$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer File: NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer (raw, json) Hash identifier: TZuLkyEwq0PXC7Ve1tp865+13U5oIrkdTdN17gPKocE= Subject key identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 4F38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 23 May 2025 09:56:56 +0000 Certificate not after: Sat 23 May 2026 09:51:00 +0000 Subordinate resources: IP: 202.250.16.0/20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20280 (0x4f38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 23 09:56:56 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=35892143C493B9B2CC1E79133F5231C72E152685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:9c:c6:fe:72:f8:84:85:e6:20:b8:98:06: 97:c3:e3:cf:94:8e:9b:39:42:0d:5c:75:be:7c:42: 2e:2d:77:42:23:30:3a:7a:61:3e:53:03:31:eb:d0: d8:dc:23:d9:ad:fd:b3:46:b6:65:98:34:a1:16:15: 17:d9:3f:70:9f:53:65:79:11:11:a2:8d:9a:a3:98: 75:d6:16:b1:34:10:ed:52:ea:da:10:2b:59:48:fb: 85:be:4c:34:c0:0b:54:2f:dd:d9:87:30:c5:65:45: f0:77:e3:b8:30:13:54:4f:5d:be:f3:3b:12:3b:6a: 48:dd:8a:28:3d:e4:21:b1:b0:85:ee:e4:8a:16:bc: 0a:53:09:bd:18:d0:36:40:bf:d8:6a:7d:e4:fa:d4: 0e:87:69:71:aa:7d:c3:65:e8:ee:ab:dd:6a:13:f6: 8e:9d:0a:02:e7:d7:77:71:6e:a3:6c:90:9d:be:66: c9:26:d0:16:ac:05:18:7d:89:11:d0:d7:17:3f:94: da:98:fb:54:c1:af:e9:48:23:43:ce:71:20:f3:54: fa:84:26:c4:e9:cf:12:2e:cf:95:e3:38:25:8a:d2: 92:c0:1b:ec:c1:3d:ac:87:69:1b:3b:36:70:22:b6: 86:d5:1a:bf:08:f5:9a:6f:cd:8e:75:25:64:d2:cf: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.250.16.0/20 Signature Algorithm: sha256WithRSAEncryption 14:90:30:c7:7b:25:8f:90:02:e7:4e:30:68:bb:c3:af:5e:0a: 73:10:15:12:60:b7:18:54:32:fa:6b:f0:af:63:dc:07:df:ae: a0:de:68:7c:a0:e9:4c:a7:71:f6:df:f6:1f:6d:31:c5:93:94: f1:9e:1e:4e:ce:96:36:29:0c:f5:1b:47:c1:93:b5:83:c6:a8: dc:d6:51:1c:b5:19:5f:38:dc:2f:3d:8e:7d:f3:24:ff:75:7c: 71:b7:a2:fb:d2:61:3a:aa:a2:9a:78:95:63:24:26:d2:ac:62: 28:ba:cb:8e:ec:84:b8:82:80:d5:9a:8d:07:4e:3b:35:87:45: 22:fe:e9:5f:83:d1:3e:e1:67:c5:6e:0e:2b:91:4d:23:1c:57: a6:12:ae:e2:64:6d:1a:ac:4d:20:d6:b4:8d:a7:69:bc:c6:26: 4c:1a:60:30:9f:f3:64:42:6c:4c:ab:11:e5:b3:49:8a:bd:6b: 22:30:37:54:62:e3:b3:a9:4f:07:22:d0:8d:d5:08:97:2d:3f: 29:da:fb:35:75:f5:3c:f3:36:08:9f:b5:f6:23:53:26:c5:dc: fa:d1:b2:8f:44:d4:73:d7:80:c8:3d:cc:ea:86:e2:84:8b:75: dc:d6:96:52:a4:b9:5c:f5:e7:e2:9e:fb:90:1f:60:06:b0:c3: 02:25:b4:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICTzgwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDUyMzA5NTY1NloXDTI2MDUyMzA5NTEwMFowMzEx MC8GA1UEAxMoMzU4OTIxNDNDNDkzQjlCMkNDMUU3OTEzM0Y1MjMxQzcyRTE1MjY4 NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALV1nMb+cviEheYguJgG l8Pjz5SOmzlCDVx1vnxCLi13QiMwOnphPlMDMevQ2Nwj2a39s0a2ZZg0oRYVF9k/ cJ9TZXkREaKNmqOYddYWsTQQ7VLq2hArWUj7hb5MNMALVC/d2YcwxWVF8HfjuDAT VE9dvvM7EjtqSN2KKD3kIbGwhe7kiha8ClMJvRjQNkC/2Gp95PrUDodpcap9w2Xo 7qvdahP2jp0KAufXd3Fuo2yQnb5mySbQFqwFGH2JEdDXFz+U2pj7VMGv6UgjQ85x IPNU+oQmxOnPEi7PleM4JYrSksAb7ME9rIdpGzs2cCK2htUavwj1mm/NjnUlZNLP CPsCAwEAAaOCAokwggKFMB0GA1UdDgQWBBQ1iSFDxJO5ssweeRM/UjHHLhUmhTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAQYIKwYBBQUHAQsEgfQw gfEwQwYIKwYBBQUHMAWGN3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjE1NC8wYgYIKwYBBQUHMAqGVnJzeW5jOi8vcnBr aS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjE1NC9OWWto UThTVHViTE1IbmtUUDFJeHh5NFZKb1UubWZ0MEYGCCsGAQUFBzANhjpodHRwczov L3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24u eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyvoQMA0GCSqGSIb3DQEB CwUAA4IBAQAUkDDHeyWPkALnTjBou8OvXgpzEBUSYLcYVDL6a/CvY9wH366g3mh8 oOlMp3H23/YfbTHFk5Txnh5OzpY2KQz1G0fBk7WDxqjc1lEctRlfONwvPY598yT/ dXxxt6L70mE6qqKaeJVjJCbSrGIousuO7IS4goDVmo0HTjs1h0Ui/ulfg9E+4WfF bg4rkU0jHFemEq7iZG0arE0g1rSNp2m8xiZMGmAwn/NkQmxMqxHls0mKvWsiMDdU YuOzqU8HItCN1QiXLT8p2vs1dfU88zYIn7X2I1Mmxdz60bKPRNRz14DIPczqhuKE i3Xc1pZSpLlc9efinvuQH2AGsMMCJbQd -----END CERTIFICATE-----Generated at Mon Jun 2 07:25:18 2025 by rpki-client