$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/A2FO6cJj1BxMb07JdrGHIXyzkRI.cer File: A2FO6cJj1BxMb07JdrGHIXyzkRI.cer (raw, json) Hash identifier: OpuZmpPL8lUItwHcghGEAPE3F0CPTjCJnLaLuasfTFE= Subject key identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 10BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 23 May 2025 09:57:07 +0000 Certificate not after: Sat 23 May 2026 09:51:00 +0000 Subordinate resources: IP: 134.180.0.0/16 IP: 157.192.0.0/16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 20:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4282 (0x10ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: May 23 09:57:07 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=03614EE9C263D41C4C6F4EC976B187217CB39112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ae:a0:89:37:da:58:65:e6:24:28:52:73:c9: c0:12:41:d2:84:81:89:46:f0:fc:90:4a:f9:d8:fe: 00:90:88:f7:77:03:70:f6:89:ad:f7:99:f0:14:43: 44:9d:6f:37:c3:9e:17:ce:f5:64:0a:76:28:3e:a0: b0:7e:69:6b:72:de:d7:86:fb:c4:6d:60:23:25:53: 6c:68:78:38:3e:eb:bd:2c:71:17:be:7b:d3:7b:13: ef:92:f2:d3:47:d1:05:33:80:1a:60:94:5e:06:34: 78:89:63:cd:39:4f:8d:bd:b6:d3:58:0c:f0:a0:00: 8b:82:fa:e0:6b:ed:44:c7:75:e7:89:35:0d:b8:0d: 14:38:df:3a:36:48:8e:05:39:b7:c9:a2:8d:e8:cd: f0:9e:e3:bf:77:cc:93:6e:c9:80:1a:4e:5d:48:00: a2:af:52:38:6a:d4:42:b3:f8:d6:33:98:a2:15:b9: 58:c4:89:6e:91:66:87:fd:32:15:b6:40:b9:e4:af: 2c:88:6f:2d:89:d3:04:51:ec:dc:30:46:da:f4:4c: 09:b2:3d:00:3e:2d:79:4f:a9:39:9b:93:e1:1d:d6: 3b:60:88:c9:db:85:4e:9b:70:e1:23:c0:7e:c5:b3: a7:f8:61:13:91:7f:28:9f:7f:09:ec:81:fb:3a:92: ee:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.180.0.0/16 157.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:3b:d0:b9:79:61:30:bf:cb:a9:6a:87:8a:00:c6:d8:24:4d: d8:50:91:7b:41:95:c6:2b:47:d0:a8:52:2c:6f:50:e5:42:6b: 85:2d:ef:89:30:3b:35:58:e6:68:30:a2:76:ce:ce:a1:ef:89: 2a:72:22:66:ce:8f:63:32:31:07:69:e8:9c:1a:ea:64:e4:2f: 47:3b:0f:ab:b3:8f:eb:f0:5d:75:09:51:e1:50:a9:2c:e1:40: 2a:a6:8a:18:6e:4c:1a:9c:86:5d:0b:ca:4e:4b:30:f7:d2:f1: db:fb:90:16:1c:83:84:71:e9:24:dd:9b:3a:3b:5f:7e:e8:b9: 82:36:55:7f:7e:57:b5:05:74:c3:65:de:91:f1:f3:f3:50:15: a2:73:96:b8:7a:24:1e:8e:6f:50:9d:4b:f0:fe:f4:41:9e:4b: 10:a1:ef:e3:a1:bc:e5:17:82:f2:fb:75:44:cc:b4:dd:cc:d3: eb:de:75:bc:c4:6c:98:d0:ec:37:17:11:c3:3b:d2:a9:92:4f: e8:1c:f8:e7:96:e0:a3:7f:b8:ea:fb:01:ca:52:89:3d:b7:c6: b0:81:9b:4d:46:80:14:93:7b:ce:6d:46:66:7c:3e:cf:f8:ba: a3:fc:66:6a:77:79:18:af:80:7c:26:80:c6:c8:0f:78:ee:01: cb:65:e0:03 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICELowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI1MDUyMzA5NTcwN1oXDTI2MDUyMzA5NTEwMFowMzEx MC8GA1UEAxMoMDM2MTRFRTlDMjYzRDQxQzRDNkY0RUM5NzZCMTg3MjE3Q0IzOTEx MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMSuoIk32lhl5iQoUnPJ wBJB0oSBiUbw/JBK+dj+AJCI93cDcPaJrfeZ8BRDRJ1vN8OeF871ZAp2KD6gsH5p a3Le14b7xG1gIyVTbGh4OD7rvSxxF75703sT75Ly00fRBTOAGmCUXgY0eIljzTlP jb2201gM8KAAi4L64GvtRMd154k1DbgNFDjfOjZIjgU5t8mijejN8J7jv3fMk27J gBpOXUgAoq9SOGrUQrP41jOYohW5WMSJbpFmh/0yFbZAueSvLIhvLYnTBFHs3DBG 2vRMCbI9AD4teU+pOZuT4R3WO2CIyduFTptw4SPAfsWzp/hhE5F/KJ9/CeyB+zqS 7p8CAwEAAaOCAo8wggKLMB0GA1UdDgQWBBQDYU7pwmPUHExvTsl2sYchfLOREjAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAwODgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMDg4L0Ey Rk82Y0pqMUJ4TWIwN0pkckdISVh5emtSSS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIwYIKwYBBQUHAQcBAf8EFDASMBAEAgABMAoDAwCGtAMDAJ3AMA0GCSqG SIb3DQEBCwUAA4IBAQAaO9C5eWEwv8upaoeKAMbYJE3YUJF7QZXGK0fQqFIsb1Dl QmuFLe+JMDs1WOZoMKJ2zs6h74kqciJmzo9jMjEHaeicGupk5C9HOw+rs4/r8F11 CVHhUKks4UAqpooYbkwanIZdC8pOSzD30vHb+5AWHIOEcekk3Zs6O19+6LmCNlV/ fle1BXTDZd6R8fPzUBWic5a4eiQejm9QnUvw/vRBnksQoe/jobzlF4Ly+3VEzLTd zNPr3nW8xGyY0Ow3FxHDO9Kpkk/oHPjnluCjf7jq+wHKUok9t8awgZtNRoAUk3vO bUZmfD7P+Lqj/GZqd3kYr4B8JoDGyA947gHLZeAD -----END CERTIFICATE-----Generated at Wed Jun 4 00:14:29 2025 by rpki-client