Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer
File: 0ZV-xYwI81uqa_535FqXQLpHH54.cer (raw, json)
Hash identifier: PWrlqeAw6AlHaLOFX+kxRtkBiDVeog404qoOypHY07s=
Subject key identifier: D1:95:7E:C5:8C:08:F3:5B:AA:6B:FE:77:E4:5A:97:40:BA:47:1F:9E
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 424A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Mon 14 Aug 2023 22:22:59 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 80.208.192.0/20
IP: 81.23.208.0/20
IP: 85.131.192.0/18
IP: 87.101.96.0/20
IP: 90.149.0.0/16
IP: 92.202.0.0/15
IP: 109.236.0.0/20
IP: 185.164.244.0/22
IP: 193.82.64.0/19
IP: 193.114.0.0/19
IP: 193.115.32.0/19
IP: 193.115.128.0/18
IP: 193.116.0.0/18
IP: 193.117.64.0/19
IP: 194.91.0.0/16
IP: 195.181.224.0/20
IP: 212.237.152.0/21
IP: 213.18.0.0/17
IP: 217.178.0.0/16
IP: 2001:7fa:0:3::/64
IP: 2001:7fa:7::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 May 2024 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16970 (0x424a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Aug 14 22:22:59 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91A73810000/serialNumber=D1957EC58C08F35BAA6BFE77E45A9740BA471F9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:80:98:d3:ae:75:22:44:38:67:fb:a8:2d:08:
a6:fe:7c:78:5d:43:d0:9d:7d:00:d3:2a:e8:de:1b:
1d:ad:2b:7a:e7:7a:07:6b:6f:73:cb:78:7b:cc:c7:
16:23:b6:03:65:d6:0a:c8:91:cd:54:ce:bc:28:68:
75:64:6c:50:6b:4b:1e:b7:87:7d:6b:50:cf:5b:09:
09:b1:a0:0d:41:36:b2:b1:97:30:ea:6e:cc:50:25:
f0:34:ce:c6:62:22:b4:3d:7e:d4:02:4e:93:83:a0:
29:be:1b:d9:0f:3f:51:1b:80:6d:6a:b8:68:a3:d9:
97:08:9a:d7:22:ee:e6:db:0c:39:88:01:99:96:ec:
db:fc:66:e0:b0:16:6b:18:f3:50:ba:eb:9f:b8:79:
3f:62:99:27:00:2d:53:5b:f0:e1:30:10:84:ba:48:
ce:04:ce:fe:5c:41:32:42:97:5c:d5:31:d3:05:73:
89:0b:56:bb:19:ec:2c:f1:7e:d9:60:6f:d6:c9:92:
d6:22:3c:bf:c0:0b:93:04:82:32:91:a9:d8:d2:1a:
de:96:a4:4c:c0:40:30:02:2f:3f:26:43:c6:4d:4b:
f5:2b:47:6e:65:31:65:3c:dc:27:e7:24:6f:09:49:
c7:f7:16:23:0d:bd:67:7a:a0:93:2e:7a:6d:1b:23:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:95:7E:C5:8C:08:F3:5B:AA:6B:FE:77:E4:5A:97:40:BA:47:1F:9E
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
80.208.192.0/20
81.23.208.0/20
85.131.192.0/18
87.101.96.0/20
90.149.0.0/16
92.202.0.0/15
109.236.0.0/20
185.164.244.0/22
193.82.64.0/19
193.114.0.0/19
193.115.32.0/19
193.115.128.0/18
193.116.0.0/18
193.117.64.0/19
194.91.0.0/16
195.181.224.0/20
212.237.152.0/21
213.18.0.0/17
217.178.0.0/16
IPv6:
2001:7fa:0:3::/64
2001:7fa:7::/48
Signature Algorithm: sha256WithRSAEncryption
b3:ba:3d:8e:06:d3:a5:3b:8d:5f:3a:9e:1e:84:8e:71:13:2d:
2c:a3:de:69:de:0d:6e:ad:fb:fe:a5:70:30:05:f8:48:68:dc:
4f:fd:62:75:5e:74:d7:4f:15:39:5e:4c:0e:df:9a:55:f2:9d:
aa:07:d1:93:e7:0a:1c:c1:47:eb:d7:24:73:ad:25:41:e7:21:
c4:df:5a:46:f2:ac:de:ec:cd:8b:b7:2b:27:5c:03:f2:19:4d:
08:5a:52:6b:2a:3f:3b:19:df:d1:3d:d0:38:71:19:59:08:6a:
34:1c:af:82:fe:7a:ab:67:8c:e4:2f:86:b7:96:39:57:95:fa:
37:26:24:13:f0:f0:72:76:94:3c:23:57:b7:9f:ed:83:f0:e2:
cc:7c:81:b3:25:aa:2b:14:b5:2c:9a:8d:68:14:3f:b8:4c:a7:
6f:42:14:a9:99:57:48:fe:16:58:21:92:41:51:16:fe:e6:a0:
ee:dd:72:bd:db:f8:f4:fc:5b:5f:fb:aa:bb:d8:c4:c4:2d:ea:
76:e6:69:9d:9b:e8:3f:65:a0:3d:68:e5:04:7d:8c:8d:5b:0b:
78:40:ce:6f:00:9a:7b:f2:31:bf:f6:9f:56:d0:1c:8e:be:b5:
50:93:1d:39:5e:1f:72:ed:a2:e6:64:c8:a4:4d:e9:d4:29:10:
9f:11:03:cd
-----BEGIN CERTIFICATE-----
MIIGVjCCBT6gAwIBAgICQkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjMwODE0MjIyMjU5WhcNMjQwNzMwMDAwMDAwWjBKMRUwEwYD
VQQDEwxBOTFBNzM4MTAwMDAxMTAvBgNVBAUTKEQxOTU3RUM1OEMwOEYzNUJBQTZC
RkU3N0U0NUE5NzQwQkE0NzFGOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDugJjTrnUiRDhn+6gtCKb+fHhdQ9CdfQDTKujeGx2tK3rnegdrb3PLeHvM
xxYjtgNl1grIkc1UzrwoaHVkbFBrSx63h31rUM9bCQmxoA1BNrKxlzDqbsxQJfA0
zsZiIrQ9ftQCTpODoCm+G9kPP1EbgG1quGij2ZcImtci7ubbDDmIAZmW7Nv8ZuCw
FmsY81C665+4eT9imScALVNb8OEwEIS6SM4Ezv5cQTJCl1zVMdMFc4kLVrsZ7Czx
ftlgb9bJktYiPL/AC5MEgjKRqdjSGt6WpEzAQDACLz8mQ8ZNS/UrR25lMWU83Cfn
JG8JScf3FiMNvWd6oJMuem0bI1urAgMBAAGjggNIMIIDRDAdBgNVHQ4EFgQU0ZV+
xYwI81uqa/535FqXQLpHH54wHwYDVR0jBBgwFoAUDPzneFf88B852ZpitKpi5hWe
dvgwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBo
oGagZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0
MUQ2NjExRTJBM0YyN0Y3QzcyRkQxRkYyL0RQem5lRmY4OEI4NTJacGl0S3BpNWhX
ZWR2Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUy
MUE0RjRGQjQvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZnLmNlcjBKBgNVHSAB
Af8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFw
bmljLm5ldC9SUEtJL0NQUy5wZGYwgfcGCCsGAQUFBwELBIHqMIHnMD4GCCsGAQUF
BzAFhjJyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzBdBggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmlj
LmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8wWlYteFl3STgxdXFhXzUzNUZxWFFMcEhI
NTQubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMu
YWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMIGlBggrBgEFBQcBBwEB/wSB
lTCBkjB0BAIAATBuAwQEUNDAAwQEURfQAwQGVYPAAwQEV2VgAwMAWpUDAwFcygME
BG3sAAMEArmk9AMEBcFSQAMEBcFyAAMEBcFzIAMEBsFzgAMEBsF0AAMEBcF1QAMD
AMJbAwQEw7XgAwQD1O2YAwQH1RIAAwMA2bIwGgQCAAIwFAMJACABB/oAAAADAwcA
IAEH+gAHMA0GCSqGSIb3DQEBCwUAA4IBAQCzuj2OBtOlO41fOp4ehI5xEy0so95p
3g1urfv+pXAwBfhIaNxP/WJ1XnTXTxU5XkwO35pV8p2qB9GT5wocwUfr1yRzrSVB
5yHE31pG8qze7M2LtysnXAPyGU0IWlJrKj87Gd/RPdA4cRlZCGo0HK+C/nqrZ4zk
L4a3ljlXlfo3JiQT8PBydpQ8I1e3n+2D8OLMfIGzJaorFLUsmo1oFD+4TKdvQhSp
mVdI/hZYIZJBURb+5qDu3XK92/j0/Ftf+6q72MTELep25mmdm+g/ZaA9aOUEfYyN
Wwt4QM5vAJp78jG/9p9W0ByOvrVQkx05Xh9y7aLmZMikTenUKRCfEQPN
-----END CERTIFICATE-----
Generated at Mon May 6 03:47:49 2024 by rpki-client on console-ams.rpki-client.org