Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer
File: 0ZV-xYwI81uqa_535FqXQLpHH54.cer (raw, json)
Hash identifier: pNr0Hfey1c5xXD1PFm7RTYEiDkuopTprEmTduH36hmU=
Subject key identifier: D1:95:7E:C5:8C:08:F3:5B:AA:6B:FE:77:E4:5A:97:40:BA:47:1F:9E
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 474B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Thu 18 Jul 2024 00:07:52 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 80.208.192.0/20
IP: 81.23.208.0/20
IP: 85.131.192.0/18
IP: 87.101.96.0/20
IP: 90.149.0.0/16
IP: 92.202.0.0/15
IP: 109.236.0.0/20
IP: 185.164.244.0/22
IP: 193.82.64.0/19
IP: 193.114.0.0/19
IP: 193.115.32.0/19
IP: 193.115.128.0/18
IP: 193.116.0.0/18
IP: 193.117.64.0/19
IP: 194.91.0.0/16
IP: 195.181.224.0/20
IP: 212.237.152.0/21
IP: 213.18.0.0/17
IP: 217.178.0.0/16
IP: 2001:7fa:0:3::/64
IP: 2001:7fa:7::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18251 (0x474b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jul 18 00:07:52 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91A73810000/serialNumber=D1957EC58C08F35BAA6BFE77E45A9740BA471F9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:80:98:d3:ae:75:22:44:38:67:fb:a8:2d:08:
a6:fe:7c:78:5d:43:d0:9d:7d:00:d3:2a:e8:de:1b:
1d:ad:2b:7a:e7:7a:07:6b:6f:73:cb:78:7b:cc:c7:
16:23:b6:03:65:d6:0a:c8:91:cd:54:ce:bc:28:68:
75:64:6c:50:6b:4b:1e:b7:87:7d:6b:50:cf:5b:09:
09:b1:a0:0d:41:36:b2:b1:97:30:ea:6e:cc:50:25:
f0:34:ce:c6:62:22:b4:3d:7e:d4:02:4e:93:83:a0:
29:be:1b:d9:0f:3f:51:1b:80:6d:6a:b8:68:a3:d9:
97:08:9a:d7:22:ee:e6:db:0c:39:88:01:99:96:ec:
db:fc:66:e0:b0:16:6b:18:f3:50:ba:eb:9f:b8:79:
3f:62:99:27:00:2d:53:5b:f0:e1:30:10:84:ba:48:
ce:04:ce:fe:5c:41:32:42:97:5c:d5:31:d3:05:73:
89:0b:56:bb:19:ec:2c:f1:7e:d9:60:6f:d6:c9:92:
d6:22:3c:bf:c0:0b:93:04:82:32:91:a9:d8:d2:1a:
de:96:a4:4c:c0:40:30:02:2f:3f:26:43:c6:4d:4b:
f5:2b:47:6e:65:31:65:3c:dc:27:e7:24:6f:09:49:
c7:f7:16:23:0d:bd:67:7a:a0:93:2e:7a:6d:1b:23:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:95:7E:C5:8C:08:F3:5B:AA:6B:FE:77:E4:5A:97:40:BA:47:1F:9E
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
80.208.192.0/20
81.23.208.0/20
85.131.192.0/18
87.101.96.0/20
90.149.0.0/16
92.202.0.0/15
109.236.0.0/20
185.164.244.0/22
193.82.64.0/19
193.114.0.0/19
193.115.32.0/19
193.115.128.0/18
193.116.0.0/18
193.117.64.0/19
194.91.0.0/16
195.181.224.0/20
212.237.152.0/21
213.18.0.0/17
217.178.0.0/16
IPv6:
2001:7fa:0:3::/64
2001:7fa:7::/48
Signature Algorithm: sha256WithRSAEncryption
69:32:b0:4b:10:9d:9a:a0:ac:a8:6f:7c:54:86:6f:3d:92:2a:
1f:95:95:b8:8a:60:50:cf:4d:21:d5:ca:16:d9:94:cd:92:bb:
8a:52:ac:7b:2a:51:82:0c:bd:8b:3f:8f:99:22:15:89:6c:62:
74:f6:c8:e8:d0:bd:44:4b:a9:4e:e3:eb:10:0a:25:a4:28:7f:
48:02:c3:43:aa:72:c7:bf:74:3e:29:c9:b3:4e:a6:f0:b4:2f:
1d:1b:43:97:3d:03:ed:c9:26:3c:c6:e9:c3:c5:95:42:6b:e2:
ae:41:7d:47:b8:33:3c:03:8e:ee:12:59:bc:81:bc:ca:20:74:
8a:47:f5:e8:9f:f7:d3:f8:01:a6:4b:49:a0:ef:fe:d7:0a:7a:
aa:88:b8:53:cd:fe:fa:20:05:9c:11:35:3c:ef:a9:01:a6:2e:
a9:50:b0:f3:d9:07:71:d3:fe:e5:89:f7:82:6d:d0:08:36:9f:
61:35:78:73:83:f4:7b:53:67:00:69:a5:be:bc:a0:61:7b:e5:
97:c9:54:18:bd:6f:78:21:39:be:04:a6:a9:dd:4b:c8:f6:59:
f4:04:c8:f6:56:91:bb:61:72:37:80:cf:0c:96:8f:80:8b:82:
ed:03:db:5d:09:37:4a:98:ee:b7:67:8e:dd:aa:9d:0b:84:55:
2c:15:24:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:41 2024 by rpki-client on console-ams.rpki-client.org