$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/4oKHAq-VJLLD1X4biwxkliVmlJw.cer File: 4oKHAq-VJLLD1X4biwxkliVmlJw.cer (raw, json) Hash identifier: ysULWgELB5ObfHWPCzynfoA3OkVYgju0AIjNZn+XjLk= Subject key identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 47A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Sat 15 Mar 2025 01:36:03 +0000 Certificate not after: Sun 15 Mar 2026 01:30:03 +0000 Subordinate resources: IP: 2407:58c0::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18341 (0x47a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000 Validity Not Before: Mar 15 01:36:03 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E2828702AF9524B2C3D57E1B8B0C64962566949C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:f9:3f:55:c9:c1:51:e3:78:cc:6b:2a:f6: 53:0a:24:1c:59:3f:17:10:18:32:ea:2b:24:8a:fd: 6b:ae:2c:ce:fb:8d:dc:74:1c:4d:6c:e3:39:72:0c: ed:09:04:37:88:5c:92:0c:94:8e:73:aa:0f:2f:2d: 3a:3a:1f:eb:62:32:99:f4:a8:85:ca:bf:6a:80:01: 04:2c:80:1c:76:e6:71:7a:2f:4f:0b:17:4a:7c:fa: 04:f2:9a:9f:74:c1:63:15:4c:51:9c:25:13:cd:9c: b4:8a:27:cf:4f:24:6d:18:cc:d3:1a:20:2e:92:43: 3f:f9:4a:3f:e7:d2:a9:75:14:9c:d2:d0:62:8f:23: 4e:ee:5d:df:29:d6:f8:18:b1:99:55:3f:f4:20:e2: 17:28:63:03:b2:d0:02:8f:b8:cb:18:0b:69:50:16: 3c:17:44:45:3b:c5:d8:80:c3:8c:ae:8e:cb:c5:86: 3f:94:59:5a:8b:cf:b9:bc:69:8b:23:77:39:98:72: 90:fd:28:de:be:cb:b8:68:5e:bd:54:7b:8d:69:98: 77:eb:14:6d:ca:86:40:97:bc:4e:3d:6f:bb:e8:1f: 0c:ca:45:30:88:5c:c3:d0:ee:f9:c7:f6:7d:c2:10: d2:90:14:97:ff:00:fa:af:bb:dd:62:fc:a7:41:a5: 84:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:58c0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:ad:ac:7b:6e:f4:22:32:f3:9d:5b:a6:08:5e:3a:f6:95:9a: 83:bf:8a:0d:72:23:3f:3d:85:1c:6a:c5:3d:15:22:23:3a:cf: 88:08:72:13:59:b7:3f:7c:57:b2:dc:52:38:d5:21:05:20:16: 83:27:bc:f3:bd:d6:9f:e5:11:62:43:fa:ea:b4:9c:11:f4:29: e2:37:c6:65:25:a8:ef:7d:2e:1f:05:80:0b:7e:bf:ef:9d:0f: 7b:dd:6b:04:df:8d:c6:be:22:8f:06:31:9b:37:ef:18:7d:a8: 11:4d:9a:e8:39:cd:e7:71:f0:d0:b5:11:66:bf:da:3d:1b:f1: 41:95:19:ec:28:ab:a8:a7:4b:56:e4:2b:44:ae:36:7d:68:48: 5f:0c:69:c4:79:fd:d5:f7:4d:bd:97:e1:36:c2:7b:7c:f4:4b: da:e2:b7:4b:31:5b:26:f5:43:69:e5:cf:8a:6f:2b:bc:a9:b3: 8f:77:78:f0:9c:f4:7c:4c:7d:6d:79:a8:18:eb:57:b1:54:66: 41:30:a8:ed:0d:e8:b2:8d:ee:f2:44:b4:dd:25:ef:0b:5c:18: 84:64:22:2e:0d:68:38:ce:2d:b1:26:66:4d:dc:08:8f:6a:31: d2:f0:11:bb:7e:e2:fa:2f:0d:4d:49:e5:fa:cd:f8:21:b5:a2: c0:cc:75:4d -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICR6UwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDMxNTAxMzYwM1oXDTI2MDMxNTAxMzAwM1owMzEx MC8GA1UEAxMoRTI4Mjg3MDJBRjk1MjRCMkMzRDU3RTFCOEIwQzY0OTYyNTY2OTQ5 QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALR2+T9VycFR43jMayr2 UwokHFk/FxAYMuorJIr9a64szvuN3HQcTWzjOXIM7QkEN4hckgyUjnOqDy8tOjof 62IymfSohcq/aoABBCyAHHbmcXovTwsXSnz6BPKan3TBYxVMUZwlE82ctIonz08k bRjM0xogLpJDP/lKP+fSqXUUnNLQYo8jTu5d3ynW+BixmVU/9CDiFyhjA7LQAo+4 yxgLaVAWPBdERTvF2IDDjK6Oy8WGP5RZWovPubxpiyN3OZhykP0o3r7LuGhevVR7 jWmYd+sUbcqGQJe8Tj1vu+gfDMpFMIhcw9Du+cf2fcIQ0pAUl/8A+q+73WL8p0Gl hNcCAwEAAaOCAowwggKIMB0GA1UdDgQWBBTigocCr5UkssPVfhuLDGSWJWaUnDAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAzNzYvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMzc2LzRv S0hBcS1WSkxMRDFYNGJpd3hrbGlWbWxKdy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB1jAMA0GCSqGSIb3 DQEBCwUAA4IBAQA+rax7bvQiMvOdW6YIXjr2lZqDv4oNciM/PYUcasU9FSIjOs+I CHITWbc/fFey3FI41SEFIBaDJ7zzvdaf5RFiQ/rqtJwR9CniN8ZlJajvfS4fBYAL fr/vnQ973WsE343GviKPBjGbN+8YfagRTZroOc3ncfDQtRFmv9o9G/FBlRnsKKuo p0tW5CtErjZ9aEhfDGnEef3V9029l+E2wnt89Eva4rdLMVsm9UNp5c+Kbyu8qbOP d3jwnPR8TH1teagY61exVGZBMKjtDeiyje7yRLTdJe8LXBiEZCIuDWg4zi2xJmZN 3AiPajHS8BG7fuL6Lw1NSeX6zfghtaLAzHVN -----END CERTIFICATE-----Generated at Sat Apr 5 07:22:47 2025 by rpki-client