$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/A2FO6cJj1BxMb07JdrGHIXyzkRI.cer File: A2FO6cJj1BxMb07JdrGHIXyzkRI.cer (raw, json) Hash identifier: 7TRmVuALhpmAzBheWy37gsJK7k4ZxOx32FQcdUdz2lg= Subject key identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 163A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 15 May 2026 01:44:24 +0000 Certificate not after: Sat 15 May 2027 01:30:02 +0000 Subordinate resources: IP: 134.180.0.0/16 IP: 157.192.0.0/16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5690 (0x163a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: May 15 01:44:24 2026 GMT Not After : May 15 01:30:02 2027 GMT Subject: CN=03614EE9C263D41C4C6F4EC976B187217CB39112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ae:a0:89:37:da:58:65:e6:24:28:52:73:c9: c0:12:41:d2:84:81:89:46:f0:fc:90:4a:f9:d8:fe: 00:90:88:f7:77:03:70:f6:89:ad:f7:99:f0:14:43: 44:9d:6f:37:c3:9e:17:ce:f5:64:0a:76:28:3e:a0: b0:7e:69:6b:72:de:d7:86:fb:c4:6d:60:23:25:53: 6c:68:78:38:3e:eb:bd:2c:71:17:be:7b:d3:7b:13: ef:92:f2:d3:47:d1:05:33:80:1a:60:94:5e:06:34: 78:89:63:cd:39:4f:8d:bd:b6:d3:58:0c:f0:a0:00: 8b:82:fa:e0:6b:ed:44:c7:75:e7:89:35:0d:b8:0d: 14:38:df:3a:36:48:8e:05:39:b7:c9:a2:8d:e8:cd: f0:9e:e3:bf:77:cc:93:6e:c9:80:1a:4e:5d:48:00: a2:af:52:38:6a:d4:42:b3:f8:d6:33:98:a2:15:b9: 58:c4:89:6e:91:66:87:fd:32:15:b6:40:b9:e4:af: 2c:88:6f:2d:89:d3:04:51:ec:dc:30:46:da:f4:4c: 09:b2:3d:00:3e:2d:79:4f:a9:39:9b:93:e1:1d:d6: 3b:60:88:c9:db:85:4e:9b:70:e1:23:c0:7e:c5:b3: a7:f8:61:13:91:7f:28:9f:7f:09:ec:81:fb:3a:92: ee:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:61:4E:E9:C2:63:D4:1C:4C:6F:4E:C9:76:B1:87:21:7C:B3:91:12 X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20088/A2FO6cJj1BxMb07JdrGHIXyzkRI.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.180.0.0/16 157.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:69:5f:a0:ae:c9:d5:a2:3a:ce:7f:d0:74:32:9a:6f:af:70: 13:30:86:82:d1:02:e2:89:08:d3:b5:62:14:71:e4:89:b3:38: 23:b9:34:92:75:50:a3:6c:48:81:b5:8b:93:cc:e3:c1:7c:b2: 10:e3:26:0b:7a:f3:ee:c3:d7:9e:51:df:15:4c:98:b5:09:9d: 5d:1e:e4:53:2f:6b:37:21:bd:a6:77:c3:72:17:14:b4:c5:c2: 99:7e:4f:72:40:e7:f7:29:ed:75:aa:d4:85:43:cb:d6:a0:55: 46:96:76:ea:e5:5e:38:90:76:8a:dd:18:c7:7f:f6:fb:43:cb: 42:fe:88:89:a1:41:dc:7a:55:e7:ab:14:f1:b2:83:6b:ee:2d: 21:e0:3f:df:f4:42:34:d9:96:d3:80:bc:d4:b5:76:23:5d:d7: d7:7d:37:94:94:04:44:40:3b:a4:13:77:da:71:90:51:40:34: 44:82:8b:8e:f4:b5:19:b9:65:18:8c:80:d5:4c:a4:bb:bf:15: 7e:93:a9:f8:93:14:a4:f2:c3:6b:e9:73:86:7f:45:d5:be:81: b6:d8:f2:b0:71:d1:c0:a1:63:e6:a3:a4:bc:ba:81:e9:72:ba: ad:b2:3f:f3:53:11:ad:d0:98:c8:ea:74:5b:8b:86:b1:af:15: 63:38:1f:93 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICFjowDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI2MDUxNTAxNDQyNFoXDTI3MDUxNTAxMzAwMlowMzEx MC8GA1UEAxMoMDM2MTRFRTlDMjYzRDQxQzRDNkY0RUM5NzZCMTg3MjE3Q0IzOTEx MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMSuoIk32lhl5iQoUnPJ wBJB0oSBiUbw/JBK+dj+AJCI93cDcPaJrfeZ8BRDRJ1vN8OeF871ZAp2KD6gsH5p a3Le14b7xG1gIyVTbGh4OD7rvSxxF75703sT75Ly00fRBTOAGmCUXgY0eIljzTlP jb2201gM8KAAi4L64GvtRMd154k1DbgNFDjfOjZIjgU5t8mijejN8J7jv3fMk27J gBpOXUgAoq9SOGrUQrP41jOYohW5WMSJbpFmh/0yFbZAueSvLIhvLYnTBFHs3DBG 2vRMCbI9AD4teU+pOZuT4R3WO2CIyduFTptw4SPAfsWzp/hhE5F/KJ9/CeyB+zqS 7p8CAwEAAaOCAo8wggKLMB0GA1UdDgQWBBQDYU7pwmPUHExvTsl2sYchfLOREjAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAwODgvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMDg4L0Ey Rk82Y0pqMUJ4TWIwN0pkckdISVh5emtSSS5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwIwYIKwYBBQUHAQcBAf8EFDASMBAEAgABMAoDAwCGtAMDAJ3AMA0GCSqG SIb3DQEBCwUAA4IBAQCXaV+grsnVojrOf9B0Mppvr3ATMIaC0QLiiQjTtWIUceSJ szgjuTSSdVCjbEiBtYuTzOPBfLIQ4yYLevPuw9eeUd8VTJi1CZ1dHuRTL2s3Ib2m d8NyFxS0xcKZfk9yQOf3Ke11qtSFQ8vWoFVGlnbq5V44kHaK3RjHf/b7Q8tC/oiJ oUHcelXnqxTxsoNr7i0h4D/f9EI02ZbTgLzUtXYjXdfXfTeUlAREQDukE3facZBR QDREgouO9LUZuWUYjIDVTKS7vxV+k6n4kxSk8sNr6XOGf0XVvoG22PKwcdHAoWPm o6S8uoHpcrqtsj/zUxGt0JjI6nRbi4axrxVjOB+T -----END CERTIFICATE-----Generated at Fri Jun 12 17:02:56 2026 by rpki-client