0:3e: fe:4b:e6:59:bd:ea:35:6a:ed:9c:01:ab:e9:b5:5f: 96:8d:ae:be:52:fd:7d:f8:19:61:43:4f:15:17:1c: b9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7800::/32 2406:bb00::/29 Signature Algorithm: sha256WithRSAEncryption 69:90:59:e1:2b:31:75:cf:87:df:4d:01:0b:03:da:97:49:9a: 74:29:86:6d:6f:27:67:b7:20:e3:b9:86:f0:96:87:4c:54:7e: f9:79:e9:fa:1b:91:c5:1b:1f:f5:bf:6c:dc:c1:96:68:20:18: 7b:fc:cc:d4:a9:2c:21:7a:28:6c:cc:bc:bb:71:00:35:65:66: 3d:21:55:7e:ea:ba:f0:26:d3:84:ec:a8:c2:3b:26:91:82:a5: 44:77:1a:b0:de:eb:42:44:26:5e:81:58:f9:99:7e:2f:b0:8c: 4c:3c:e4:da:b4:68:da:f9:4e:62:df:67:5c:db:c0:59:ed:77: 5f:ae:1f:26:df:7f:94:5e:ef:74:6d:b5:c6:f3:9f:b8:68:6a: b3:3c:2c:c2:55:41:c9:07:ab:f8:90:58:96:82:ab:18:97:40: 93:39:fb:53:83:64:28:28:53:9f:ac:0c:56:54:57:2c:95:94: 50:0e:67:ae:91:d3:8a:c6:3f:33:e7:6f:fe:76:5d:de:59:93: ff:5c:a6:f2:33:cb:ef:d4:d9:fe:2b:55:15:a1:cd:92:7d:62: 47:0b:2d:b1:f9:9b:aa:51:e9:99:da:b8:13:1e:39:f3:a1:26: 07:0d:58:64:7c:cf:ba:78:ff:c2:75:39:83:a5:a0:27:ae:08: cc:e7:36:0e -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICWF4wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDkxNTAxMzMwMVoXDTI2MDkxNTAxMzAwMlowMzEx MC8GA1UEAxMoRDEwRDg4NjU4MkJEREY0OEIwNDE4NTFDMzhDMEI2MzIxMTVGNUMy MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1Y7s78VZTcx3oOm6Bx bTTY2KnSQm7a9mjXnHYpj9QeEfXdc+R2Gl8fTLXpYXARMxSz+gOphSqyPY559lJC dAkRa1hWQWExb3GjMKWInpnBF9TSNcq53KjRHa/6LYoFec7RWUov3OBtyhtoE4Ec 1A2rLwvjIJ5dIvo8GitATnisu2+BtKnXKYRi+bm971ZBEerO1oAvZYWeI7z1GHqB C0OM+kdQhJrEQRZEeK44LxsMVgyq89URVAW86G7ewxPvwXMvzb52CAy7RkGUm5T7 6Mu1QxLKaSxBHS86p61HgLA+/kvmWb3qNWrtnAGr6bVflo2uvlL9ffgZYUNPFRcc uZcCAwEAAaOCApMwggKPMB0GA1UdDgQWBBTRDYhlgr3fSLBBhRw4wLYyEV9cITAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAyMjgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMjI4LzBR MklaWUs5MzBpd1FZVWNPTUMyTWhGZlhDRS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAkA3gAAwUDJAa7ADAN BgkqhkiG9w0BAQsFAAOCAQEAaZBZ4Ssxdc+H300BCwPal0madCmGbW8nZ7cg47mG 8JaHTFR++Xnp+huRxRsf9b9s3MGWaCAYe/zM1KksIXoobMy8u3EANWVmPSFVfuq6 8CbThOyowjsmkYKlRHcasN7rQkQmXoFY+Zl+L7CMTDzk2rRo2vlOYt9nXNvAWe13 X64fJt9/lF7vdG21xvOfuGhqszwswlVByQer+JBYloKrGJdAkzn7U4NkKChTn6wM VlRXLJWUUA5nrpHTisY/M+dv/nZd3lmT/1ym8jPL79TZ/itVFaHNkn1iRwstsfmb qlHpmdq4Ex4586EmBw1YZHzPunj/wnU5g6WgJ64IzOc2Dg== -----END CERTIFICATE-----Generated at Wed Oct 8 15:41:38 2025 by rpki-client