Certificate
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
File: 0UAKuJttcvfbQk9KqozP9kONPUo.cer (raw, json)
Hash identifier: 98SP+XAUuxkJE9OcPLVNTUU65tiEJQYrI2TfyYBt0l4=
Subject key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Certificate serial: 0F3F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Sat 15 Mar 2025 01:38:22 +0000
Certificate not after: Sun 15 Mar 2026 01:30:03 +0000
Subordinate resources: IP: 23.232.128.0/17
IP: 107.153.0.0/16
IP: 128.28.0.0/16
IP: 128.53.0.0/16
IP: 140.227.0.0/16
IP: 143.125.212.0 -- 143.125.255.255
IP: 157.65.16.0 -- 157.65.175.255
IP: 157.65.224.0/19
IP: 157.120.0.0/18
IP: 160.248.0.0 -- 160.248.12.255
IP: 160.248.14.0 -- 160.248.69.255
IP: 160.248.74.0 -- 160.248.81.255
IP: 160.248.83.0 -- 160.248.84.255
IP: 160.248.87.0 -- 160.248.88.255
IP: 160.248.90.0 -- 160.248.175.255
IP: 160.248.184.0 -- 160.248.201.255
IP: 160.248.203.0 -- 160.248.205.255
IP: 160.248.207.0 -- 160.248.223.255
IP: 160.248.232.0/22
IP: 160.248.241.0 -- 160.248.253.255
IP: 160.248.255.0/24
IP: 161.34.0.0/16
IP: 164.70.64.0/18
IP: 192.244.96.0/20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3903 (0xf3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A73810000
Validity
Not Before: Mar 15 01:38:22 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:2c:23:10:75:f0:c9:52:d0:5e:db:19:d4:
24:7d:b1:d8:ce:b5:b2:c5:b2:d2:77:3c:10:ba:96:
ac:a3:a9:9f:a9:84:c0:48:7a:e0:1d:c7:45:6a:f2:
80:3f:2e:a6:13:b8:93:7a:1e:76:10:5c:d9:ba:10:
36:df:9c:5c:8e:9b:82:72:5f:5b:6d:de:3f:9e:36:
86:e9:76:4e:eb:f6:dc:ea:14:01:b6:e0:6c:75:5e:
80:85:ff:70:d5:86:6d:e7:89:fe:03:55:a2:4b:94:
9a:f2:8b:2a:38:4e:6a:d7:5e:5d:f6:73:ab:cd:85:
57:4a:b1:f0:53:7a:7e:ba:e4:a0:1f:d7:72:c0:51:
8b:aa:ce:a2:f2:c7:ce:03:20:49:4c:16:1d:39:f7:
14:73:8e:2d:e4:1c:1b:f3:6e:39:99:e3:94:64:6a:
4d:f7:45:d8:ec:9b:bb:f7:a4:97:5d:0a:60:32:62:
ff:a8:f8:bc:d0:f0:6d:bb:dc:e2:66:86:d0:e3:2a:
4f:4c:ea:0e:40:dd:50:ac:0e:77:48:11:81:a7:73:
b8:b6:77:46:0d:68:1d:39:03:79:9d:0d:61:2b:b9:
aa:4e:e4:2f:d9:07:c3:e6:26:f7:74:4b:e0:88:ba:
68:29:2c:36:ec:0b:03:a8:db:da:2d:db:5a:af:bd:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Authority Key Identifier:
keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
23.232.128.0/17
107.153.0.0/16
128.28.0.0/16
128.53.0.0/16
140.227.0.0/16
143.125.212.0-143.125.255.255
157.65.16.0-157.65.175.255
157.65.224.0/19
157.120.0.0/18
160.248.0.0-160.248.12.255
160.248.14.0-160.248.69.255
160.248.74.0-160.248.81.255
160.248.83.0-160.248.84.255
160.248.87.0-160.248.88.255
160.248.90.0-160.248.175.255
160.248.184.0-160.248.201.255
160.248.203.0-160.248.205.255
160.248.207.0-160.248.223.255
160.248.232.0/22
160.248.241.0-160.248.253.255
160.248.255.0/24
161.34.0.0/16
164.70.64.0/18
192.244.96.0/20
Signature Algorithm: sha256WithRSAEncryption
63:18:f5:32:fe:8a:0f:9a:70:d9:2d:1a:d8:f0:97:98:5f:0f:
e6:c1:06:b8:7d:44:06:18:19:00:98:ae:ab:bc:a6:3c:78:24:
64:34:86:6b:a6:5d:ca:c7:07:62:14:bb:f2:3f:2d:0a:71:35:
0a:03:a3:12:ac:b7:a3:74:b0:af:f9:89:5b:19:7c:9a:83:de:
2b:61:84:75:18:a9:ec:15:48:79:0b:f3:20:93:02:ed:db:cf:
cb:d4:bc:c9:84:9e:c3:5c:9e:b2:c7:8e:65:10:a4:f2:8f:2c:
3a:87:ae:28:a0:b9:78:e4:7c:a0:30:36:d1:c9:84:d6:7f:a0:
23:8e:0a:47:0d:ca:ad:55:4f:a4:fa:c9:6a:5b:dd:f2:f1:35:
3e:64:cd:4d:ff:bb:fc:44:f1:ff:95:09:b1:e3:b7:56:f1:68:
b2:0e:eb:32:78:e0:68:25:b2:53:84:42:77:ba:5e:1b:77:7d:
02:69:cc:a9:3f:28:85:fe:65:98:36:a8:9c:8f:da:3b:f8:db:
a6:2e:53:9d:0d:c1:5e:19:54:43:87:b2:e1:12:90:b7:28:5c:
93:bc:80:b7:c3:d6:91:39:0f:af:87:28:c3:fd:bf:a2:67:fa:
38:c2:07:db:c3:e8:97:b3:d2:0d:0a:67:f8:f0:43:53:38:c2:
8c:d2:e5:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:25:07 2025 by rpki-client