Certificate
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer
File: 0UAKuJttcvfbQk9KqozP9kONPUo.cer (raw, json)
Hash identifier: PDBOdXV65y4D2PAkLtKCZR3wJJclcOVLoFOL3cjfkXs=
Subject key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
Authority key identifier: 6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
Certificate issuer: /CN=A91A73810000/serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Certificate serial: 124F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Fri 15 Aug 2025 01:34:43 +0000
Certificate not after: Sat 15 Aug 2026 01:30:02 +0000
Subordinate resources: IP: 23.232.128.0/17
IP: 107.153.0.0/16
IP: 128.28.0.0/16
IP: 128.53.0.0/16
IP: 140.227.0.0/16
IP: 143.125.212.0 -- 143.125.255.255
IP: 157.65.16.0 -- 157.65.175.255
IP: 157.65.224.0/19
IP: 157.120.0.0/18
IP: 160.248.0.0 -- 160.248.12.255
IP: 160.248.14.0 -- 160.248.69.255
IP: 160.248.74.0 -- 160.248.81.255
IP: 160.248.83.0 -- 160.248.84.255
IP: 160.248.87.0 -- 160.248.88.255
IP: 160.248.90.0 -- 160.248.175.255
IP: 160.248.184.0 -- 160.248.201.255
IP: 160.248.203.0 -- 160.248.205.255
IP: 160.248.207.0 -- 160.248.223.255
IP: 160.248.232.0/22
IP: 160.248.241.0 -- 160.248.253.255
IP: 160.248.255.0/24
IP: 161.34.0.0/16
IP: 164.70.64.0/18
IP: 192.244.96.0/20
Validation: OK
Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Aug 2025 19:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4687 (0x124f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A73810000, serialNumber=6F683EAE39A1738AE6C93FDF041F1148E6534DF2
Validity
Not Before: Aug 15 01:34:43 2025 GMT
Not After : Aug 15 01:30:02 2026 GMT
Subject: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:2c:23:10:75:f0:c9:52:d0:5e:db:19:d4:
24:7d:b1:d8:ce:b5:b2:c5:b2:d2:77:3c:10:ba:96:
ac:a3:a9:9f:a9:84:c0:48:7a:e0:1d:c7:45:6a:f2:
80:3f:2e:a6:13:b8:93:7a:1e:76:10:5c:d9:ba:10:
36:df:9c:5c:8e:9b:82:72:5f:5b:6d:de:3f:9e:36:
86:e9:76:4e:eb:f6:dc:ea:14:01:b6:e0:6c:75:5e:
80:85:ff:70:d5:86:6d:e7:89:fe:03:55:a2:4b:94:
9a:f2:8b:2a:38:4e:6a:d7:5e:5d:f6:73:ab:cd:85:
57:4a:b1:f0:53:7a:7e:ba:e4:a0:1f:d7:72:c0:51:
8b:aa:ce:a2:f2:c7:ce:03:20:49:4c:16:1d:39:f7:
14:73:8e:2d:e4:1c:1b:f3:6e:39:99:e3:94:64:6a:
4d:f7:45:d8:ec:9b:bb:f7:a4:97:5d:0a:60:32:62:
ff:a8:f8:bc:d0:f0:6d:bb:dc:e2:66:86:d0:e3:2a:
4f:4c:ea:0e:40:dd:50:ac:0e:77:48:11:81:a7:73:
b8:b6:77:46:0d:68:1d:39:03:79:9d:0d:61:2b:b9:
aa:4e:e4:2f:d9:07:c3:e6:26:f7:74:4b:e0:88:ba:
68:29:2c:36:ec:0b:03:a8:db:da:2d:db:5a:af:bd:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A
X509v3 Authority Key Identifier:
keyid:6F:68:3E:AE:39:A1:73:8A:E6:C9:3F:DF:04:1F:11:48:E6:53:4D:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
23.232.128.0/17
107.153.0.0/16
128.28.0.0/16
128.53.0.0/16
140.227.0.0/16
143.125.212.0-143.125.255.255
157.65.16.0-157.65.175.255
157.65.224.0/19
157.120.0.0/18
160.248.0.0-160.248.12.255
160.248.14.0-160.248.69.255
160.248.74.0-160.248.81.255
160.248.83.0-160.248.84.255
160.248.87.0-160.248.88.255
160.248.90.0-160.248.175.255
160.248.184.0-160.248.201.255
160.248.203.0-160.248.205.255
160.248.207.0-160.248.223.255
160.248.232.0/22
160.248.241.0-160.248.253.255
160.248.255.0/24
161.34.0.0/16
164.70.64.0/18
192.244.96.0/20
Signature Algorithm: sha256WithRSAEncryption
23:e7:30:79:2d:de:e8:e4:f3:5c:56:b8:f2:ee:80:78:75:88:
58:35:a7:79:08:5f:a2:e6:b5:2b:5d:45:10:66:f9:50:19:92:
f1:42:c0:20:0d:d2:16:25:f1:d7:8b:3e:0b:74:6c:d6:28:f7:
3b:53:2d:02:fa:06:ab:97:9e:1a:31:19:f6:7e:b9:fc:87:49:
36:5f:a6:8e:7f:c1:95:31:8d:20:d6:33:55:b1:07:c3:ab:74:
0c:65:bb:8b:3c:4b:38:20:34:4b:9b:b3:df:5c:27:2b:60:41:
30:2a:85:75:61:db:b1:46:43:31:af:56:c3:f4:39:54:6f:20:
7d:84:1b:b6:ae:9d:16:cd:74:bd:7a:12:fe:cb:94:70:31:9e:
99:73:24:1b:41:b8:3b:40:dd:6d:77:70:a3:76:c1:68:bb:c7:
d7:f1:0d:72:de:c7:26:67:6f:6b:85:88:43:8e:b7:ae:39:6b:
c4:bf:51:78:a4:c8:33:0a:4b:8d:72:d8:ea:bb:d5:36:07:e9:
81:dd:9b:7f:87:00:6f:81:2f:1f:3b:a7:dd:42:5b:6f:59:55:
12:16:8a:3c:8c:1c:bc:95:a3:ee:3b:17:aa:48:8c:ec:e1:82:
2f:86:55:72:c6:a5:68:09:fb:11:fd:f7:71:da:7b:61:a0:77:
cd:51:b8:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:24:56 2025 by rpki-client