Certificate
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
File: 0UAKuJttcvfbQk9KqozP9kONPUo.cer (raw, json)
Hash identifier: c5ARGy7AqDTRCoDL4/GDLwgOts1D0W7r4TbIefVIkLo=
Subject key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Certificate serial: 10C5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Fri 23 May 2025 09:58:40 +0000
Certificate not after: Sat 23 May 2026 09:51:00 +0000
Subordinate resources: IP: 23.232.128.0/17
IP: 107.153.0.0/16
IP: 128.28.0.0/16
IP: 128.53.0.0/16
IP: 140.227.0.0/16
IP: 143.125.212.0 -- 143.125.255.255
IP: 157.65.16.0 -- 157.65.175.255
IP: 157.65.224.0/19
IP: 157.120.0.0/18
IP: 160.248.0.0 -- 160.248.12.255
IP: 160.248.14.0 -- 160.248.69.255
IP: 160.248.74.0 -- 160.248.81.255
IP: 160.248.83.0 -- 160.248.84.255
IP: 160.248.87.0 -- 160.248.88.255
IP: 160.248.90.0 -- 160.248.175.255
IP: 160.248.184.0 -- 160.248.201.255
IP: 160.248.203.0 -- 160.248.205.255
IP: 160.248.207.0 -- 160.248.223.255
IP: 160.248.232.0/22
IP: 160.248.241.0 -- 160.248.253.255
IP: 160.248.255.0/24
IP: 161.34.0.0/16
IP: 164.70.64.0/18
IP: 192.244.96.0/20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Jun 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4293 (0x10c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Validity
Not Before: May 23 09:58:40 2025 GMT
Not After : May 23 09:51:00 2026 GMT
Subject: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:2c:23:10:75:f0:c9:52:d0:5e:db:19:d4:
24:7d:b1:d8:ce:b5:b2:c5:b2:d2:77:3c:10:ba:96:
ac:a3:a9:9f:a9:84:c0:48:7a:e0:1d:c7:45:6a:f2:
80:3f:2e:a6:13:b8:93:7a:1e:76:10:5c:d9:ba:10:
36:df:9c:5c:8e:9b:82:72:5f:5b:6d:de:3f:9e:36:
86:e9:76:4e:eb:f6:dc:ea:14:01:b6:e0:6c:75:5e:
80:85:ff:70:d5:86:6d:e7:89:fe:03:55:a2:4b:94:
9a:f2:8b:2a:38:4e:6a:d7:5e:5d:f6:73:ab:cd:85:
57:4a:b1:f0:53:7a:7e:ba:e4:a0:1f:d7:72:c0:51:
8b:aa:ce:a2:f2:c7:ce:03:20:49:4c:16:1d:39:f7:
14:73:8e:2d:e4:1c:1b:f3:6e:39:99:e3:94:64:6a:
4d:f7:45:d8:ec:9b:bb:f7:a4:97:5d:0a:60:32:62:
ff:a8:f8:bc:d0:f0:6d:bb:dc:e2:66:86:d0:e3:2a:
4f:4c:ea:0e:40:dd:50:ac:0e:77:48:11:81:a7:73:
b8:b6:77:46:0d:68:1d:39:03:79:9d:0d:61:2b:b9:
aa:4e:e4:2f:d9:07:c3:e6:26:f7:74:4b:e0:88:ba:
68:29:2c:36:ec:0b:03:a8:db:da:2d:db:5a:af:bd:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Authority Key Identifier:
keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
23.232.128.0/17
107.153.0.0/16
128.28.0.0/16
128.53.0.0/16
140.227.0.0/16
143.125.212.0-143.125.255.255
157.65.16.0-157.65.175.255
157.65.224.0/19
157.120.0.0/18
160.248.0.0-160.248.12.255
160.248.14.0-160.248.69.255
160.248.74.0-160.248.81.255
160.248.83.0-160.248.84.255
160.248.87.0-160.248.88.255
160.248.90.0-160.248.175.255
160.248.184.0-160.248.201.255
160.248.203.0-160.248.205.255
160.248.207.0-160.248.223.255
160.248.232.0/22
160.248.241.0-160.248.253.255
160.248.255.0/24
161.34.0.0/16
164.70.64.0/18
192.244.96.0/20
Signature Algorithm: sha256WithRSAEncryption
63:78:bd:3d:be:e6:c7:c1:3a:61:7f:30:80:2b:94:07:9d:16:
c6:9b:d3:f4:39:b3:b2:a0:97:e3:b5:9f:4f:81:6e:dc:9f:42:
c6:e3:68:d5:94:4c:72:d5:7a:f4:68:c5:06:aa:4f:4d:08:e9:
2c:a8:4e:1b:8c:29:50:3e:5d:a9:e8:26:bb:12:cb:03:70:02:
73:55:54:11:d7:57:2b:07:6b:5c:60:e6:01:57:da:b0:e5:a8:
83:ba:4c:4b:da:49:10:47:4d:bf:fc:51:8c:f9:e2:c3:a2:27:
6a:ce:f5:de:dd:1d:f1:a5:91:68:f6:8d:04:63:42:87:a3:de:
60:b1:38:1c:22:c6:a4:2a:60:f2:ad:8b:d1:5e:ac:33:61:0f:
3d:f5:af:21:01:50:b5:1f:6a:12:da:ea:82:72:ff:d8:91:1a:
1c:dd:33:77:38:aa:d4:65:ef:bb:bf:d0:80:f4:62:b9:81:da:
34:0a:0b:00:89:79:fe:94:10:01:03:48:b5:7c:8e:e9:39:fc:
aa:9a:f3:dc:cf:32:4c:0a:52:7f:d3:2f:85:3c:15:d0:e0:89:
cc:d4:59:1f:3b:d0:51:58:57:a2:3b:78:7d:91:27:74:0c:c4:
de:15:13:dd:b0:c2:e1:36:4e:39:ad:9d:ba:06:46:63:4c:a7:
a2:e6:79:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 2 07:23:54 2025 by rpki-client