$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/h-45TMixZRt1jziPc6iOaL0nIi8.cer File: h-45TMixZRt1jziPc6iOaL0nIi8.cer (raw, json) Hash identifier: zUrbOrYnFDq5kWOJjtSAkcvkCYJJjvWw5He35bs8ndQ= Subject key identifier: 87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 4743 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Sat 15 Mar 2025 01:34:02 +0000 Certificate not after: Sun 15 Mar 2026 01:30:03 +0000 Subordinate resources: IP: 113.212.104.0/22 IP: 122.200.128.0/22 IP: 203.79.48.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18243 (0x4743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000 Validity Not Before: Mar 15 01:34:02 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=87EE394CC8B1651B758F388F73A88E68BD27222F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cf:96:5c:6a:64:0a:a5:0e:b1:be:46:93:a4: 56:08:06:e7:af:ff:c6:b0:c0:5b:82:c6:63:e2:b5: 71:e2:52:08:1c:f0:b5:cf:01:34:10:d4:c0:18:31: ed:25:ec:35:8a:a1:3d:c3:c9:47:38:7e:1a:7b:bf: 30:dc:df:b3:bd:f6:ac:e3:d1:eb:c6:72:9d:e8:29: 71:e0:b6:f5:72:4a:be:e8:eb:b3:b1:f4:6d:76:55: 5d:51:e5:39:44:a1:0c:61:42:67:9a:c8:b9:75:bf: c6:ad:fa:ec:16:bc:f9:70:fd:20:55:5b:7c:2b:18: a7:4c:8d:cd:2f:ed:7f:25:c1:19:72:b0:bd:bd:ea: dd:11:c9:fe:a3:45:ff:f5:4a:94:3b:c9:ed:32:9e: d4:af:c8:85:ae:ec:b9:df:bb:21:94:2c:9f:6f:fb: cd:37:22:fb:57:e0:22:7d:aa:35:4e:0a:26:41:0a: ea:4b:28:22:a0:22:51:82:40:c3:31:6a:55:9a:4b: f2:5a:25:9c:eb:02:85:19:23:28:7e:54:f6:c9:0f: 1a:60:33:8f:9e:42:8b:3c:9e:0d:91:7b:a2:39:b0: 43:37:e5:27:47:9c:2d:68:89:de:f1:8a:52:37:c5: df:b5:ac:f1:9e:68:7a:98:d2:60:03:36:c7:ac:64: a3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.212.104.0/22 122.200.128.0/22 203.79.48.0/20 Signature Algorithm: sha256WithRSAEncryption a5:7e:34:80:74:ba:94:e7:d5:b9:4a:39:a4:9e:04:b2:7d:46: 7c:b6:f8:22:a0:dc:fd:e8:52:fa:1e:2f:36:24:e4:41:06:bb: 3f:ea:c4:d8:5a:2e:16:83:58:c1:9f:88:ac:eb:90:d2:bb:74: 04:8e:ad:9a:0a:85:a7:db:76:6b:af:41:3e:ba:5a:7f:66:48: c0:0c:4e:ec:aa:11:0c:e5:22:50:fe:52:e4:d6:6c:d9:6c:8f: 41:b2:05:f7:e1:e7:b5:ba:de:66:a6:6f:69:9d:ca:3f:d3:6f: b6:d4:0b:ec:a4:84:36:f2:c6:bb:d0:88:81:de:fc:86:0d:03: 30:9a:76:6f:65:30:dc:19:ea:4d:63:4d:ee:5f:75:66:48:db: 4a:45:af:15:86:b1:04:0c:a4:49:6b:a0:41:d0:c8:c3:f0:47: 35:63:cb:03:f7:dd:7b:19:9d:82:b3:ec:ba:98:67:6e:24:43: db:73:ca:18:ad:c7:3b:2a:80:4a:26:f9:50:1f:01:16:09:22: 23:3e:17:b8:bf:09:72:78:f1:0f:36:86:a3:1a:3e:55:04:33: c0:54:4d:d6:19:6d:c0:b9:98:4f:90:57:ce:1d:2f:09:d0:04: 2b:25:36:06:22:f4:f2:a9:5b:73:fc:be:d2:0d:28:db:9b:69: ba:8b:c0:01 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICR0MwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDMxNTAxMzQwMloXDTI2MDMxNTAxMzAwM1owMzEx MC8GA1UEAxMoODdFRTM5NENDOEIxNjUxQjc1OEYzODhGNzNBODhFNjhCRDI3MjIy RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKrPllxqZAqlDrG+RpOk VggG56//xrDAW4LGY+K1ceJSCBzwtc8BNBDUwBgx7SXsNYqhPcPJRzh+Gnu/MNzf s732rOPR68ZynegpceC29XJKvujrs7H0bXZVXVHlOUShDGFCZ5rIuXW/xq367Ba8 +XD9IFVbfCsYp0yNzS/tfyXBGXKwvb3q3RHJ/qNF//VKlDvJ7TKe1K/Iha7sud+7 IZQsn2/7zTci+1fgIn2qNU4KJkEK6ksoIqAiUYJAwzFqVZpL8lolnOsChRkjKH5U 9skPGmAzj55CizyeDZF7ojmwQzflJ0ecLWiJ3vGKUjfF37Ws8Z5oepjSYAM2x6xk o6cCAwEAAaOCApIwggKOMB0GA1UdDgQWBBSH7jlMyLFlG3WPOI9zqI5ovSciLzAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC84ODMvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzg4My9oLTQ1VE1p eFpSdDFqemlQYzZpT2FMMG5JaTgubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCcdRoAwQCesiAAwQEy08wMA0G CSqGSIb3DQEBCwUAA4IBAQClfjSAdLqU59W5SjmkngSyfUZ8tvgioNz96FL6Hi82 JORBBrs/6sTYWi4Wg1jBn4is65DSu3QEjq2aCoWn23Zrr0E+ulp/ZkjADE7sqhEM 5SJQ/lLk1mzZbI9BsgX34ee1ut5mpm9pnco/02+21AvspIQ28sa70IiB3vyGDQMw mnZvZTDcGepNY03uX3VmSNtKRa8VhrEEDKRJa6BB0MjD8Ec1Y8sD9917GZ2Cs+y6 mGduJEPbc8oYrcc7KoBKJvlQHwEWCSIjPhe4vwlyePEPNoajGj5VBDPAVE3WGW3A uZhPkFfOHS8J0AQrJTYGIvTyqVtz/L7SDSjbm2m6i8AB -----END CERTIFICATE-----Generated at Sat Apr 5 07:22:11 2025 by rpki-client