Certificate

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer
File:                     XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer (raw, json)
Hash identifier:          wPxmcN5ujyjam5Vy6Ocvf1bP2+4XysIAdW9V3Jbr94Q=
Subject key identifier:   5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4
Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F
Certificate issuer:       /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
Certificate serial:       6C5C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
Manifest:                 rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft
caRepository:             rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/
Notify URL:               https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before:   Mon 15 Jun 2026 01:46:02 +0000
Certificate not after:    Tue 15 Jun 2027 01:30:02 +0000
Subordinate resources:    IP: 103.167.44.0/23
                          IP: 133.32.104.0 -- 133.32.109.255
Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 09:53:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 27740 (0x6c5c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
        Validity
            Not Before: Jun 15 01:46:02 2026 GMT
            Not After : Jun 15 01:30:02 2027 GMT
        Subject: CN=5C57DDC59248271E71E1325877992B9738E043D4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:5d:e2:bd:49:06:d7:ec:3b:5b:3a:55:e8:2f:
                    e8:6a:81:a1:80:d1:34:43:e1:e2:43:c4:e7:15:f1:
                    a6:9e:ec:5d:29:cc:fe:d4:6f:2d:95:e3:21:e0:c5:
                    d0:09:83:06:4a:4e:59:d5:07:70:1b:d1:d7:ff:f4:
                    5f:25:6d:ad:f2:f2:a8:e1:80:19:c6:7c:8f:df:92:
                    66:d2:43:b9:44:bf:e5:ac:4f:49:81:94:93:8b:cb:
                    9a:1b:54:ca:a7:5b:c1:fc:78:36:9f:e5:0f:14:74:
                    d9:0c:c1:b7:13:ea:25:d0:36:c2:2d:aa:6a:b0:b4:
                    eb:d2:96:90:59:96:22:b4:36:1c:c3:a3:2c:85:f9:
                    db:19:3f:54:74:c0:7a:12:69:72:ab:eb:72:5d:2b:
                    c3:a3:cf:4e:38:45:ea:16:d2:fe:13:2c:e8:27:14:
                    53:e7:6a:43:5f:c9:df:7d:4a:4e:d0:57:49:bd:e2:
                    25:c5:ca:73:11:65:81:63:ff:05:22:a7:09:f4:f8:
                    73:eb:58:b7:5d:8d:b9:d4:47:9f:5a:b7:6b:79:5e:
                    60:34:64:97:f4:ac:67:d4:2f:80:f1:c5:ec:69:c1:
                    31:26:6a:54:c8:ed:4f:af:d9:43:71:49:19:98:b0:
                    31:eb:28:e5:ab:33:15:0a:49:bb:d1:9c:63:be:fb:
                    90:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4
            X509v3 Authority Key Identifier:
                keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Subject Information Access:
                CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/
                RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.167.44.0/23
                  133.32.104.0-133.32.109.255

    Signature Algorithm: sha256WithRSAEncryption
         9f:7e:85:69:92:33:c5:c7:b0:28:ef:87:e6:ea:32:19:75:87:
         be:a7:51:7a:5e:7c:a2:d8:4e:17:7a:b9:ed:15:ba:8f:f0:da:
         45:14:11:c3:57:d8:6c:d3:52:28:36:b2:36:29:6c:10:33:bb:
         d9:a3:12:6b:d5:cc:55:ca:d6:be:a6:94:b9:98:8a:83:8e:ec:
         ea:b4:43:4d:6d:42:51:3f:d5:2c:ce:d0:bc:c9:a0:68:1f:51:
         72:44:2e:e9:dc:c7:7f:e8:cf:da:cb:17:b9:a5:bd:5a:af:dc:
         f4:79:42:bb:32:0d:7d:58:a2:a3:a6:e8:79:55:15:9b:c7:70:
         7e:11:9c:62:47:5a:66:da:15:c5:43:09:40:56:05:48:b3:62:
         ef:bb:a3:ed:4f:28:93:96:8a:ac:be:85:2b:6b:c7:dd:b5:48:
         9d:b1:0b:a6:d6:28:e1:02:f3:b2:86:9d:ea:a7:8a:e8:9c:a7:
         43:1b:22:ff:9d:39:9a:f6:ec:3d:ea:d6:3d:68:c6:45:64:25:
         a0:f5:c2:3f:1d:d4:94:35:f7:22:2c:83:54:9b:c4:dd:5c:91:
         46:7d:d6:e7:67:f7:97:1e:cc:98:f0:e7:1a:18:34:13:f4:53:
         ca:b1:b2:dc:0d:c8:3d:35:55:d2:4c:fc:b0:b6:bd:57:c3:0f:
         64:d9:1d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 11:50:00 2026 by rpki-client