Certificate

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer
File:                     KQWj7o-cNhq9lxsMqXJt-Dz6a_g.cer (raw, json)
Hash identifier:          H5U4rKbfd5gUdc4SMNyeT6gduoi/2pcMY69QKD3aVdc=
Subject key identifier:   29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8
Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F
Certificate issuer:       /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
Certificate serial:       6B6F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
Manifest:                 rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft
caRepository:             rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/
Notify URL:               https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before:   Mon 15 Jun 2026 01:38:55 +0000
Certificate not after:    Tue 15 Jun 2027 01:30:02 +0000
Subordinate resources:    IP: 2001:240::/32
                          IP: 2001:300::/32
Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 17:33:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 27503 (0x6b6f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
        Validity
            Not Before: Jun 15 01:38:55 2026 GMT
            Not After : Jun 15 01:30:02 2027 GMT
        Subject: CN=2905A3EE8F9C361ABD971B0CA9726DF83CFA6BF8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:af:77:a9:da:3a:c4:f9:6e:b7:22:96:4e:90:
                    4d:98:c1:a0:94:8a:12:f7:0f:72:dd:d1:d9:79:ce:
                    a9:63:ee:7a:11:2b:10:98:a9:2b:b0:ab:32:04:cd:
                    93:92:d0:fc:cd:66:21:40:e6:4e:5b:97:9e:0f:eb:
                    00:5a:89:4e:a5:1e:7d:cc:48:ea:8a:15:19:d8:21:
                    48:79:6d:10:19:2d:6a:54:1b:b9:73:42:95:23:f5:
                    a8:f0:58:b5:b9:be:24:2b:e1:d4:6c:9c:3f:29:db:
                    78:f9:63:dc:46:6d:ad:8f:ec:a8:9b:c2:7d:2a:4a:
                    40:b5:ba:70:5f:47:8f:17:15:c9:68:cb:dc:87:4e:
                    a1:f6:b7:04:8f:68:5e:b5:40:08:60:bb:e9:13:3d:
                    d2:d4:1b:c5:2d:aa:16:56:dd:bb:ec:83:1c:9f:3f:
                    07:ba:61:4b:af:05:00:71:62:bb:d0:28:af:98:5f:
                    32:55:8f:86:97:0c:3a:d1:2b:0d:bf:e8:79:93:5e:
                    ca:71:92:1f:e5:31:d4:60:b0:03:52:9f:69:ca:92:
                    03:6d:85:66:dd:18:5c:d8:34:ac:ac:3e:ae:1e:1f:
                    58:67:ea:71:b9:c2:99:0e:73:b5:c6:56:e4:b2:88:
                    9e:cf:c6:59:af:a5:c7:e8:fb:df:78:de:d0:63:68:
                    8f:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:05:A3:EE:8F:9C:36:1A:BD:97:1B:0C:A9:72:6D:F8:3C:FA:6B:F8
            X509v3 Authority Key Identifier:
                keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Subject Information Access:
                CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/
                RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30016/KQWj7o-cNhq9lxsMqXJt-Dz6a_g.mft
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2001:240::/32
                  2001:300::/32

    Signature Algorithm: sha256WithRSAEncryption
         2c:c6:d2:ae:1d:2b:74:13:dd:73:ef:ab:c8:f3:f1:ed:51:70:
         e5:24:d0:d1:29:1d:22:8e:bc:eb:be:c1:c8:b3:c0:1f:f3:ee:
         db:60:cf:0f:bd:ce:8d:c0:db:88:9d:f1:80:f6:56:b0:3c:6c:
         c8:75:a0:9b:4a:55:c7:5c:1b:90:64:66:c6:e1:72:09:72:a7:
         35:3f:9e:be:66:b3:45:a1:d5:eb:92:f2:b9:11:64:10:fc:1d:
         20:82:6b:82:15:0c:cc:9d:25:95:21:72:d0:9c:c7:c8:0b:54:
         44:41:bd:78:4e:2d:cb:4d:56:00:a1:29:45:60:a0:71:1c:7f:
         0d:f7:8d:9b:82:32:2f:4c:a9:98:11:7f:ec:b1:f8:78:a0:63:
         e1:15:35:23:70:d1:09:ce:2e:c9:0b:e7:57:a6:ff:70:5f:c6:
         60:39:91:07:0e:00:4b:cf:a6:ac:5b:be:9a:9e:36:da:bc:fe:
         86:73:ae:36:e4:2e:76:b5:e1:b3:ae:75:66:86:3b:55:c3:db:
         e7:e3:c0:ea:f4:79:f3:43:ff:fb:61:64:cd:b4:2d:df:50:d7:
         2f:cd:05:c4:20:25:c3:ae:f3:21:9e:20:f8:e8:60:3d:c9:f5:
         e9:77:b4:6c:47:4d:37:9d:d7:b3:ba:44:33:8f:c6:76:8a:7a:
         09:c4:e4:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:07:52 2026 by rpki-client