$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer File: XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer (raw, json) Hash identifier: e1NY3h7x9RGasbnspIsefK44NCX4Olvf5yKAZAkkG24= Subject key identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 504E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 23 May 2025 10:04:09 +0000 Certificate not after: Sat 23 May 2026 09:51:00 +0000 Subordinate resources: IP: 103.167.44.0/23 IP: 133.32.104.0 -- 133.32.109.255 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20558 (0x504e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 23 10:04:09 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=5C57DDC59248271E71E1325877992B9738E043D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5d:e2:bd:49:06:d7:ec:3b:5b:3a:55:e8:2f: e8:6a:81:a1:80:d1:34:43:e1:e2:43:c4:e7:15:f1: a6:9e:ec:5d:29:cc:fe:d4:6f:2d:95:e3:21:e0:c5: d0:09:83:06:4a:4e:59:d5:07:70:1b:d1:d7:ff:f4: 5f:25:6d:ad:f2:f2:a8:e1:80:19:c6:7c:8f:df:92: 66:d2:43:b9:44:bf:e5:ac:4f:49:81:94:93:8b:cb: 9a:1b:54:ca:a7:5b:c1:fc:78:36:9f:e5:0f:14:74: d9:0c:c1:b7:13:ea:25:d0:36:c2:2d:aa:6a:b0:b4: eb:d2:96:90:59:96:22:b4:36:1c:c3:a3:2c:85:f9: db:19:3f:54:74:c0:7a:12:69:72:ab:eb:72:5d:2b: c3:a3:cf:4e:38:45:ea:16:d2:fe:13:2c:e8:27:14: 53:e7:6a:43:5f:c9:df:7d:4a:4e:d0:57:49:bd:e2: 25:c5:ca:73:11:65:81:63:ff:05:22:a7:09:f4:f8: 73:eb:58:b7:5d:8d:b9:d4:47:9f:5a:b7:6b:79:5e: 60:34:64:97:f4:ac:67:d4:2f:80:f1:c5:ec:69:c1: 31:26:6a:54:c8:ed:4f:af:d9:43:71:49:19:98:b0: 31:eb:28:e5:ab:33:15:0a:49:bb:d1:9c:63:be:fb: 90:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.44.0/23 133.32.104.0-133.32.109.255 Signature Algorithm: sha256WithRSAEncryption 53:86:64:2b:6d:ff:80:c1:1d:4b:80:6d:ee:0d:7f:81:0d:0c: 2a:1a:99:42:c2:77:82:76:f9:97:c1:83:da:4c:c2:e9:8e:ed: 5b:99:38:4d:f6:2c:91:71:35:95:1e:23:22:46:91:86:75:c6: 56:4f:46:aa:4c:e5:c8:ff:e1:8e:6c:66:26:76:16:67:a2:ea: 63:94:49:f1:7a:21:de:64:c8:91:ef:62:50:1e:8f:ce:99:a8: b5:fb:28:26:fc:26:95:4c:52:8c:ea:1c:3c:dc:39:11:5a:a5: 92:db:05:91:33:e7:87:64:01:a8:82:5c:c0:fb:75:c0:0b:07: f9:78:e3:97:09:fc:6b:66:6f:f2:09:5a:cd:02:82:80:57:79: 50:55:c9:52:b3:06:6b:43:1b:a5:98:f6:5f:eb:19:2b:b8:b9: 33:cc:b4:a9:62:f8:1d:55:19:0d:48:0f:39:08:36:fb:e3:be: 68:09:c4:a0:59:3a:c9:17:d4:a4:db:7f:60:3a:da:bf:a9:30: 04:1a:45:70:40:d6:2b:ab:e6:7b:02:06:ef:da:7f:00:02:98: ab:1a:2d:28:b0:1b:94:7f:c1:3f:be:36:e7:bd:b6:ce:b6:95: 69:f8:83:58:a8:36:1d:0e:2b:05:8b:bb:2f:f5:1d:85:d0:9e: 5f:34:27:51 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICUE4wDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDUyMzEwMDQwOVoXDTI2MDUyMzA5NTEwMFowMzEx MC8GA1UEAxMoNUM1N0REQzU5MjQ4MjcxRTcxRTEzMjU4Nzc5OTJCOTczOEUwNDNE NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOld4r1JBtfsO1s6Vegv 6GqBoYDRNEPh4kPE5xXxpp7sXSnM/tRvLZXjIeDF0AmDBkpOWdUHcBvR1//0XyVt rfLyqOGAGcZ8j9+SZtJDuUS/5axPSYGUk4vLmhtUyqdbwfx4Np/lDxR02QzBtxPq JdA2wi2qarC069KWkFmWIrQ2HMOjLIX52xk/VHTAehJpcqvrcl0rw6PPTjhF6hbS /hMs6CcUU+dqQ1/J331KTtBXSb3iJcXKcxFlgWP/BSKnCfT4c+tYt12NudRHn1q3 a3leYDRkl/SsZ9QvgPHF7GnBMSZqVMjtT6/ZQ3FJGZiwMeso5aszFQpJu9GcY777 kP0CAwEAAaOCApkwggKVMB0GA1UdDgQWBBRcV93FkkgnHnHhMlh3mSuXOOBD1DAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAxNTMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMTUzL1hG ZmR4WkpJSng1eDRUSllkNWtybHpqZ1E5US5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgABMBQDBAFnpywwDAMEA4UgaAME AYUgbDANBgkqhkiG9w0BAQsFAAOCAQEAU4ZkK23/gMEdS4Bt7g1/gQ0MKhqZQsJ3 gnb5l8GD2kzC6Y7tW5k4TfYskXE1lR4jIkaRhnXGVk9GqkzlyP/hjmxmJnYWZ6Lq Y5RJ8Xoh3mTIke9iUB6PzpmotfsoJvwmlUxSjOocPNw5EVqlktsFkTPnh2QBqIJc wPt1wAsH+Xjjlwn8a2Zv8glazQKCgFd5UFXJUrMGa0MbpZj2X+sZK7i5M8y0qWL4 HVUZDUgPOQg2++O+aAnEoFk6yRfUpNt/YDrav6kwBBpFcEDWK6vmewIG79p/AAKY qxotKLAblH/BP7425722zraVafiDWKg2HQ4rBYu7L/UdhdCeXzQnUQ== -----END CERTIFICATE-----Generated at Mon Jun 2 07:25:33 2025 by rpki-client