$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/pimqiuskKhP7NxpEyl4fKVenDhs.cer File: pimqiuskKhP7NxpEyl4fKVenDhs.cer (raw, json) Hash identifier: lui+Ixu2o8UIN4siXUsbKoJFEVlRrthVT58/N3Aphpw= Subject key identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 52F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Jul 2025 01:35:22 +0000 Certificate not after: Wed 15 Jul 2026 01:30:01 +0000 Subordinate resources: IP: 2001:268::/32 IP: 2001:2a0::/32 IP: 2001:2c8::/32 IP: 240f::/23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21235 (0x52f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: Jul 15 01:35:22 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=A629AA8AEB242A13FB371A44CA5E1F2957A70E1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:16:94:24:d2:84:11:8c:5f:dc:a1:a2:61: 77:ac:ba:d9:45:2a:1a:53:ae:5d:80:25:b3:c4:ca: eb:40:26:b7:68:0d:24:a5:bc:30:3a:dc:25:6a:f7: e1:82:a5:4c:0f:d6:ab:3e:bf:d6:21:56:40:67:97: 3b:0a:d0:11:06:04:b1:ea:49:d7:f7:07:67:d0:3f: 02:80:b5:d0:6c:dd:f1:89:d2:98:d2:d7:76:f7:bc: ac:5d:87:4c:38:40:da:fa:d3:b6:45:00:e9:b1:57: 1e:a3:8d:98:c4:4f:9a:a2:cd:df:b5:d7:fa:e8:01: 89:a1:6e:f1:9e:c7:ab:46:fe:fd:5a:4c:7f:27:e9: 87:a5:52:99:f2:33:52:a8:a1:7f:c5:ce:33:32:a6: ad:05:8c:2b:03:df:f9:71:65:21:b3:8d:c7:b9:d0: 8a:37:cb:82:5f:b0:4e:fd:5d:25:7f:98:ba:61:8e: 90:c5:f5:dc:98:59:43:d4:a1:1e:a1:d0:12:de:72: 5c:f5:9c:5e:c3:f5:60:73:d5:23:7f:79:ae:df:c0: da:9b:3d:ce:bc:36:00:1c:b3:4a:52:77:68:03:33: 79:7a:43:ea:b3:ce:48:57:14:f2:79:46:7c:db:a2: ae:cb:46:d6:e6:c6:db:bc:07:81:05:e2:99:1e:93: 1c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:268::/32 2001:2a0::/32 2001:2c8::/32 240f::/23 Signature Algorithm: sha256WithRSAEncryption 40:01:88:fb:4d:89:c8:cc:8c:bb:7f:cb:ef:03:88:84:e2:dc: e7:60:e7:c8:87:49:23:c9:6c:7d:ae:a5:07:09:c3:94:09:e3: aa:35:d5:1c:ee:d4:7e:09:be:15:29:5a:f8:23:83:b3:3b:9c: d3:68:65:1b:dd:c0:b0:8a:94:98:15:e1:2c:c1:6c:2c:37:54: e7:ab:1e:b4:d0:9c:ac:8b:48:56:2c:d0:b5:6f:d6:d4:fa:ab: bb:b1:c9:44:81:bc:04:4d:71:8b:44:50:cf:14:7e:0e:30:66: 69:93:76:9d:ba:e3:d3:88:92:c6:f7:f7:f2:bf:9b:50:59:3a: ca:0a:50:10:7f:28:3d:54:22:4e:ed:64:eb:ea:dd:78:8b:e8: cd:b2:d8:8b:c1:28:fe:e1:f2:96:31:c9:47:64:fb:fb:c4:43: 19:46:2b:e9:9a:56:66:42:da:53:69:0b:16:35:0f:82:23:7f: 71:23:d9:aa:ae:8a:93:1e:da:09:65:b0:82:93:3e:f0:f6:0f: 8a:f7:cb:0f:1a:3b:79:0c:46:dd:f2:fe:1d:5d:0d:2d:ec:84: f8:c1:37:c4:b8:6d:02:67:98:40:ce:38:c6:8d:7e:cf:eb:4c: 74:10:11:40:a6:9c:83:a8:51:94:de:aa:4d:b3:ce:5a:ad:67: b7:0a:b1:a9 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICUvMwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDcxNTAxMzUyMloXDTI2MDcxNTAxMzAwMVowMzEx MC8GA1UEAxMoQTYyOUFBOEFFQjI0MkExM0ZCMzcxQTQ0Q0E1RTFGMjk1N0E3MEUx QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALLaFpQk0oQRjF/coaJh d6y62UUqGlOuXYAls8TK60Amt2gNJKW8MDrcJWr34YKlTA/Wqz6/1iFWQGeXOwrQ EQYEsepJ1/cHZ9A/AoC10Gzd8YnSmNLXdve8rF2HTDhA2vrTtkUA6bFXHqONmMRP mqLN37XX+ugBiaFu8Z7Hq0b+/VpMfyfph6VSmfIzUqihf8XOMzKmrQWMKwPf+XFl IbONx7nQijfLgl+wTv1dJX+YumGOkMX13JhZQ9ShHqHQEt5yXPWcXsP1YHPVI395 rt/A2ps9zrw2AByzSlJ3aAMzeXpD6rPOSFcU8nlGfNuirstG1ubG27wHgQXimR6T HBsCAwEAAaOCAqAwggKcMB0GA1UdDgQWBBSmKaqK6yQqE/s3GkTKXh8pV6cOGzAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwMTcvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDE3L3Bp bXFpdXNrS2hQN054cEV5bDRmS1ZlbkRocy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwNAYIKwYBBQUHAQcBAf8EJTAjMCEEAgACMBsDBQAgAQJoAwUAIAECoAMF ACABAsgDBAEkDwAwDQYJKoZIhvcNAQELBQADggEBAEABiPtNicjMjLt/y+8DiITi 3Odg58iHSSPJbH2upQcJw5QJ46o11Rzu1H4JvhUpWvgjg7M7nNNoZRvdwLCKlJgV 4SzBbCw3VOerHrTQnKyLSFYs0LVv1tT6q7uxyUSBvARNcYtEUM8Ufg4wZmmTdp26 49OIksb39/K/m1BZOsoKUBB/KD1UIk7tZOvq3XiL6M2y2IvBKP7h8pYxyUdk+/vE QxlGK+maVmZC2lNpCxY1D4Ijf3Ej2aquipMe2gllsIKTPvD2D4r3yw8aO3kMRt3y /h1dDS3shPjBN8S4bQJnmEDOOMaNfs/rTHQQEUCmnIOoUZTeqk2zzlqtZ7cKsak= -----END CERTIFICATE-----Generated at Mon Jul 21 08:48:33 2025 by rpki-client