Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/5o7RJO9le2eb0SpY-gNQFODf6Cc.cer
File: 5o7RJO9le2eb0SpY-gNQFODf6Cc.cer (raw, json)
Hash identifier: WcNhhcB24P6IJOuAObAtmLTJyA+Eb3bRq8qFWqxiJ5E=
Subject key identifier: E6:8E:D1:24:EF:65:7B:67:9B:D1:2A:58:FA:03:50:14:E0:DF:E8:27
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4419
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Dec 2023 14:45:08 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 185.175.228.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17433 (0x4419)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Dec 14 14:45:08 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9191A09/serialNumber=E68ED124EF657B679BD12A58FA035014E0DFE827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:12:c4:74:6e:f9:26:01:a3:96:1e:66:ff:22:
fa:de:8e:99:95:48:e9:a8:dd:ae:d6:79:13:41:f9:
c2:64:02:00:9f:ea:99:26:c5:7b:2a:8d:9e:0b:1f:
6e:82:0a:c3:06:60:df:01:65:00:35:bd:dd:f6:93:
a8:47:b1:a8:b3:46:43:62:f8:3c:cb:0c:a5:9d:a7:
70:9e:2a:f0:2e:d0:41:a2:91:8b:33:13:3d:c5:5d:
9c:a1:cb:e9:d3:d9:32:72:62:44:97:ec:69:91:cd:
72:67:91:df:9d:c3:62:7f:af:11:1d:e8:b0:43:69:
ea:aa:3f:89:ae:a8:c6:3e:0d:7d:10:2d:ec:2d:d2:
68:5f:0e:86:a6:c2:e5:10:e0:9d:b5:23:34:7b:d0:
77:5d:9d:28:75:ab:45:86:12:9a:07:7e:0b:20:ae:
34:d7:d8:c9:b5:2c:f3:a1:0b:43:63:92:06:9e:03:
3a:ff:32:b5:bd:3a:01:ae:54:88:69:13:7e:0d:6e:
d2:18:3c:a3:28:22:35:94:ab:99:1a:bf:a3:3e:8c:
1c:15:ca:8c:14:54:46:6b:b2:f5:4d:25:97:e6:44:
dc:30:24:4c:57:aa:e4:41:8d:98:bc:e5:e4:a2:bf:
50:40:00:1c:34:dc:a5:f4:5b:1e:e2:23:0b:e3:db:
23:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:8E:D1:24:EF:65:7B:67:9B:D1:2A:58:FA:03:50:14:E0:DF:E8:27
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.175.228.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:a1:25:08:44:6f:e0:30:ee:5a:12:6e:46:c3:fa:74:be:5b:
fd:75:33:5a:43:57:c0:f5:bb:8b:e1:29:3a:ba:1b:73:70:93:
82:cd:07:8f:3a:6c:53:38:d6:c0:03:b1:a7:fd:79:e6:e8:9f:
58:38:fa:b2:b0:73:61:34:01:e0:68:9f:1f:03:29:d4:57:ac:
da:fc:4c:5b:04:d9:c5:e0:d7:96:7c:44:be:5e:4b:87:c6:4a:
7a:ed:aa:8d:17:e3:44:c4:50:44:67:22:b5:6d:33:6c:4f:fc:
f8:1d:79:b6:8d:5e:2a:64:7a:c5:3c:7d:47:9d:1d:01:b4:61:
d1:82:b9:df:8d:30:34:b7:a1:a7:c4:00:f3:f2:28:c2:e8:11:
73:aa:5a:31:53:ca:cb:0e:0f:a1:04:dc:56:c7:f6:04:7e:ff:
91:05:e2:df:bb:5f:a5:1c:5a:e2:e6:2a:4e:17:04:9f:b1:bd:
45:f5:bf:ef:bb:1d:23:c6:7d:3c:7f:83:8f:6b:c2:b8:dc:f1:
c5:57:a2:6f:1e:c3:ee:aa:73:86:9a:6c:49:5f:f7:12:93:81:
fe:a8:3d:dc:9a:a8:48:be:ef:39:d7:3d:9b:fa:e4:2a:d0:67:
45:16:73:85:bc:2c:48:6c:cd:4c:fa:c9:5a:70:51:a7:fe:71:
3b:f2:79:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:41 2024 by rpki-client on console-ams.rpki-client.org