$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer File: s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer (raw, json) Hash identifier: ZqEW7mFVJjYR/j5aXbDPmpnrqb6E3IHSMTLR8R/T/PA= Subject key identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Certificate serial: 4EF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Fri 23 May 2025 09:54:27 +0000 Certificate not after: Sat 23 May 2026 09:51:00 +0000 Subordinate resources: IP: 2001:380::/32 IP: 2400:4000::/22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20215 (0x4ef7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F Validity Not Before: May 23 09:54:27 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:35:89:19:e0:ad:c0:50:32:0f:b3:e1:21: cf:cb:2c:b4:5b:ad:32:fc:8a:90:8d:5c:58:42:89: 29:27:b8:72:10:ed:49:ff:1d:83:d2:fd:46:08:cb: 96:d3:77:aa:c9:0e:5b:ab:51:db:31:b8:bc:36:e6: bf:a5:25:c2:eb:5b:92:89:a7:2a:b3:0a:51:e8:99: 25:2d:3a:3e:6c:f1:22:ae:e8:42:16:16:4e:eb:e6: 71:b9:e8:e5:30:c1:30:0c:db:b4:d1:fc:7d:c8:b3: 90:2c:ae:18:7a:96:ce:22:d6:c5:3d:ba:5f:fe:ae: 4f:a1:6f:78:98:f6:68:a2:42:b9:0e:7d:3c:5a:5f: e6:20:eb:cd:c8:1a:48:20:56:90:07:2b:86:77:31: 0d:c8:84:45:ff:4b:c2:80:5d:82:1d:1b:dd:ec:3d: b1:e7:9b:10:d1:a4:83:ea:cf:bb:88:ad:02:43:bd: d6:1e:73:11:33:6b:66:89:6a:3f:b3:4a:98:b6:11: 5d:f6:0c:03:e1:11:97:7a:6e:2d:78:71:f0:79:1a: aa:a1:fc:43:7f:47:12:a2:d3:0d:2a:60:fd:a1:ea: b2:17:c5:df:65:a7:8b:d9:1b:45:28:d7:c7:4d:c5: 22:5a:c1:bc:4b:93:58:f2:a3:13:74:1b:1b:f1:f3: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D X509v3 Authority Key Identifier: keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:380::/32 2400:4000::/22 Signature Algorithm: sha256WithRSAEncryption 48:c6:42:1b:ba:1d:d0:9c:c0:9e:27:3e:3f:be:4a:6b:07:80: aa:ce:f3:59:f4:86:cd:49:81:6c:a4:8f:ad:76:45:1d:e6:8b: 22:e2:f9:ad:cb:f5:d7:84:60:98:70:c4:17:dc:85:e5:84:53: 1b:0f:53:b2:9f:ed:e1:2f:27:fe:e1:f3:17:1e:5a:c8:96:c7: 97:2e:f7:c2:6e:d0:d2:63:87:52:5a:b2:fc:ab:57:3a:20:ec: 12:fc:cf:e9:96:61:98:21:e1:e6:be:17:c3:84:b7:76:0a:06: 8a:8f:4f:7a:e1:34:28:b2:2a:3a:eb:05:ad:ba:57:4a:90:2b: 95:a8:58:26:44:44:bc:d9:a0:c3:ed:d9:5b:41:77:f4:3e:dc: 41:7a:25:bf:a5:ca:7c:42:5d:d4:1b:ae:a2:53:fa:83:b2:da: a5:dc:24:5f:e5:f7:52:c5:5a:09:80:a3:1e:c6:fd:3a:44:06: dd:46:25:80:80:08:5d:00:1f:38:5e:e8:da:67:ca:1d:87:de: 56:17:e2:8f:52:6b:8b:b5:88:42:38:fe:06:65:de:87:9c:a3: 1b:28:7d:e9:94:0b:43:2c:ea:85:07:25:50:73:f2:76:0b:a9: 6a:30:f1:2e:95:ef:1b:c5:79:27:dc:66:df:c0:b1:ca:68:82: 69:44:a2:9c -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICTvcwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC NTIwREFBQzdEQThGMB4XDTI1MDUyMzA5NTQyN1oXDTI2MDUyMzA5NTEwMFowMzEx MC8GA1UEAxMoQjNDN0ExOTgwNEY3MjhFOEZGNUU0NUJFQzhEQTU4MjEwNUEzREE5 RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMLmNYkZ4K3AUDIPs+Eh z8sstFutMvyKkI1cWEKJKSe4chDtSf8dg9L9RgjLltN3qskOW6tR2zG4vDbmv6Ul wutbkomnKrMKUeiZJS06PmzxIq7oQhYWTuvmcbno5TDBMAzbtNH8fcizkCyuGHqW ziLWxT26X/6uT6FveJj2aKJCuQ59PFpf5iDrzcgaSCBWkAcrhncxDciERf9LwoBd gh0b3ew9seebENGkg+rPu4itAkO91h5zETNrZolqP7NKmLYRXfYMA+ERl3puLXhx 8HkaqqH8Q39HEqLTDSpg/aHqshfF32Wni9kbRSjXx03FIlrBvEuTWPKjE3QbG/Hz iVkCAwEAAaOCApIwggKOMB0GA1UdDgQWBBSzx6GYBPco6P9eRb7I2lghBaPanTAf BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0 NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMzAwNzMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDczL3M4 ZWhtQVQzS09qX1hrVy15TnBZSVFXajJwMC5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwJgYIKwYBBQUHAQcBAf8EFzAVMBMEAgACMA0DBQAgAQOAAwQCJABAMA0G CSqGSIb3DQEBCwUAA4IBAQBIxkIbuh3QnMCeJz4/vkprB4CqzvNZ9IbNSYFspI+t dkUd5osi4vmty/XXhGCYcMQX3IXlhFMbD1Oyn+3hLyf+4fMXHlrIlseXLvfCbtDS Y4dSWrL8q1c6IOwS/M/plmGYIeHmvhfDhLd2CgaKj0964TQosio66wWtuldKkCuV qFgmRES82aDD7dlbQXf0PtxBeiW/pcp8Ql3UG66iU/qDstql3CRf5fdSxVoJgKMe xv06RAbdRiWAgAhdAB84XujaZ8odh95WF+KPUmuLtYhCOP4GZd6HnKMbKH3plAtD LOqFByVQc/J2C6lqMPEule8bxXkn3GbfwLHKaIJpRKKc -----END CERTIFICATE-----Generated at Mon Jun 2 07:22:16 2025 by rpki-client