$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/h-45TMixZRt1jziPc6iOaL0nIi8.cer File: h-45TMixZRt1jziPc6iOaL0nIi8.cer (raw, json) Hash identifier: ft89gj7Zmhjam61sGZQ3SV0/fNW7edD7mUw17YkaHCk= Subject key identifier: 87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 5367 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Jul 2025 01:38:54 +0000 Certificate not after: Wed 15 Jul 2026 01:30:01 +0000 Subordinate resources: IP: 113.212.104.0/22 IP: 122.200.128.0/22 IP: 203.79.48.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 11:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21351 (0x5367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Jul 15 01:38:54 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=87EE394CC8B1651B758F388F73A88E68BD27222F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cf:96:5c:6a:64:0a:a5:0e:b1:be:46:93:a4: 56:08:06:e7:af:ff:c6:b0:c0:5b:82:c6:63:e2:b5: 71:e2:52:08:1c:f0:b5:cf:01:34:10:d4:c0:18:31: ed:25:ec:35:8a:a1:3d:c3:c9:47:38:7e:1a:7b:bf: 30:dc:df:b3:bd:f6:ac:e3:d1:eb:c6:72:9d:e8:29: 71:e0:b6:f5:72:4a:be:e8:eb:b3:b1:f4:6d:76:55: 5d:51:e5:39:44:a1:0c:61:42:67:9a:c8:b9:75:bf: c6:ad:fa:ec:16:bc:f9:70:fd:20:55:5b:7c:2b:18: a7:4c:8d:cd:2f:ed:7f:25:c1:19:72:b0:bd:bd:ea: dd:11:c9:fe:a3:45:ff:f5:4a:94:3b:c9:ed:32:9e: d4:af:c8:85:ae:ec:b9:df:bb:21:94:2c:9f:6f:fb: cd:37:22:fb:57:e0:22:7d:aa:35:4e:0a:26:41:0a: ea:4b:28:22:a0:22:51:82:40:c3:31:6a:55:9a:4b: f2:5a:25:9c:eb:02:85:19:23:28:7e:54:f6:c9:0f: 1a:60:33:8f:9e:42:8b:3c:9e:0d:91:7b:a2:39:b0: 43:37:e5:27:47:9c:2d:68:89:de:f1:8a:52:37:c5: df:b5:ac:f1:9e:68:7a:98:d2:60:03:36:c7:ac:64: a3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.212.104.0/22 122.200.128.0/22 203.79.48.0/20 Signature Algorithm: sha256WithRSAEncryption 32:7d:90:5e:c7:27:2d:63:c0:03:63:38:55:97:2f:a3:0e:4a: a5:5d:f5:0d:51:f7:93:88:ba:2f:6a:9f:b6:43:9b:d2:81:71: cf:fb:16:a0:dd:73:e1:3b:8e:de:c1:65:2f:2d:88:84:2d:15: e3:3f:65:cc:0e:6b:52:8c:d5:f2:01:12:54:87:21:b6:2c:89: 67:ce:ca:1d:87:9b:d9:cf:b3:1a:30:d0:f4:8e:af:7d:dd:1a: d5:e4:97:c9:95:f2:d1:ff:dd:25:29:c8:cc:63:db:76:d0:3f: cc:98:64:f6:5a:5b:8b:e3:85:26:7f:61:48:0e:97:0c:aa:3e: c8:e1:c9:9c:84:7c:1d:ad:5b:fd:a8:ef:7f:c4:68:41:c0:62: d6:74:28:ed:33:95:dd:d3:a2:3b:11:2f:75:2d:4e:1a:4c:b5: 73:30:13:56:39:a4:bf:78:c8:4b:4b:8c:05:87:86:4d:fb:00: 6d:c6:c6:8e:c3:c0:c5:d6:32:0d:98:a9:13:b6:18:d4:a4:6a: 3e:0a:9b:e3:64:42:a7:be:50:3b:5a:d7:40:8c:29:00:64:49: 1e:7f:f4:fc:b7:70:55:70:24:e9:2a:88:40:51:e8:17:f6:17: 31:6a:71:b1:b0:21:57:8d:85:be:0c:41:41:83:b5:48:d4:5b: 0d:a0:f9:e6 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICU2cwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDcxNTAxMzg1NFoXDTI2MDcxNTAxMzAwMVowMzEx MC8GA1UEAxMoODdFRTM5NENDOEIxNjUxQjc1OEYzODhGNzNBODhFNjhCRDI3MjIy RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKrPllxqZAqlDrG+RpOk VggG56//xrDAW4LGY+K1ceJSCBzwtc8BNBDUwBgx7SXsNYqhPcPJRzh+Gnu/MNzf s732rOPR68ZynegpceC29XJKvujrs7H0bXZVXVHlOUShDGFCZ5rIuXW/xq367Ba8 +XD9IFVbfCsYp0yNzS/tfyXBGXKwvb3q3RHJ/qNF//VKlDvJ7TKe1K/Iha7sud+7 IZQsn2/7zTci+1fgIn2qNU4KJkEK6ksoIqAiUYJAwzFqVZpL8lolnOsChRkjKH5U 9skPGmAzj55CizyeDZF7ojmwQzflJ0ecLWiJ3vGKUjfF37Ws8Z5oepjSYAM2x6xk o6cCAwEAAaOCApIwggKOMB0GA1UdDgQWBBSH7jlMyLFlG3WPOI9zqI5ovSciLzAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH/BggrBgEFBQcBCwSB8jCB 7zBCBggrBgEFBQcwBYY2cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw L2FwL0E5MUE3MzgxMDAwMC84ODMvMGEGCCsGAQUFBzAKhlVyc3luYzovL3Jwa2kt cmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzg4My9oLTQ1VE1p eFpSdDFqemlQYzZpT2FMMG5JaTgubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1s MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCcdRoAwQCesiAAwQEy08wMA0G CSqGSIb3DQEBCwUAA4IBAQAyfZBexyctY8ADYzhVly+jDkqlXfUNUfeTiLovap+2 Q5vSgXHP+xag3XPhO47ewWUvLYiELRXjP2XMDmtSjNXyARJUhyG2LIlnzsodh5vZ z7MaMND0jq993RrV5JfJlfLR/90lKcjMY9t20D/MmGT2WluL44Umf2FIDpcMqj7I 4cmchHwdrVv9qO9/xGhBwGLWdCjtM5Xd06I7ES91LU4aTLVzMBNWOaS/eMhLS4wF h4ZN+wBtxsaOw8DF1jINmKkTthjUpGo+CpvjZEKnvlA7WtdAjCkAZEkef/T8t3BV cCTpKohAUegX9hcxanGxsCFXjYW+DEFBg7VI1FsNoPnm -----END CERTIFICATE-----Generated at Mon Jul 21 13:46:11 2025 by rpki-client