Certificate
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.cer
File: LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.cer (raw, json)
Hash identifier: k8TghOuIY4XlxUwBe+FMAcme+SNL1PdPYoU1Uw02Nd4=
Subject key identifier: 2D:9D:92:F8:3F:5E:0C:EF:5F:EA:DD:BE:34:A8:FB:90:8D:A1:8D:14
Authority key identifier: BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F
Certificate issuer: /CN=A91A73810000/serialNumber=BA4412B35F5A8A7147BFC667B59B520DAAC7DA8F
Certificate serial: 46CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Sat 15 Mar 2025 01:31:41 +0000
Certificate not after: Sun 15 Mar 2026 01:30:03 +0000
Subordinate resources: IP: 2401:c20::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18124 (0x46cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A73810000
Validity
Not Before: Mar 15 01:31:41 2025 GMT
Not After : Mar 15 01:30:03 2026 GMT
Subject: CN=2D9D92F83F5E0CEF5FEADDBE34A8FB908DA18D14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9f:ce:b1:bb:00:e5:97:95:9d:bd:6c:52:7d:
6a:fb:bf:19:47:9a:8d:de:1d:b5:e1:6f:ee:34:54:
be:58:6b:4b:1a:18:cb:74:1d:71:c4:eb:e5:0e:09:
fc:a8:50:10:6f:ab:49:bf:5d:1a:eb:e0:bc:f6:44:
b4:34:9d:f0:86:52:36:32:78:86:22:8d:22:66:53:
32:e7:e5:d7:aa:a2:8f:25:b8:04:b7:25:4c:61:57:
16:27:df:9d:c9:2e:c9:81:28:fc:c3:44:ca:e8:7e:
57:57:c9:44:51:53:d7:ab:0d:49:8b:84:35:9f:f0:
a6:f0:48:b7:9e:36:94:84:c4:7b:f2:e2:60:ad:8f:
61:ab:6c:36:96:e0:d6:51:91:b6:76:ab:00:b9:9e:
9a:c2:7b:6c:af:d4:89:f1:ed:d0:29:f8:9e:f1:17:
0a:bd:1a:4b:38:1c:ae:35:6d:f6:55:7b:f0:9e:50:
7b:ab:e2:27:9d:d4:76:25:d1:9d:70:68:7f:19:58:
37:f7:ef:f6:9b:34:8d:e0:33:19:3e:61:c1:34:65:
00:8d:96:30:50:ed:7f:06:1b:03:f5:42:ee:01:0d:
ef:31:56:a5:8e:3a:a1:9d:a8:5b:43:7f:bc:94:df:
bb:3f:ee:9a:77:6c:38:22:58:d5:3d:58:d7:a0:7a:
50:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9D:92:F8:3F:5E:0C:EF:5F:EA:DD:BE:34:A8:FB:90:8D:A1:8D:14
X509v3 Authority Key Identifier:
keyid:BA:44:12:B3:5F:5A:8A:71:47:BF:C6:67:B5:9B:52:0D:AA:C7:DA:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:c20::/32
Signature Algorithm: sha256WithRSAEncryption
29:38:08:94:ec:d9:0d:46:cd:62:d7:b4:d0:91:a2:5d:71:3a:
d4:5f:7c:82:d4:2a:08:90:74:2a:b7:bd:c0:41:e2:16:4a:49:
ce:ce:60:bf:3b:88:22:19:4d:43:2b:d5:06:49:cc:38:b6:80:
f1:b4:88:f2:3d:4e:e8:6a:a9:f1:54:29:f1:48:c6:66:de:57:
07:fc:b3:94:8d:4e:3d:82:15:67:77:33:02:8c:75:35:12:d9:
db:77:d6:38:de:f0:32:9b:c1:05:ec:19:ae:d8:3a:3a:a4:48:
7a:fe:bb:2a:03:29:72:61:17:a4:99:53:47:4c:91:d0:05:0c:
ca:66:18:d0:28:03:d8:a5:2d:76:b4:7b:cc:2c:5d:dd:1e:47:
7d:84:92:b0:87:6c:0b:f0:d7:cc:37:62:ab:2c:f5:8b:df:0b:
da:44:00:e8:56:ae:f1:b8:97:b7:16:77:8d:31:74:fb:13:13:
a2:16:a2:b1:59:24:00:43:7d:c1:f3:18:ba:4b:2b:8a:42:0e:
7b:a8:b1:4c:9c:3f:90:36:bd:27:b7:fc:ed:68:d5:21:02:76:
c9:3d:23:61:16:c7:d4:19:b7:87:43:4d:1a:9a:fa:51:5c:00:
36:9f:aa:11:fd:ab:bf:69:9a:9b:74:ad:de:19:2e:61:9a:d1:
81:c4:1b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:21:09 2025 by rpki-client