$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer File: KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer (raw, json) Hash identifier: wwJ8zM+GWUpxRuDLMyFtwIruzF10DeeihWYIGrv4E/s= Subject key identifier: 29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 4778 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Sat 15 Mar 2025 01:35:07 +0000 Certificate not after: Sun 15 Mar 2026 01:30:03 +0000 Subordinate resources: IP: 2001:240::/32 IP: 2001:300::/32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18296 (0x4778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000 Validity Not Before: Mar 15 01:35:07 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2905A3EE8F9C361ABD971B0CA9726DF83CFA6BF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:77:a9:da:3a:c4:f9:6e:b7:22:96:4e:90: 4d:98:c1:a0:94:8a:12:f7:0f:72:dd:d1:d9:79:ce: a9:63:ee:7a:11:2b:10:98:a9:2b:b0:ab:32:04:cd: 93:92:d0:fc:cd:66:21:40:e6:4e:5b:97:9e:0f:eb: 00:5a:89:4e:a5:1e:7d:cc:48:ea:8a:15:19:d8:21: 48:79:6d:10:19:2d:6a:54:1b:b9:73:42:95:23:f5: a8:f0:58:b5:b9:be:24:2b:e1:d4:6c:9c:3f:29:db: 78:f9:63:dc:46:6d:ad:8f:ec:a8:9b:c2:7d:2a:4a: 40:b5:ba:70:5f:47:8f:17:15:c9:68:cb:dc:87:4e: a1:f6:b7:04:8f:68:5e:b5:40:08:60:bb:e9:13:3d: d2:d4:1b:c5:2d:aa:16:56:dd:bb:ec:83:1c:9f:3f: 07:ba:61:4b:af:05:00:71:62:bb:d0:28:af:98:5f: 32:55:8f:86:97:0c:3a:d1:2b:0d:bf:e8:79:93:5e: ca:71:92:1f:e5:31:d4:60:b0:03:52:9f:69:ca:92: 03:6d:85:66:dd:18:5c:d8:34:ac:ac:3e:ae:1e:1f: 58:67:ea:71:b9:c2:99:0e:73:b5:c6:56:e4:b2:88: 9e:cf:c6:59:af:a5:c7:e8:fb:df:78:de:d0:63:68: 8f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:240::/32 2001:300::/32 Signature Algorithm: sha256WithRSAEncryption 35:d3:8f:d2:1d:08:49:da:4a:50:5c:f7:38:82:e3:e7:10:64: c3:e0:e8:cb:17:4d:f0:16:58:77:dc:73:4c:28:a7:b7:0c:7e: 64:8e:cb:73:28:30:10:c8:3c:02:92:59:dd:35:b7:6b:f9:70: 62:cd:a1:62:1b:65:d1:a0:92:ab:6a:6b:0a:ae:a9:44:2b:c7: db:e1:8e:4a:8e:5a:3c:5a:c8:af:99:33:39:30:3e:c0:7a:28: b3:2d:c3:a5:8b:d3:37:29:42:2c:2d:27:30:38:0c:25:2d:dd: 79:bb:9f:6d:5b:8f:98:79:f9:d5:01:80:2b:59:96:23:6a:9e: c1:9a:9d:66:b6:ed:5d:34:20:7a:b1:d8:49:82:68:86:0b:f8: 05:b1:88:75:92:76:1d:24:0b:a6:31:a6:50:3b:21:31:31:39: 06:0a:6a:85:af:5d:5b:9d:ce:6a:87:5c:aa:6e:bf:38:3b:f6: f2:3d:f5:69:ec:a9:65:92:c4:78:5f:c3:72:69:25:4f:24:a6: 8c:b5:07:43:35:83:b3:4d:50:3c:cd:07:aa:83:44:b9:be:d8: ed:0d:5c:5d:ac:69:bf:ca:73:d2:41:c1:a5:0a:29:cf:0d:29: df:2e:98:ab:a8:03:b0:82:f7:87:de:78:f8:f2:f4:91:83:fe: cb:87:8d:fd -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICR3gwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDMxNTAxMzUwN1oXDTI2MDMxNTAxMzAwM1owMzEx MC8GA1UEAxMoMjkwNUEzRUU4RjlDMzYxQUJEOTcxQjBDQTk3MjZERjgzQ0ZBNkJG ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMevd6naOsT5brcilk6Q TZjBoJSKEvcPct3R2XnOqWPuehErEJipK7CrMgTNk5LQ/M1mIUDmTluXng/rAFqJ TqUefcxI6ooVGdghSHltEBktalQbuXNClSP1qPBYtbm+JCvh1GycPynbePlj3EZt rY/sqJvCfSpKQLW6cF9HjxcVyWjL3IdOofa3BI9oXrVACGC76RM90tQbxS2qFlbd u+yDHJ8/B7phS68FAHFiu9Aor5hfMlWPhpcMOtErDb/oeZNeynGSH+Ux1GCwA1Kf acqSA22FZt0YXNg0rKw+rh4fWGfqcbnCmQ5ztcZW5LKIns/GWa+lx+j733je0GNo j+MCAwEAAaOCApMwggKPMB0GA1UdDgQWBBQpBaPuj5w2Gr2XGwypcm34PPpr+DAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwMTYvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDE2L0tR V2o3by1jTmhxOWx4c01xWEp0LUR6NmFfZy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgACMA4DBQAgAQJAAwUAIAEDADAN BgkqhkiG9w0BAQsFAAOCAQEANdOP0h0ISdpKUFz3OILj5xBkw+DoyxdN8BZYd9xz TCintwx+ZI7LcygwEMg8ApJZ3TW3a/lwYs2hYhtl0aCSq2prCq6pRCvH2+GOSo5a PFrIr5kzOTA+wHoosy3DpYvTNylCLC0nMDgMJS3debufbVuPmHn51QGAK1mWI2qe wZqdZrbtXTQgerHYSYJohgv4BbGIdZJ2HSQLpjGmUDshMTE5Bgpqha9dW53Oaodc qm6/ODv28j31aeypZZLEeF/DcmklTySmjLUHQzWDs01QPM0HqoNEub7Y7Q1cXaxp v8pz0kHBpQopzw0p3y6Yq6gDsIL3h954+PL0kYP+y4eN/Q== -----END CERTIFICATE-----Generated at Sat Apr 5 07:20:47 2025 by rpki-client