$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer File: Ntow9oZXfWV29keylUVVNYNRMMM.cer (raw, json) Hash identifier: omwtV82OSEJdaXBjzCqQdmemjXG/3ecn7F4e4kqxWtk= Subject key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0F59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Apr 2025 01:32:24 +0000 Certificate not after: Wed 15 Apr 2026 01:30:03 +0000 Subordinate resources: IP: 157.1.0.0/16 IP: 192.50.12.0/24 IP: 192.55.118.0/24 IP: 192.58.9.0 -- 192.58.18.255 IP: 192.153.95.0 -- 192.153.104.255 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3929 (0xf59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: Apr 15 01:32:24 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=36DA30F686577D6576F647B295455535835130C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:c1:b8:92:42:0e:0b:7e:d8:38:05:ed:e6: aa:4e:7d:41:b9:c1:9d:93:c8:2d:68:fc:7d:ba:bf: 19:51:b8:98:85:98:50:b2:80:1f:cf:eb:4e:62:1f: b7:b8:73:81:ea:cf:80:76:d9:7f:36:e5:cb:09:32: 8e:71:94:48:cf:df:b4:d3:8b:a6:3c:aa:c1:dd:f5: 11:e7:6b:11:d6:9b:7a:8e:5a:a1:95:e5:3f:76:57: 2c:39:15:dd:79:8b:b8:ca:a2:78:8d:aa:e3:d5:7a: 58:21:d2:86:bb:83:4d:46:19:b6:94:68:fa:c0:f6: 92:89:1d:02:17:62:12:71:9a:7c:96:4d:81:e5:cb: 6b:36:90:d5:dc:16:25:52:4e:95:fe:a0:d2:76:37: 5a:62:31:9b:71:c0:4c:8b:ac:e7:9f:c4:91:db:01: ea:82:d1:11:80:3f:58:fc:d5:c5:9f:24:3c:06:26: e1:96:87:f4:c7:72:20:ae:1e:13:22:f6:39:5a:09: f9:c2:75:37:48:4d:fb:2e:03:6c:42:69:4a:1e:aa: c1:95:0f:66:43:97:64:a3:48:c4:43:f5:88:d2:71: 73:4a:a8:b6:ad:71:24:15:a9:d8:11:59:cc:87:34: 23:62:b5:1e:a1:e4:0e:a4:fc:d2:8f:40:ce:27:64: 55:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.1.0.0/16 192.50.12.0/24 192.55.118.0/24 192.58.9.0-192.58.18.255 192.153.95.0-192.153.104.255 Signature Algorithm: sha256WithRSAEncryption 0c:c6:76:3c:8b:fc:36:dc:08:00:c5:c5:a0:24:3d:ed:49:ef: f5:47:2f:f6:6e:0a:a1:aa:5e:05:4e:fc:c0:51:12:c2:b6:72: ec:4e:cf:a6:98:7d:66:dc:fc:ea:f7:a0:8d:31:07:5f:6a:d0: 53:dd:bf:33:93:3c:74:71:4a:ec:db:47:22:cb:1a:dc:f3:7a: 1c:5b:ae:cf:1f:65:1c:6a:6f:8e:85:b4:75:66:55:25:10:4f: eb:5f:ee:ba:5e:f3:9f:71:f6:08:b0:df:ba:37:53:80:78:c6: 8d:92:6a:a3:0d:b9:ce:2b:7d:3a:4c:5b:ec:6d:6f:7f:aa:45: 77:59:59:29:72:05:fb:3f:f4:c4:fb:d2:e0:be:57:e4:f3:4e: 8a:16:db:8e:0b:03:3a:7a:96:2f:01:31:fe:fa:c3:19:c2:cb: 96:57:8e:2d:65:fe:72:06:2a:69:9a:bb:d7:a9:e0:91:ab:56: 50:7f:fb:45:cb:c4:95:bb:96:cb:b5:2a:74:10:4d:9e:02:1f: 63:ee:ac:6c:a6:09:1b:ca:9f:3a:8a:36:ac:5b:c5:fd:db:91: d3:24:e9:04:7e:48:9a:00:15:48:6d:bd:2c:82:31:2b:a9:fe: b1:4f:24:7e:ae:7f:75:ce:dd:b7:5f:49:b4:74:69:e6:ad:3e: 31:f0:a6:33 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICD1kwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI1MDQxNTAxMzIyNFoXDTI2MDQxNTAxMzAwM1owMzEx MC8GA1UEAxMoMzZEQTMwRjY4NjU3N0Q2NTc2RjY0N0IyOTU0NTU1MzU4MzUxMzBD MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALvvwbiSQg4Lftg4Be3m qk59QbnBnZPILWj8fbq/GVG4mIWYULKAH8/rTmIft7hzgerPgHbZfzblywkyjnGU SM/ftNOLpjyqwd31EedrEdabeo5aoZXlP3ZXLDkV3XmLuMqieI2q49V6WCHShruD TUYZtpRo+sD2kokdAhdiEnGafJZNgeXLazaQ1dwWJVJOlf6g0nY3WmIxm3HATIus 55/EkdsB6oLREYA/WPzVxZ8kPAYm4ZaH9MdyIK4eEyL2OVoJ+cJ1N0hN+y4DbEJp Sh6qwZUPZkOXZKNIxEP1iNJxc0qotq1xJBWp2BFZzIc0I2K1HqHkDqT80o9Azidk VV8CAwEAAaOCArAwggKsMB0GA1UdDgQWBBQ22jD2hld9ZXb2R7KVRVU1g1EwwzAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAQYIKwYBBQUHAQsEgfQw gfEwQwYIKwYBBQUHMAWGN3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjE2Ni8wYgYIKwYBBQUHMAqGVnJzeW5jOi8vcnBr aS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjE2Ni9OdG93 OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0ubWZ0MEYGCCsGAQUFBzANhjpodHRwczov L3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24u eG1sMEYGCCsGAQUFBwEHAQH/BDcwNTAzBAIAATAtAwMAnQEDBADAMgwDBADAN3Yw DAMEAMA6CQMEAMA6EjAMAwQAwJlfAwQAwJloMA0GCSqGSIb3DQEBCwUAA4IBAQAM xnY8i/w23AgAxcWgJD3tSe/1Ry/2bgqhql4FTvzAURLCtnLsTs+mmH1m3Pzq96CN MQdfatBT3b8zkzx0cUrs20ciyxrc83ocW67PH2Ucam+OhbR1ZlUlEE/rX+66XvOf cfYIsN+6N1OAeMaNkmqjDbnOK306TFvsbW9/qkV3WVkpcgX7P/TE+9Lgvlfk806K FtuOCwM6epYvATH++sMZwsuWV44tZf5yBippmrvXqeCRq1ZQf/tFy8SVu5bLtSp0 EE2eAh9j7qxspgkbyp86ijasW8X925HTJOkEfkiaABVIbb0sgjErqf6xTyR+rn91 zt23X0m0dGnmrT4x8KYz -----END CERTIFICATE-----Generated at Mon Apr 28 22:53:03 2025 by rpki-client on console.sobornost.net