$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/Z64ho8fUeCtFtr3BS4oSDQYXq0I.cer File: Z64ho8fUeCtFtr3BS4oSDQYXq0I.cer (raw, json) Hash identifier: FqEKST6LKffV803KTJ01digppdggh0m4Yo9fRMce+qg= Subject key identifier: 67:AE:21:A3:C7:D4:78:2B:45:B6:BD:C1:4B:8A:12:0D:06:17:AB:42 Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 11AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Jul 2025 01:42:28 +0000 Certificate not after: Wed 15 Jul 2026 01:30:01 +0000 Subordinate resources: IP: 158.199.112.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4523 (0x11ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: Jul 15 01:42:28 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=67AE21A3C7D4782B45B6BDC14B8A120D0617AB42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:81:af:10:dd:90:a0:15:e1:6a:fc:2b:7e: 8a:8a:ee:0f:3f:4c:81:fb:92:ec:b1:05:ff:55:6c: d7:4f:74:1f:c0:b9:f1:fb:34:72:6e:85:0d:7d:0a: c9:75:bc:cd:10:ce:3c:cb:1a:99:0f:00:bb:e7:16: 4f:31:8c:e0:a3:db:69:37:13:6d:b5:eb:17:f9:5c: e2:a3:5f:c3:71:d7:a9:d0:c4:c0:a4:a6:b3:21:03: 12:50:0a:b3:8d:1a:10:47:d8:9e:47:e5:f9:4e:a7: 59:e2:32:1e:df:e5:76:a2:7d:51:26:7d:10:e3:50: a5:36:be:b4:98:e7:97:09:46:9d:28:66:e2:5c:5a: b1:95:2e:03:e9:6e:7e:1b:4a:48:36:f9:53:05:93: 0e:54:c1:90:44:bb:3a:be:bf:0d:bd:0d:74:47:6c: 8b:97:82:80:e9:da:f4:ae:39:a2:5d:92:40:b1:c9: 22:a1:bd:7d:b7:6e:f9:6b:42:34:6f:fd:9a:87:df: 63:76:cc:0b:28:29:95:6b:2c:06:50:fb:63:e9:b3: fb:a5:ed:a9:d4:e7:d6:99:ff:39:f0:dc:57:23:1c: 22:be:bd:0b:7a:d6:08:9c:90:ad:f7:8e:f7:a6:a7: 0b:92:f6:20:ff:8f:70:d6:81:7a:11:84:79:d8:29: 83:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AE:21:A3:C7:D4:78:2B:45:B6:BD:C1:4B:8A:12:0D:06:17:AB:42 X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/Z64ho8fUeCtFtr3BS4oSDQYXq0I.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.199.112.0/20 Signature Algorithm: sha256WithRSAEncryption 09:e1:57:1f:70:e5:b8:42:10:6e:b3:2b:6c:27:ee:fe:41:9d: f0:46:03:7d:13:c1:7d:3f:86:a1:49:28:23:f3:1a:9a:5b:19: 80:52:a1:3b:4e:a7:bb:a5:b4:3c:7d:ac:d3:4c:6c:1a:64:e8: ca:12:14:79:ae:85:06:b8:16:8b:f9:33:a8:f2:8a:4f:c8:3a: 95:18:90:c1:fa:7f:8e:6a:c1:85:2e:4e:21:6b:52:68:ad:34: 50:b2:22:a9:d4:ab:47:2a:00:c5:a7:dd:9e:42:78:74:2f:b3: 40:22:9f:0b:c8:aa:58:c0:58:17:96:7f:74:80:83:32:b0:a0: 7c:95:3c:b9:db:58:ae:65:ed:d3:5e:23:7b:3a:6d:2d:c8:6b: d5:6e:8b:80:b3:83:4d:b9:12:c8:af:25:63:3c:1d:68:dc:3c: d2:ef:35:25:d1:47:31:18:f2:0a:5a:5c:af:7a:e5:45:16:f2: eb:d9:93:fb:f8:eb:e2:0a:19:9a:8a:38:d5:0a:3f:2a:17:9c: b2:f3:82:16:3a:f5:8b:13:8a:32:e1:f5:e3:0a:60:82:1d:f0: fa:de:a5:7f:74:f5:fc:31:fb:e8:ba:27:af:47:92:0c:9e:72: bb:94:db:6d:23:7e:79:de:d9:ba:8c:17:81:dc:31:80:d2:4f: 72:53:fd:ef -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICEaswDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI1MDcxNTAxNDIyOFoXDTI2MDcxNTAxMzAwMVowMzEx MC8GA1UEAxMoNjdBRTIxQTNDN0Q0NzgyQjQ1QjZCREMxNEI4QTEyMEQwNjE3QUI0 MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKJgga8Q3ZCgFeFq/Ct+ ioruDz9MgfuS7LEF/1Vs1090H8C58fs0cm6FDX0KyXW8zRDOPMsamQ8Au+cWTzGM 4KPbaTcTbbXrF/lc4qNfw3HXqdDEwKSmsyEDElAKs40aEEfYnkfl+U6nWeIyHt/l dqJ9USZ9EONQpTa+tJjnlwlGnShm4lxasZUuA+lufhtKSDb5UwWTDlTBkES7Or6/ Db0NdEdsi5eCgOna9K45ol2SQLHJIqG9fbdu+WtCNG/9moffY3bMCygplWssBlD7 Y+mz+6XtqdTn1pn/OfDcVyMcIr69C3rWCJyQrfeO96anC5L2IP+PcNaBehGEedgp g0cCAwEAAaOCAoYwggKCMB0GA1UdDgQWBBRnriGjx9R4K0W2vcFLihINBherQjAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC82NTUvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzY1NS9aNjRobzhm VWVDdEZ0cjNCUzRvU0RRWVhxMEkubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnsdwMA0GCSqGSIb3DQEBCwUA A4IBAQAJ4VcfcOW4QhBusytsJ+7+QZ3wRgN9E8F9P4ahSSgj8xqaWxmAUqE7Tqe7 pbQ8fazTTGwaZOjKEhR5roUGuBaL+TOo8opPyDqVGJDB+n+OasGFLk4ha1JorTRQ siKp1KtHKgDFp92eQnh0L7NAIp8LyKpYwFgXln90gIMysKB8lTy521iuZe3TXiN7 Om0tyGvVbouAs4NNuRLIryVjPB1o3DzS7zUl0UcxGPIKWlyveuVFFvLr2ZP7+Ovi ChmaijjVCj8qF5yy84IWOvWLE4oy4fXjCmCCHfD63qV/dPX8MfvouievR5IMnnK7 lNttI3553tm6jBeB3DGA0k9yU/3v -----END CERTIFICATE-----Generated at Mon Jul 21 08:46:27 2025 by rpki-client