$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/iVcW8E018Pi6R0aSFwRqll56m3o.cer File: iVcW8E018Pi6R0aSFwRqll56m3o.cer (raw, json) Hash identifier: JbKftbRBf9lfHnZm9kSMBSY0oZ7M8nZ9IuJnkX8xMa8= Subject key identifier: 89:57:16:F0:4D:35:F0:F8:BA:47:46:92:17:04:6A:96:5E:7A:9B:7A Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Certificate serial: 0F99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20273/iVcW8E018Pi6R0aSFwRqll56m3o.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20273/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Tue 15 Apr 2025 01:38:05 +0000 Certificate not after: Wed 15 Apr 2026 01:30:03 +0000 Subordinate resources: IP: 161.248.40.0/23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3993 (0xf99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2 Validity Not Before: Apr 15 01:38:05 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=895716F04D35F0F8BA47469217046A965E7A9B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:67:12:9e:69:2b:40:bb:f0:da:c4:7b:9d:12: d6:32:a4:73:40:36:a9:11:8e:3f:9c:2a:4f:a3:24: 97:42:5f:98:f0:43:38:b9:f3:4d:35:95:42:88:09: b2:6e:99:06:c5:ba:ea:2b:1a:70:f4:3b:00:3d:32: 80:44:07:39:02:5c:db:da:64:1c:78:ce:41:3a:7c: 36:f0:19:6f:33:68:95:1c:08:5a:a1:c4:e5:2a:9a: 1c:f8:67:24:ff:76:a8:53:b2:60:7e:30:a1:d5:f3: 53:38:c7:ff:52:4f:17:06:1a:ff:87:34:4e:59:3e: 1a:9b:b0:10:cd:37:92:76:18:c2:3d:14:bd:0d:23: 2c:2f:19:fd:96:cb:a7:fe:d6:51:34:63:bd:c2:32: f5:a4:e9:d4:97:66:93:72:39:c0:18:51:23:86:ae: 5e:62:8c:39:72:18:39:e1:eb:ef:40:ee:ef:6a:7e: f0:88:b8:a3:b8:98:83:e1:d0:11:20:a5:01:09:9f: 80:0a:cc:14:a6:8c:8c:d7:59:4e:14:ea:f8:25:eb: d2:90:b6:ce:26:e7:76:f1:0e:c1:16:38:92:e4:66: 2f:e8:f0:2a:e7:eb:bd:ed:9d:6b:6f:df:f0:a4:37: da:ce:97:a3:24:3d:c8:db:31:08:d5:02:a7:3e:dc: c5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:57:16:F0:4D:35:F0:F8:BA:47:46:92:17:04:6A:96:5E:7A:9B:7A X509v3 Authority Key Identifier: keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20273/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20273/iVcW8E018Pi6R0aSFwRqll56m3o.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.40.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:4c:d5:d6:52:9f:7a:49:7c:be:1f:e7:de:fc:97:65:25:c3: fe:3d:15:19:a8:d5:dc:12:08:e1:cd:a7:8b:77:c0:f9:c0:34: 1c:4a:b6:83:02:1d:42:9c:df:08:58:1d:6a:32:11:3a:7f:f3: cd:1d:3c:7c:60:86:1d:3f:01:ed:ed:32:60:57:66:41:4e:b9: 96:33:6f:a2:90:ad:9b:2b:6f:1d:0c:34:c8:01:fb:2e:a5:34: a1:22:76:e8:2c:87:3d:13:ea:22:81:df:0e:15:cf:aa:96:6f: 05:ae:f1:f8:e7:7c:ce:4e:97:1b:95:4d:dd:d5:37:f6:f6:e4: da:1a:c2:37:e7:05:7e:f9:0b:ef:e0:d6:11:1e:a9:6f:60:8c: 33:b7:c4:d7:2f:c3:f4:66:60:04:1c:ea:e6:f0:ac:be:28:5d: 79:13:37:d0:99:14:d8:75:85:6d:d4:bf:f1:da:39:83:e3:ad: d7:66:0f:04:1d:ce:a5:ee:4b:6b:df:37:5a:a6:55:3c:7c:f5: 26:19:45:ef:70:40:04:87:9b:e7:9d:b4:61:f1:d1:31:2e:ab: dc:6d:54:1a:3f:13:d5:68:8d:c7:bb:f8:b2:77:8d:d8:b8:f5: b3:67:c0:2c:56:47:97:d6:c4:1f:b7:e6:0c:b2:b4:22:9f:6e: 0f:9d:fa:e2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICD5kwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG MTE0OEU2NTM0REYyMB4XDTI1MDQxNTAxMzgwNVoXDTI2MDQxNTAxMzAwM1owMzEx MC8GA1UEAxMoODk1NzE2RjA0RDM1RjBGOEJBNDc0NjkyMTcwNDZBOTY1RTdBOUI3 QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKFnEp5pK0C78NrEe50S 1jKkc0A2qRGOP5wqT6Mkl0JfmPBDOLnzTTWVQogJsm6ZBsW66isacPQ7AD0ygEQH OQJc29pkHHjOQTp8NvAZbzNolRwIWqHE5SqaHPhnJP92qFOyYH4wodXzUzjH/1JP FwYa/4c0Tlk+GpuwEM03knYYwj0UvQ0jLC8Z/ZbLp/7WUTRjvcIy9aTp1Jdmk3I5 wBhRI4auXmKMOXIYOeHr70Du72p+8Ii4o7iYg+HQESClAQmfgArMFKaMjNdZThTq +CXr0pC2zibndvEOwRY4kuRmL+jwKufrve2da2/f8KQ32s6XoyQ9yNsxCNUCpz7c xbUCAwEAAaOCAoswggKHMB0GA1UdDgQWBBSJVxbwTTXw+LpHRpIXBGqWXnqbejAf BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0 b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIIBAwYIKwYBBQUHAQsEgfYw gfMwRAYIKwYBBQUHMAWGOHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9hcC9BOTFBNzM4MTAwMDAvMjAyNzMvMGMGCCsGAQUFBzAKhldyc3luYzovL3Jw a2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzIwMjczL2lW Y1c4RTAxOFBpNlIwYVNGd1JxbGw1Nm0zby5tZnQwRgYIKwYBBQUHMA2GOmh0dHBz Oi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRwL2FwL25vdGlmaWNhdGlv bi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGh+CgwDQYJKoZIhvcN AQELBQADggEBAF9M1dZSn3pJfL4f5978l2Ulw/49FRmo1dwSCOHNp4t3wPnANBxK toMCHUKc3whYHWoyETp/880dPHxghh0/Ae3tMmBXZkFOuZYzb6KQrZsrbx0MNMgB +y6lNKEidugshz0T6iKB3w4Vz6qWbwWu8fjnfM5OlxuVTd3VN/b25NoawjfnBX75 C+/g1hEeqW9gjDO3xNcvw/RmYAQc6ubwrL4oXXkTN9CZFNh1hW3Uv/HaOYPjrddm DwQdzqXuS2vfN1qmVTx89SYZRe9wQASHm+edtGHx0TEuq9xtVBo/E9Vojce7+LJ3 jdi49bNnwCxWR5fWxB+35gyytCKfbg+d+uI= -----END CERTIFICATE-----Generated at Mon Apr 28 22:53:05 2025 by rpki-client on console.sobornost.net