$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/pimqiuskKhP7NxpEyl4fKVenDhs.cer File: pimqiuskKhP7NxpEyl4fKVenDhs.cer (raw, json) Hash identifier: RqVuwPPeYjf8vXtkEWZIh4Ldqv7obB7kko0gbE/AQww= Subject key identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 4F56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 23 May 2025 09:57:49 +0000 Certificate not after: Sat 23 May 2026 09:51:00 +0000 Subordinate resources: IP: 2001:268::/32 IP: 2001:2a0::/32 IP: 2001:2c8::/32 IP: 240f::/23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20310 (0x4f56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 23 09:57:49 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=A629AA8AEB242A13FB371A44CA5E1F2957A70E1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:16:94:24:d2:84:11:8c:5f:dc:a1:a2:61: 77:ac:ba:d9:45:2a:1a:53:ae:5d:80:25:b3:c4:ca: eb:40:26:b7:68:0d:24:a5:bc:30:3a:dc:25:6a:f7: e1:82:a5:4c:0f:d6:ab:3e:bf:d6:21:56:40:67:97: 3b:0a:d0:11:06:04:b1:ea:49:d7:f7:07:67:d0:3f: 02:80:b5:d0:6c:dd:f1:89:d2:98:d2:d7:76:f7:bc: ac:5d:87:4c:38:40:da:fa:d3:b6:45:00:e9:b1:57: 1e:a3:8d:98:c4:4f:9a:a2:cd:df:b5:d7:fa:e8:01: 89:a1:6e:f1:9e:c7:ab:46:fe:fd:5a:4c:7f:27:e9: 87:a5:52:99:f2:33:52:a8:a1:7f:c5:ce:33:32:a6: ad:05:8c:2b:03:df:f9:71:65:21:b3:8d:c7:b9:d0: 8a:37:cb:82:5f:b0:4e:fd:5d:25:7f:98:ba:61:8e: 90:c5:f5:dc:98:59:43:d4:a1:1e:a1:d0:12:de:72: 5c:f5:9c:5e:c3:f5:60:73:d5:23:7f:79:ae:df:c0: da:9b:3d:ce:bc:36:00:1c:b3:4a:52:77:68:03:33: 79:7a:43:ea:b3:ce:48:57:14:f2:79:46:7c:db:a2: ae:cb:46:d6:e6:c6:db:bc:07:81:05:e2:99:1e:93: 1c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:29:AA:8A:EB:24:2A:13:FB:37:1A:44:CA:5E:1F:29:57:A7:0E:1B X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30017/pimqiuskKhP7NxpEyl4fKVenDhs.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:268::/32 2001:2a0::/32 2001:2c8::/32 240f::/23 Signature Algorithm: sha256WithRSAEncryption 59:e5:3d:b6:eb:3d:a2:aa:98:f9:72:db:b7:db:6e:cc:7c:55: 68:1d:48:4d:8a:f5:00:47:9e:dc:57:f3:53:87:58:17:f9:3f: 14:ad:ee:07:fe:d0:d1:40:9d:9f:5a:3f:88:6c:6b:5f:6b:69: 59:29:be:82:2d:45:94:3a:ee:1f:62:f4:98:3a:30:43:33:d2: 3b:1b:df:bb:98:2f:a9:79:cf:36:0d:97:44:14:a4:ac:b5:ab: dc:62:44:2c:49:53:6b:37:94:cb:97:f8:0c:fb:a8:bc:38:c1: a9:bd:70:62:7b:c8:10:96:69:bd:a7:47:6f:c1:dd:a5:8a:2c: 16:3d:f0:96:13:49:88:73:cd:b4:88:a0:58:e9:a3:78:43:84: dc:03:36:97:51:28:af:91:6a:52:9c:ec:ed:3d:33:50:f9:de: a9:e6:40:00:9c:7a:e8:cd:98:15:8f:77:1f:1d:36:67:97:8a: f9:a7:5a:d5:74:51:ca:a3:15:cd:ef:f9:aa:f0:85:60:4e:97: 80:d0:80:31:4e:f9:79:49:d8:3d:05:8f:90:a5:de:a1:78:39: 3b:03:aa:ce:e6:83:86:51:eb:cd:1e:0d:2e:92:cf:e6:d1:66: c1:ee:1c:e3:04:7e:fb:0c:85:9d:a8:14:e2:b5:8c:16:f2:2d: ce:ce:f4:b1 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICT1YwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDUyMzA5NTc0OVoXDTI2MDUyMzA5NTEwMFowMzEx MC8GA1UEAxMoQTYyOUFBOEFFQjI0MkExM0ZCMzcxQTQ0Q0E1RTFGMjk1N0E3MEUx QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALLaFpQk0oQRjF/coaJh d6y62UUqGlOuXYAls8TK60Amt2gNJKW8MDrcJWr34YKlTA/Wqz6/1iFWQGeXOwrQ EQYEsepJ1/cHZ9A/AoC10Gzd8YnSmNLXdve8rF2HTDhA2vrTtkUA6bFXHqONmMRP mqLN37XX+ugBiaFu8Z7Hq0b+/VpMfyfph6VSmfIzUqihf8XOMzKmrQWMKwPf+XFl IbONx7nQijfLgl+wTv1dJX+YumGOkMX13JhZQ9ShHqHQEt5yXPWcXsP1YHPVI395 rt/A2ps9zrw2AByzSlJ3aAMzeXpD6rPOSFcU8nlGfNuirstG1ubG27wHgQXimR6T HBsCAwEAAaOCAqAwggKcMB0GA1UdDgQWBBSmKaqK6yQqE/s3GkTKXh8pV6cOGzAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwMTcvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDE3L3Bp bXFpdXNrS2hQN054cEV5bDRmS1ZlbkRocy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwNAYIKwYBBQUHAQcBAf8EJTAjMCEEAgACMBsDBQAgAQJoAwUAIAECoAMF ACABAsgDBAEkDwAwDQYJKoZIhvcNAQELBQADggEBAFnlPbbrPaKqmPly27fbbsx8 VWgdSE2K9QBHntxX81OHWBf5PxSt7gf+0NFAnZ9aP4hsa19raVkpvoItRZQ67h9i 9Jg6MEMz0jsb37uYL6l5zzYNl0QUpKy1q9xiRCxJU2s3lMuX+Az7qLw4wam9cGJ7 yBCWab2nR2/B3aWKLBY98JYTSYhzzbSIoFjpo3hDhNwDNpdRKK+RalKc7O09M1D5 3qnmQACceujNmBWPdx8dNmeXivmnWtV0UcqjFc3v+arwhWBOl4DQgDFO+XlJ2D0F j5Cl3qF4OTsDqs7mg4ZR680eDS6Sz+bRZsHuHOMEfvsMhZ2oFOK1jBbyLc7O9LE= -----END CERTIFICATE-----Generated at Mon Jun 2 07:19:33 2025 by rpki-client