$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/23CxK0Fq4kNGQeWs0lb7IktMW5s.cer File: 23CxK0Fq4kNGQeWs0lb7IktMW5s.cer (raw, json) Hash identifier: Z8NStEcslg0Pw6OD7Qav3XGaV0LRQEGTlMNLC0fXPxU= Subject key identifier: DB:70:B1:2B:41:6A:E2:43:46:41:E5:AC:D2:56:FB:22:4B:4C:5B:9B Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0F52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/23CxK0Fq4kNGQeWs0lb7IktMW5s.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Apr 2025 01:31:52 +0000 Certificate not after: Wed 15 Apr 2026 01:30:03 +0000 Subordinate resources: IP: 157.66.180.0/23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3922 (0xf52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: Apr 15 01:31:52 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=DB70B12B416AE2434641E5ACD256FB224B4C5B9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5a:62:5d:db:d2:af:83:4a:cb:cc:6a:88:17: 4b:95:73:25:22:90:9a:cf:08:a6:69:ed:cb:62:1f: ae:8e:88:da:21:8d:32:c9:7c:fd:29:64:fc:a0:86: d3:25:16:6c:b7:4d:d9:9e:d0:e7:61:ce:5c:67:a3: df:c6:6e:a6:b0:86:59:58:53:44:9c:cf:f6:f4:29: c1:d2:2f:40:b7:4d:0c:d0:29:0b:f9:66:cc:53:fa: 79:3a:34:af:a0:ad:a5:30:f2:a0:d8:f2:b2:2d:9f: fd:76:7e:1a:ad:80:0d:87:17:d3:61:80:e3:7f:bc: 77:6d:ef:01:6a:e7:98:c3:b0:10:81:e0:a8:dc:b2: f4:da:d5:89:dd:1a:f1:7e:b9:fd:7b:22:7a:cf:b3: 4f:a1:13:5d:ac:71:8f:45:89:79:3f:eb:10:fc:53: 85:d5:2b:2f:ee:15:f5:57:33:6e:d2:ca:20:fe:cf: 70:8b:88:71:13:6d:47:f9:59:af:0f:8d:8d:3a:c9: 79:c6:29:34:4b:4f:c6:32:45:9b:52:4e:67:36:6a: b2:39:72:bc:f6:85:fb:52:73:ba:63:aa:bf:e1:4e: e0:18:d8:a4:5c:80:70:86:04:85:1d:ca:63:43:e1: d6:d5:e2:e6:21:99:28:4a:11:83:15:90:79:45:7b: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:70:B1:2B:41:6A:E2:43:46:41:E5:AC:D2:56:FB:22:4B:4C:5B:9B X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/23CxK0Fq4kNGQeWs0lb7IktMW5s.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.180.0/23 Signature Algorithm: sha256WithRSAEncryption 06:f6:2c:c1:41:c1:61:fb:5d:e0:b9:ae:a2:14:5c:64:d8:25: 91:32:15:30:a5:1b:88:0c:6c:24:e8:0f:46:f6:71:78:5c:39: f1:f9:5a:ce:fa:e7:91:d1:f8:cb:74:eb:ab:97:5d:7c:ca:93: 85:8a:a1:4b:41:40:26:2a:43:a1:b4:e9:0c:01:43:dd:dc:32: 63:bc:24:31:b8:5f:49:08:a7:59:95:33:52:41:48:06:e8:05: 59:8c:89:75:10:42:4f:24:2b:c7:a3:32:9f:b5:45:b3:d3:19: f6:89:34:3b:23:00:b2:0b:d9:d4:85:39:18:4d:c6:32:6b:88: a3:87:53:34:38:52:43:d8:78:ca:a5:a3:f8:41:1d:42:ad:b3: 8a:d4:b5:18:9e:a0:fd:5b:e2:76:52:a9:f0:cd:0f:51:44:63: 19:c9:82:19:03:4e:1f:62:5d:e2:69:c7:e1:b9:07:cb:20:fc: c7:62:47:c1:ba:ce:cc:a8:28:8f:7c:7a:da:60:7e:ba:4f:0a: 01:75:86:55:3f:b8:f8:da:eb:68:77:93:c9:fb:1e:df:ff:bf: 6b:9d:e4:e7:cf:6a:d5:97:ca:11:8f:85:71:d7:95:81:a5:da: dc:05:98:3e:26:b3:c2:3c:2a:dc:88:91:8f:0b:5e:ff:4d:81: ae:e9:de:3f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICD1IwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI1MDQxNTAxMzE1MloXDTI2MDQxNTAxMzAwM1owMzEx MC8GA1UEAxMoREI3MEIxMkI0MTZBRTI0MzQ2NDFFNUFDRDI1NkZCMjI0QjRDNUI5 QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOZaYl3b0q+DSsvMaogX S5VzJSKQms8Ipmnty2Ifro6I2iGNMsl8/Slk/KCG0yUWbLdN2Z7Q52HOXGej38Zu prCGWVhTRJzP9vQpwdIvQLdNDNApC/lmzFP6eTo0r6CtpTDyoNjysi2f/XZ+Gq2A DYcX02GA43+8d23vAWrnmMOwEIHgqNyy9NrVid0a8X65/Xsies+zT6ETXaxxj0WJ eT/rEPxThdUrL+4V9VczbtLKIP7PcIuIcRNtR/lZrw+NjTrJecYpNEtPxjJFm1JO ZzZqsjlyvPaF+1JzumOqv+FO4BjYpFyAcIYEhR3KY0Ph1tXi5iGZKEoRgxWQeUV7 yX0CAwEAAaOCAoswggKHMB0GA1UdDgQWBBTbcLErQWriQ0ZB5azSVvsiS0xbmzAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAyNjAvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMjYwLzIz Q3hLMEZxNGtOR1FlV3MwbGI3SWt0TVc1cy5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQrQwDQYJKoZIhvcN AQELBQADggEBAAb2LMFBwWH7XeC5rqIUXGTYJZEyFTClG4gMbCToD0b2cXhcOfH5 Ws7655HR+Mt066uXXXzKk4WKoUtBQCYqQ6G06QwBQ93cMmO8JDG4X0kIp1mVM1JB SAboBVmMiXUQQk8kK8ejMp+1RbPTGfaJNDsjALIL2dSFORhNxjJriKOHUzQ4UkPY eMqlo/hBHUKts4rUtRieoP1b4nZSqfDND1FEYxnJghkDTh9iXeJpx+G5B8sg/Mdi R8G6zsyoKI98etpgfrpPCgF1hlU/uPja62h3k8n7Ht//v2ud5OfPatWXyhGPhXHX lYGl2twFmD4ms8I8KtyIkY8LXv9Nga7p3j8= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:17 2025 by rpki-client on console.sobornost.net