Certificate
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
File: 0UAKuJttcvfbQk9KqozP9kONPUo.cer (raw, json)
Hash identifier: aK+akec/WEIPOqVD5IXuC9WeJhlP9C1XU750ILeC5Xk=
Subject key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Certificate serial: 1148
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Sun 15 Jun 2025 01:39:24 +0000
Certificate not after: Mon 15 Jun 2026 01:30:02 +0000
Subordinate resources: IP: 23.232.128.0/17
IP: 107.153.0.0/16
IP: 128.28.0.0/16
IP: 128.53.0.0/16
IP: 140.227.0.0/16
IP: 143.125.212.0 -- 143.125.255.255
IP: 157.65.16.0 -- 157.65.175.255
IP: 157.65.224.0/19
IP: 157.120.0.0/18
IP: 160.248.0.0 -- 160.248.12.255
IP: 160.248.14.0 -- 160.248.69.255
IP: 160.248.74.0 -- 160.248.81.255
IP: 160.248.83.0 -- 160.248.84.255
IP: 160.248.87.0 -- 160.248.88.255
IP: 160.248.90.0 -- 160.248.175.255
IP: 160.248.184.0 -- 160.248.201.255
IP: 160.248.203.0 -- 160.248.205.255
IP: 160.248.207.0 -- 160.248.223.255
IP: 160.248.232.0/22
IP: 160.248.241.0 -- 160.248.253.255
IP: 160.248.255.0/24
IP: 161.34.0.0/16
IP: 164.70.64.0/18
IP: 192.244.96.0/20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 03:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4424 (0x1148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Validity
Not Before: Jun 15 01:39:24 2025 GMT
Not After : Jun 15 01:30:02 2026 GMT
Subject: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:2c:23:10:75:f0:c9:52:d0:5e:db:19:d4:
24:7d:b1:d8:ce:b5:b2:c5:b2:d2:77:3c:10:ba:96:
ac:a3:a9:9f:a9:84:c0:48:7a:e0:1d:c7:45:6a:f2:
80:3f:2e:a6:13:b8:93:7a:1e:76:10:5c:d9:ba:10:
36:df:9c:5c:8e:9b:82:72:5f:5b:6d:de:3f:9e:36:
86:e9:76:4e:eb:f6:dc:ea:14:01:b6:e0:6c:75:5e:
80:85:ff:70:d5:86:6d:e7:89:fe:03:55:a2:4b:94:
9a:f2:8b:2a:38:4e:6a:d7:5e:5d:f6:73:ab:cd:85:
57:4a:b1:f0:53:7a:7e:ba:e4:a0:1f:d7:72:c0:51:
8b:aa:ce:a2:f2:c7:ce:03:20:49:4c:16:1d:39:f7:
14:73:8e:2d:e4:1c:1b:f3:6e:39:99:e3:94:64:6a:
4d:f7:45:d8:ec:9b:bb:f7:a4:97:5d:0a:60:32:62:
ff:a8:f8:bc:d0:f0:6d:bb:dc:e2:66:86:d0:e3:2a:
4f:4c:ea:0e:40:dd:50:ac:0e:77:48:11:81:a7:73:
b8:b6:77:46:0d:68:1d:39:03:79:9d:0d:61:2b:b9:
aa:4e:e4:2f:d9:07:c3:e6:26:f7:74:4b:e0:88:ba:
68:29:2c:36:ec:0b:03:a8:db:da:2d:db:5a:af:bd:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Authority Key Identifier:
keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
23.232.128.0/17
107.153.0.0/16
128.28.0.0/16
128.53.0.0/16
140.227.0.0/16
143.125.212.0-143.125.255.255
157.65.16.0-157.65.175.255
157.65.224.0/19
157.120.0.0/18
160.248.0.0-160.248.12.255
160.248.14.0-160.248.69.255
160.248.74.0-160.248.81.255
160.248.83.0-160.248.84.255
160.248.87.0-160.248.88.255
160.248.90.0-160.248.175.255
160.248.184.0-160.248.201.255
160.248.203.0-160.248.205.255
160.248.207.0-160.248.223.255
160.248.232.0/22
160.248.241.0-160.248.253.255
160.248.255.0/24
161.34.0.0/16
164.70.64.0/18
192.244.96.0/20
Signature Algorithm: sha256WithRSAEncryption
40:61:9e:b7:e0:bd:61:36:d1:0b:8d:3b:6d:5b:3c:84:ba:e0:
7b:d8:e6:1c:df:9b:32:be:12:5f:f1:1f:48:cf:16:62:f6:6b:
78:b5:90:e2:8f:c1:2d:3b:66:29:b0:ec:51:e4:8d:98:33:09:
19:fb:fe:21:33:d1:f3:60:52:a4:79:8d:7e:15:c1:ec:13:47:
e7:3f:a6:14:21:e6:7e:68:fd:8d:90:c3:2f:1a:de:51:07:90:
ee:ad:00:d8:8b:62:2b:cb:38:4c:31:a2:99:db:42:23:97:fb:
84:ed:ed:50:f3:9d:65:88:25:58:aa:48:ed:4c:e2:3c:c8:1b:
68:9e:36:b7:f0:95:18:9e:38:e4:49:16:96:8c:bd:ca:83:4d:
8e:00:39:b0:85:4d:a7:7f:58:55:ff:be:6d:40:2f:a3:6e:69:
4b:19:3c:c4:9d:c8:ac:5d:c8:a7:d5:56:95:8e:5f:f6:35:dc:
93:a3:51:d2:52:c2:01:06:f7:99:6d:bf:3d:89:2c:b4:8c:62:
01:e0:99:84:f8:5c:49:a7:4d:f9:d8:fc:90:95:54:ff:57:5a:
24:60:d1:96:84:bc:0c:d5:bc:a4:83:c4:c0:6a:1b:95:b5:4a:
d4:60:4d:d6:d5:83:c5:31:5e:72:9a:5a:bb:d3:0e:38:eb:c6:
49:6d:04:33
-----BEGIN CERTIFICATE-----
MIIGaDCCBVCgAwIBAgICEUgwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx
QTczODEwMDAwMTEwLwYDVQQFEyg2RjY4M0VBRTM5QTE3MzhBRTZDOTNGREYwNDFG
MTE0OEU2NTM0REYyMB4XDTI1MDYxNTAxMzkyNFoXDTI2MDYxNTAxMzAwMlowMzEx
MC8GA1UEAxMoRDE0MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0
QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL4oLCMQdfDJUtBe2xnU
JH2x2M61ssWy0nc8ELqWrKOpn6mEwEh64B3HRWrygD8uphO4k3oedhBc2boQNt+c
XI6bgnJfW23eP542hul2Tuv23OoUAbbgbHVegIX/cNWGbeeJ/gNVokuUmvKLKjhO
atdeXfZzq82FV0qx8FN6frrkoB/XcsBRi6rOovLHzgMgSUwWHTn3FHOOLeQcG/Nu
OZnjlGRqTfdF2Oybu/ekl10KYDJi/6j4vNDwbbvc4maG0OMqT0zqDkDdUKwOd0gR
gadzuLZ3Rg1oHTkDeZ0NYSu5qk7kL9kHw+Ym93RL4Ii6aCksNuwLA6jb2i3bWq+9
l2sCAwEAAaOCA20wggNpMB0GA1UdDgQWBBTRQAq4m21y99tCT0qqjM/2Q409SjAf
BgNVHSMEGDAWgBRvaD6uOaFziubJP98EHxFI5lNN8jAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMGIGA1UdHwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraS1yZXBvc2l0
b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYjJnLXJqbWhjNHJteVRfZkJC
OFJTT1pUVGZJLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5j
Oi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFD
ODgzN0M3MkZEMUZGMi9iMmctcmptaGM0cm15VF9mQkI4UlNPWlRUZkkuY2VyMA8G
A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMIH9BggrBgEFBQcBCwSB8DCB
7TBBBggrBgEFBQcwBYY1cnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpw
L2FwL0E5MUE3MzgxMDAwMC8yOS8wYAYIKwYBBQUHMAqGVHJzeW5jOi8vcnBraS1y
ZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjkvMFVBS3VKdHRj
dmZiUWs5S3FvelA5a09OUFVvLm1mdDBGBggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtp
LXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAvYXAvbm90aWZpY2F0aW9uLnhtbDCC
AQYGCCsGAQUFBwEHAQH/BIH2MIHzMIHwBAIAATCB6QMEBxfogAMDAGuZAwMAgBwD
AwCANQMDAIzjMAsDBAKPfdQDAwGPfDAMAwQEnUEQAwQEnUGgAwQFnUHgAwQGnXgA
MAsDAwOg+AMEAKD4DDAMAwQBoPgOAwQBoPhEMAwDBAGg+EoDBAGg+FAwDAMEAKD4
UwMEAKD4VDAMAwQAoPhXAwQAoPhYMAwDBAGg+FoDBASg+KAwDAMEA6D4uAMEAaD4
yDAMAwQAoPjLAwQBoPjMMAwDBACg+M8DBAWg+MADBAKg+OgwDAMEAKD48QMEAaD4
/AMEAKD4/wMDAKEiAwQGpEZAAwQEwPRgMA0GCSqGSIb3DQEBCwUAA4IBAQBAYZ63
4L1hNtELjTttWzyEuuB72OYc35syvhJf8R9IzxZi9mt4tZDij8EtO2YpsOxR5I2Y
MwkZ+/4hM9HzYFKkeY1+FcHsE0fnP6YUIeZ+aP2NkMMvGt5RB5DurQDYi2IryzhM
MaKZ20Ijl/uE7e1Q851liCVYqkjtTOI8yBtonja38JUYnjjkSRaWjL3Kg02OADmw
hU2nf1hV/75tQC+jbmlLGTzEncisXcin1VaVjl/2NdyTo1HSUsIBBveZbb89iSy0
jGIB4JmE+FxJp0352PyQlVT/V1okYNGWhLwM1bykg8TAahuVtUrUYE3W1YPFMV5y
mlq70w4468ZJbQQz
-----END CERTIFICATE-----
Generated at Sat Jul 5 21:16:55 2025 by rpki-client