Certificate

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer
File:                     s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer (raw, json)
Hash identifier:          LIwRpkRma92SQK4nByRCptWW5GmgMjJpCoUsN7H0Jeo=
Subject key identifier:   B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D
Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F
Certificate issuer:       /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
Certificate serial:       6B49
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
Manifest:                 rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft
caRepository:             rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/
Notify URL:               https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before:   Mon 15 Jun 2026 01:37:42 +0000
Certificate not after:    Tue 15 Jun 2027 01:30:02 +0000
Subordinate resources:    IP: 2001:380::/32
                          IP: 2400:4000::/22
                          IP: 2402:af40::/32
Validation:               OK
Signature path:           rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
                          rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 09:53:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 27465 (0x6b49)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A73810000, serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
        Validity
            Not Before: Jun 15 01:37:42 2026 GMT
            Not After : Jun 15 01:30:02 2027 GMT
        Subject: CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:e6:35:89:19:e0:ad:c0:50:32:0f:b3:e1:21:
                    cf:cb:2c:b4:5b:ad:32:fc:8a:90:8d:5c:58:42:89:
                    29:27:b8:72:10:ed:49:ff:1d:83:d2:fd:46:08:cb:
                    96:d3:77:aa:c9:0e:5b:ab:51:db:31:b8:bc:36:e6:
                    bf:a5:25:c2:eb:5b:92:89:a7:2a:b3:0a:51:e8:99:
                    25:2d:3a:3e:6c:f1:22:ae:e8:42:16:16:4e:eb:e6:
                    71:b9:e8:e5:30:c1:30:0c:db:b4:d1:fc:7d:c8:b3:
                    90:2c:ae:18:7a:96:ce:22:d6:c5:3d:ba:5f:fe:ae:
                    4f:a1:6f:78:98:f6:68:a2:42:b9:0e:7d:3c:5a:5f:
                    e6:20:eb:cd:c8:1a:48:20:56:90:07:2b:86:77:31:
                    0d:c8:84:45:ff:4b:c2:80:5d:82:1d:1b:dd:ec:3d:
                    b1:e7:9b:10:d1:a4:83:ea:cf:bb:88:ad:02:43:bd:
                    d6:1e:73:11:33:6b:66:89:6a:3f:b3:4a:98:b6:11:
                    5d:f6:0c:03:e1:11:97:7a:6e:2d:78:71:f0:79:1a:
                    aa:a1:fc:43:7f:47:12:a2:d3:0d:2a:60:fd:a1:ea:
                    b2:17:c5:df:65:a7:8b:d9:1b:45:28:d7:c7:4d:c5:
                    22:5a:c1:bc:4b:93:58:f2:a3:13:74:1b:1b:f1:f3:
                    89:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D
            X509v3 Authority Key Identifier:
                keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Subject Information Access:
                CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/
                RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2001:380::/32
                  2400:4000::/22
                  2402:af40::/32

    Signature Algorithm: sha256WithRSAEncryption
         80:c9:4c:52:06:44:b5:18:51:65:35:c6:c3:f3:c0:09:eb:70:
         b4:5e:67:df:8d:0d:be:4e:0c:c8:1a:ed:90:12:5d:57:69:90:
         ff:16:ab:32:03:ce:e3:9a:7e:7d:5d:3f:35:10:45:5d:f8:ae:
         b2:e0:3f:d4:70:74:4a:bc:e1:8b:55:05:8b:15:fe:0e:81:b3:
         d8:89:2c:9e:8a:4a:a6:fa:68:96:46:2b:aa:49:70:9c:22:db:
         d6:6b:a4:df:f9:3a:06:e1:d3:5f:3a:a5:20:de:95:30:39:3f:
         9a:a1:de:fa:1c:a3:9f:a7:39:87:53:47:a4:4b:0f:fa:ed:14:
         37:ae:66:fc:52:7d:73:6e:70:fd:7e:0f:1a:61:be:0a:48:27:
         57:1c:0b:44:ee:c5:8e:66:23:83:84:b0:67:ce:58:94:a5:07:
         81:b6:0b:d0:52:4c:a1:4e:be:9d:64:8e:5c:7c:24:80:9b:ba:
         08:83:54:c9:4f:7b:fc:0a:c0:d6:68:a2:14:81:8e:53:2b:33:
         9d:8b:08:d8:f2:34:0f:1d:f0:ff:01:13:ca:09:c0:ed:2c:2d:
         88:9e:25:90:60:45:05:f0:33:44:8a:d0:70:f4:eb:e1:05:6b:
         f6:33:e5:51:f1:5f:c2:ea:06:67:ed:d1:fb:4c:da:29:85:e3:
         10:69:83:f1
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgICa0kwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QTczODEwMDAwMTEwLwYDVQQFEyhCQTQ0MTJCMzVGNUE4QTcxNDdCRkM2NjdCNTlC
NTIwREFBQzdEQThGMB4XDTI2MDYxNTAxMzc0MloXDTI3MDYxNTAxMzAwMlowMzEx
MC8GA1UEAxMoQjNDN0ExOTgwNEY3MjhFOEZGNUU0NUJFQzhEQTU4MjEwNUEzREE5
RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMLmNYkZ4K3AUDIPs+Eh
z8sstFutMvyKkI1cWEKJKSe4chDtSf8dg9L9RgjLltN3qskOW6tR2zG4vDbmv6Ul
wutbkomnKrMKUeiZJS06PmzxIq7oQhYWTuvmcbno5TDBMAzbtNH8fcizkCyuGHqW
ziLWxT26X/6uT6FveJj2aKJCuQ59PFpf5iDrzcgaSCBWkAcrhncxDciERf9LwoBd
gh0b3ew9seebENGkg+rPu4itAkO91h5zETNrZolqP7NKmLYRXfYMA+ERl3puLXhx
8HkaqqH8Q39HEqLTDSpg/aHqshfF32Wni9kbRSjXx03FIlrBvEuTWPKjE3QbG/Hz
iVkCAwEAAaOCApkwggKVMB0GA1UdDgQWBBSzx6GYBPco6P9eRb7I2lghBaPanTAf
BgNVHSMEGDAWgBS6RBKzX1qKcUe/xme1m1INqsfajzAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0
b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdWtRU3MxOWFpbkZIdjhabnRa
dFNEYXJIMm84LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j
Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0
NjhGN0M3MkZEMUZGMi91a1FTczE5YWluRkh2OFpudFp0U0RhckgybzguY2VyMA8G
A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw
gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9hcC9BOTFBNzM4MTAwMDAvMzAwNzMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw
a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzMwMDczL3M4
ZWhtQVQzS09qX1hrVy15TnBZSVFXajJwMC5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz
Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv
bi54bWwwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgACMBQDBQAgAQOAAwQCJABAAwUA
JAKvQDANBgkqhkiG9w0BAQsFAAOCAQEAgMlMUgZEtRhRZTXGw/PACetwtF5n340N
vk4MyBrtkBJdV2mQ/xarMgPO45p+fV0/NRBFXfiusuA/1HB0Srzhi1UFixX+DoGz
2IksnopKpvpolkYrqklwnCLb1muk3/k6BuHTXzqlIN6VMDk/mqHe+hyjn6c5h1NH
pEsP+u0UN65m/FJ9c25w/X4PGmG+CkgnVxwLRO7FjmYjg4SwZ85YlKUHgbYL0FJM
oU6+nWSOXHwkgJu6CINUyU97/ArA1miiFIGOUysznYsI2PI0Dx3w/wETygnA7Swt
iJ4lkGBFBfAzRIrQcPTr4QVr9jPlUfFfwuoGZ+3R+0zaKYXjEGmD8Q==
-----END CERTIFICATE-----
Generated at Tue Jul 7 11:47:45 2026 by rpki-client