Certificate
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
File: 0UAKuJttcvfbQk9KqozP9kONPUo.cer (raw, json)
Hash identifier: sIK4CPIGsrEfVYAaHoOUawOHWHRs6loy94xBz0jNcnU=
Subject key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Certificate serial: 117D
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Tue 15 Jul 2025 01:35:38 +0000
Certificate not after: Wed 15 Jul 2026 01:30:01 +0000
Subordinate resources: IP: 23.232.128.0/17
IP: 107.153.0.0/16
IP: 128.28.0.0/16
IP: 128.53.0.0/16
IP: 140.227.0.0/16
IP: 143.125.212.0 -- 143.125.255.255
IP: 157.65.16.0 -- 157.65.175.255
IP: 157.65.224.0/19
IP: 157.120.0.0/18
IP: 160.248.0.0 -- 160.248.12.255
IP: 160.248.14.0 -- 160.248.69.255
IP: 160.248.74.0 -- 160.248.81.255
IP: 160.248.83.0 -- 160.248.84.255
IP: 160.248.87.0 -- 160.248.88.255
IP: 160.248.90.0 -- 160.248.175.255
IP: 160.248.184.0 -- 160.248.201.255
IP: 160.248.203.0 -- 160.248.205.255
IP: 160.248.207.0 -- 160.248.223.255
IP: 160.248.232.0/22
IP: 160.248.241.0 -- 160.248.253.255
IP: 160.248.255.0/24
IP: 161.34.0.0/16
IP: 164.70.64.0/18
IP: 192.244.96.0/20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Jul 2025 05:14:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4477 (0x117d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Validity
Not Before: Jul 15 01:35:38 2025 GMT
Not After : Jul 15 01:30:01 2026 GMT
Subject: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:2c:23:10:75:f0:c9:52:d0:5e:db:19:d4:
24:7d:b1:d8:ce:b5:b2:c5:b2:d2:77:3c:10:ba:96:
ac:a3:a9:9f:a9:84:c0:48:7a:e0:1d:c7:45:6a:f2:
80:3f:2e:a6:13:b8:93:7a:1e:76:10:5c:d9:ba:10:
36:df:9c:5c:8e:9b:82:72:5f:5b:6d:de:3f:9e:36:
86:e9:76:4e:eb:f6:dc:ea:14:01:b6:e0:6c:75:5e:
80:85:ff:70:d5:86:6d:e7:89:fe:03:55:a2:4b:94:
9a:f2:8b:2a:38:4e:6a:d7:5e:5d:f6:73:ab:cd:85:
57:4a:b1:f0:53:7a:7e:ba:e4:a0:1f:d7:72:c0:51:
8b:aa:ce:a2:f2:c7:ce:03:20:49:4c:16:1d:39:f7:
14:73:8e:2d:e4:1c:1b:f3:6e:39:99:e3:94:64:6a:
4d:f7:45:d8:ec:9b:bb:f7:a4:97:5d:0a:60:32:62:
ff:a8:f8:bc:d0:f0:6d:bb:dc:e2:66:86:d0:e3:2a:
4f:4c:ea:0e:40:dd:50:ac:0e:77:48:11:81:a7:73:
b8:b6:77:46:0d:68:1d:39:03:79:9d:0d:61:2b:b9:
aa:4e:e4:2f:d9:07:c3:e6:26:f7:74:4b:e0:88:ba:
68:29:2c:36:ec:0b:03:a8:db:da:2d:db:5a:af:bd:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Authority Key Identifier:
keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
23.232.128.0/17
107.153.0.0/16
128.28.0.0/16
128.53.0.0/16
140.227.0.0/16
143.125.212.0-143.125.255.255
157.65.16.0-157.65.175.255
157.65.224.0/19
157.120.0.0/18
160.248.0.0-160.248.12.255
160.248.14.0-160.248.69.255
160.248.74.0-160.248.81.255
160.248.83.0-160.248.84.255
160.248.87.0-160.248.88.255
160.248.90.0-160.248.175.255
160.248.184.0-160.248.201.255
160.248.203.0-160.248.205.255
160.248.207.0-160.248.223.255
160.248.232.0/22
160.248.241.0-160.248.253.255
160.248.255.0/24
161.34.0.0/16
164.70.64.0/18
192.244.96.0/20
Signature Algorithm: sha256WithRSAEncryption
29:f1:0e:86:eb:c6:79:e4:46:4a:9c:58:08:58:f2:b1:7a:9c:
af:6b:2e:75:9f:b4:a5:eb:a8:4d:52:cb:39:1e:41:ee:12:c1:
51:51:bb:83:f8:79:f3:58:a8:02:aa:43:34:f2:64:ad:ce:8d:
40:7a:31:53:8c:25:4f:7b:31:47:40:eb:30:d4:93:fc:1b:b4:
ac:ee:1c:1e:14:33:c7:22:fe:f6:55:80:42:b3:14:6b:2e:a1:
c9:6f:bf:4a:b1:d0:fb:1d:72:e4:c9:11:13:a4:90:f2:3c:ad:
a0:98:09:67:98:e0:be:91:a6:97:81:7a:4e:7e:30:01:3f:b1:
3b:7e:3a:c0:7b:70:c5:54:77:fb:42:f1:2a:be:20:cf:21:89:
30:cd:93:ee:46:55:6a:57:b9:47:bb:d3:6e:9f:a6:1c:04:f3:
71:bc:55:a9:80:e8:98:8c:6c:01:37:bb:e4:f8:24:6c:25:c0:
c4:1c:50:6d:a8:77:2a:e3:90:c5:37:2d:02:a6:95:8b:04:a8:
3c:d8:d1:78:ed:87:e5:8d:61:3c:0b:61:ea:47:bc:c0:d1:22:
77:4a:e0:ff:29:b0:c9:69:f3:84:f9:f1:08:66:a7:b3:ce:d4:
36:a7:34:d6:51:c2:4b:ba:12:f3:d8:35:5f:bd:22:44:a2:b0:
a6:0a:11:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 08:54:16 2025 by rpki-client