$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/4oKHAq-VJLLD1X4biwxkliVmlJw.cer File: 4oKHAq-VJLLD1X4biwxkliVmlJw.cer (raw, json) Hash identifier: Il9EDhvSdL+lCAUfvYlXeJLOVUsO30Q/jE+GtdBxvMs= Subject key identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 5294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Jul 2025 01:32:38 +0000 Certificate not after: Wed 15 Jul 2026 01:30:01 +0000 Subordinate resources: IP: 2407:58c0::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21140 (0x5294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Jul 15 01:32:38 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=E2828702AF9524B2C3D57E1B8B0C64962566949C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:f9:3f:55:c9:c1:51:e3:78:cc:6b:2a:f6: 53:0a:24:1c:59:3f:17:10:18:32:ea:2b:24:8a:fd: 6b:ae:2c:ce:fb:8d:dc:74:1c:4d:6c:e3:39:72:0c: ed:09:04:37:88:5c:92:0c:94:8e:73:aa:0f:2f:2d: 3a:3a:1f:eb:62:32:99:f4:a8:85:ca:bf:6a:80:01: 04:2c:80:1c:76:e6:71:7a:2f:4f:0b:17:4a:7c:fa: 04:f2:9a:9f:74:c1:63:15:4c:51:9c:25:13:cd:9c: b4:8a:27:cf:4f:24:6d:18:cc:d3:1a:20:2e:92:43: 3f:f9:4a:3f:e7:d2:a9:75:14:9c:d2:d0:62:8f:23: 4e:ee:5d:df:29:d6:f8:18:b1:99:55:3f:f4:20:e2: 17:28:63:03:b2:d0:02:8f:b8:cb:18:0b:69:50:16: 3c:17:44:45:3b:c5:d8:80:c3:8c:ae:8e:cb:c5:86: 3f:94:59:5a:8b:cf:b9:bc:69:8b:23:77:39:98:72: 90:fd:28:de:be:cb:b8:68:5e:bd:54:7b:8d:69:98: 77:eb:14:6d:ca:86:40:97:bc:4e:3d:6f:bb:e8:1f: 0c:ca:45:30:88:5c:c3:d0:ee:f9:c7:f6:7d:c2:10: d2:90:14:97:ff:00:fa:af:bb:dd:62:fc:a7:41:a5: 84:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:82:87:02:AF:95:24:B2:C3:D5:7E:1B:8B:0C:64:96:25:66:94:9C X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30376/4oKHAq-VJLLD1X4biwxkliVmlJw.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:58c0::/32 Signature Algorithm: sha256WithRSAEncryption 5f:c1:0d:b3:fa:0a:45:70:78:49:32:3c:51:e5:78:7c:61:9b: b2:32:40:ab:44:84:ab:77:3f:c0:76:12:cc:06:b2:4a:1e:3f: 7a:46:f3:1a:20:52:5d:91:a9:f3:e6:de:79:4e:29:b2:59:8d: d2:db:a4:6b:c7:af:3d:a0:1e:f8:24:ae:f8:bb:46:c0:ce:3d: ae:db:fc:67:a4:0e:23:5f:e7:dc:73:5b:18:04:7a:c0:c3:e6: 6f:47:da:06:e3:ed:ba:67:b8:6e:78:85:f4:d1:fe:28:4c:01: 4e:bf:4b:18:34:fb:79:f6:aa:58:3c:8a:dc:c8:d0:25:50:74: 07:55:7e:7b:de:d7:06:ef:99:47:02:d5:54:41:5b:d7:a0:f8: db:8d:ac:57:82:21:87:6d:13:d7:ab:79:18:b0:20:e6:ad:dc: 3a:a2:5f:87:f9:2c:6b:43:8b:6c:fb:83:04:e0:fb:f0:ee:34: 81:cd:56:dd:c9:30:43:38:75:53:5f:24:99:3e:40:73:8f:ee: e7:04:51:f7:3a:d6:62:72:c7:ad:52:3a:06:a0:b6:1a:f4:48: 0f:e0:76:b2:67:78:5f:85:22:5f:78:53:17:91:66:a4:93:33: 2a:a8:51:c5:f7:15:7c:bb:75:32:7e:ed:c1:e4:d2:44:36:11: f5:0a:51:86 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICUpQwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDcxNTAxMzIzOFoXDTI2MDcxNTAxMzAwMVowMzEx MC8GA1UEAxMoRTI4Mjg3MDJBRjk1MjRCMkMzRDU3RTFCOEIwQzY0OTYyNTY2OTQ5 QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALR2+T9VycFR43jMayr2 UwokHFk/FxAYMuorJIr9a64szvuN3HQcTWzjOXIM7QkEN4hckgyUjnOqDy8tOjof 62IymfSohcq/aoABBCyAHHbmcXovTwsXSnz6BPKan3TBYxVMUZwlE82ctIonz08k bRjM0xogLpJDP/lKP+fSqXUUnNLQYo8jTu5d3ynW+BixmVU/9CDiFyhjA7LQAo+4 yxgLaVAWPBdERTvF2IDDjK6Oy8WGP5RZWovPubxpiyN3OZhykP0o3r7LuGhevVR7 jWmYd+sUbcqGQJe8Tj1vu+gfDMpFMIhcw9Du+cf2fcIQ0pAUl/8A+q+73WL8p0Gl hNcCAwEAAaOCAowwggKIMB0GA1UdDgQWBBTigocCr5UkssPVfhuLDGSWJWaUnDAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAzNzYvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMzc2LzRv S0hBcS1WSkxMRDFYNGJpd3hrbGlWbWxKdy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB1jAMA0GCSqGSIb3 DQEBCwUAA4IBAQBfwQ2z+gpFcHhJMjxR5Xh8YZuyMkCrRISrdz/AdhLMBrJKHj96 RvMaIFJdkanz5t55TimyWY3S26Rrx689oB74JK74u0bAzj2u2/xnpA4jX+fcc1sY BHrAw+ZvR9oG4+26Z7hueIX00f4oTAFOv0sYNPt59qpYPIrcyNAlUHQHVX573tcG 75lHAtVUQVvXoPjbjaxXgiGHbRPXq3kYsCDmrdw6ol+H+SxrQ4ts+4ME4Pvw7jSB zVbdyTBDOHVTXySZPkBzj+7nBFH3OtZicsetUjoGoLYa9EgP4HayZ3hfhSJfeFMX kWakkzMqqFHF9xV8u3Uyfu3B5NJENhH1ClGG -----END CERTIFICATE-----Generated at Mon Jul 21 08:48:32 2025 by rpki-client