Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer
File: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (raw, json)
Hash identifier: N0F8HE1OKVKKKHAEjBQrKcxyApq01oZoxtlct6NIs44=
Subject key identifier: C8:C0:FB:87:04:74:C3:E8:4C:AB:83:59:7C:46:A8:62:C4:7F:88:82
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 433D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Thu 18 Jul 2024 00:06:05 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 154.8.48.0/20
IP: 154.33.0.0 -- 154.34.255.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17213 (0x433d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 18 00:06:05 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91A73810000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:c5:dd:78:66:9d:4f:89:58:f8:4a:3b:0d:
e4:d7:18:ae:d7:30:be:76:45:3e:e4:a7:24:27:55:
65:31:67:03:3f:d0:64:92:e4:e6:f5:85:15:ea:62:
47:b4:9b:85:6a:99:d6:e8:75:b7:83:4b:3f:e1:da:
7d:54:3f:3e:a5:1f:0d:8d:92:e7:a8:3f:e6:e5:74:
8f:7c:4b:2c:d9:62:dd:b0:f8:d0:5a:75:e2:b5:4a:
a5:df:23:56:39:7b:e8:c1:77:3a:dc:69:d2:ca:ac:
f1:23:02:56:1c:88:53:60:2c:33:77:e2:e9:c1:55:
50:bb:35:a3:28:04:ff:d0:2c:50:60:87:3e:19:22:
ed:bc:5a:51:dd:2a:ab:8c:c6:6f:1f:8a:86:5f:55:
1d:18:a6:de:20:7f:f0:78:9e:22:99:b2:c1:c0:04:
6f:be:c4:99:52:1d:8d:17:1b:16:3b:52:a1:62:c5:
3a:a5:96:6d:26:5c:75:1b:b9:61:6a:7b:52:d6:1b:
d2:51:52:b1:cd:97:a7:1e:6f:be:83:f1:d0:29:42:
60:96:38:69:12:59:8e:2e:29:c6:96:f3:47:ff:37:
95:56:3c:03:22:15:d9:5d:22:1b:3e:09:df:7e:57:
6c:d6:8a:0c:ba:f8:ac:2c:15:48:8c:b9:55:ee:de:
43:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C0:FB:87:04:74:C3:E8:4C:AB:83:59:7C:46:A8:62:C4:7F:88:82
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.8.48.0/20
154.33.0.0-154.34.255.255
Signature Algorithm: sha256WithRSAEncryption
4d:ab:f8:f7:01:51:01:96:a0:88:52:7d:f0:df:ae:a7:76:7c:
0c:cc:1f:d0:87:2b:60:c3:6e:05:03:bb:d9:89:51:72:01:25:
ae:f7:bb:94:f9:7e:e2:0c:d9:d0:de:7e:54:15:e8:00:5d:b3:
cd:8e:8e:0d:b5:c3:d0:3f:db:78:61:13:37:f7:e6:8d:38:de:
92:cb:68:db:1e:ce:5f:2b:fe:b5:73:24:8a:0d:c1:37:a9:4e:
54:bc:16:e2:0f:42:12:b5:4e:a9:b4:dd:9a:81:29:ee:c2:53:
fe:a2:38:51:99:2d:3f:23:39:d7:21:a9:cd:2e:07:49:7c:7d:
e1:85:da:d5:a0:24:a2:25:71:06:d0:f2:df:43:b6:50:eb:23:
aa:10:8f:44:01:3f:e2:b7:54:f1:71:fe:28:a2:57:fa:13:4b:
cb:8a:c4:4b:d8:8a:e4:1d:d1:f2:d1:04:9c:28:24:08:c3:f9:
6e:23:cb:02:c9:b3:ed:c0:a4:46:3e:67:23:64:c3:81:45:53:
f3:9a:08:15:f4:09:be:3f:48:81:16:e0:6c:82:72:dd:9e:78:
0e:8f:e3:77:bf:5e:a3:d8:20:06:74:49:42:db:53:27:64:5c:
ac:a0:ba:25:14:b8:2e:b6:c7:32:ef:47:b7:a9:a1:66:f0:76:
11:a1:98:d8
-----BEGIN CERTIFICATE-----
MIIF2zCCBMOgAwIBAgICQz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjQwNzE4MDAwNjA1WhcNMjUwNzMwMDAwMDAwWjBKMRUwEwYD
VQQDEwxBOTFBNzM4MTAwMDAxMTAvBgNVBAUTKEM4QzBGQjg3MDQ3NEMzRTg0Q0FC
ODM1OTdDNDZBODYyQzQ3Rjg4ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDv8XdeGadT4lY+Eo7DeTXGK7XML52RT7kpyQnVWUxZwM/0GSS5Ob1hRXq
Yke0m4VqmdbodbeDSz/h2n1UPz6lHw2NkueoP+bldI98SyzZYt2w+NBadeK1SqXf
I1Y5e+jBdzrcadLKrPEjAlYciFNgLDN34unBVVC7NaMoBP/QLFBghz4ZIu28WlHd
KquMxm8fioZfVR0Ypt4gf/B4niKZssHABG++xJlSHY0XGxY7UqFixTqllm0mXHUb
uWFqe1LWG9JRUrHNl6ceb76D8dApQmCWOGkSWY4uKcaW80f/N5VWPAMiFdldIhs+
Cd9+V2zWigy6+KwsFUiMuVXu3kNVAgMBAAGjggLNMIICyTAdBgNVHQ4EFgQUyMD7
hwR0w+hMq4NZfEaoYsR/iIIwHwYDVR0jBBgwFoAUNI+bm5KnLM/Tbzxw81Z1czzI
6iIwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBo
oGagZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEw
MUQ2NjExRTJBNjJGODc3QzcyRkQxRkYyL05JLWJtNUtuTE1fVGJ6eHc4MVoxY3p6
STZpSS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUy
MUE0RjRGQjQvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNlcjBKBgNVHSAB
Af8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFw
bmljLm5ldC9SUEtJL0NQUy5wZGYwgfcGCCsGAQUFBwELBIHqMIHnMD4GCCsGAQUF
BzAFhjJyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzBdBggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmlj
LmFkLmpwL2FwL0E5MUE3MzgxMDAwMC95TUQ3aHdSMHctaE1xNE5aZkVhb1lzUl9p
SUkubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMu
YWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCsGCCsGAQUFBwEHAQH/BBww
GjAYBAIAATASAwQEmggwMAoDAwCaIQMDAJoiMA0GCSqGSIb3DQEBCwUAA4IBAQBN
q/j3AVEBlqCIUn3w366ndnwMzB/Qhytgw24FA7vZiVFyASWu97uU+X7iDNnQ3n5U
FegAXbPNjo4NtcPQP9t4YRM39+aNON6Sy2jbHs5fK/61cySKDcE3qU5UvBbiD0IS
tU6ptN2agSnuwlP+ojhRmS0/IznXIanNLgdJfH3hhdrVoCSiJXEG0PLfQ7ZQ6yOq
EI9EAT/it1Txcf4oolf6E0vLisRL2IrkHdHy0QScKCQIw/luI8sCybPtwKRGPmcj
ZMOBRVPzmggV9Am+P0iBFuBsgnLdnngOj+N3v16j2CAGdElC21MnZFysoLolFLgu
tscy70e3qaFm8HYRoZjY
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:34 2025 by rpki-client