Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer
File: FjMWdiEa7mdzSFtlIzxiw6RYev0.cer (raw, json)
Hash identifier: +fWVTU007e4IiJ0vWSfxlwbFsiA3C/bvj4B9tYJ/V9A=
Subject key identifier: 16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 43DD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Nov 2023 18:16:07 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 185.205.140.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 May 2024 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17373 (0x43dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Nov 28 18:16:07 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ce:bf:ce:52:8f:9a:5f:28:68:9c:49:31:42:
14:54:6e:2f:71:b5:51:dd:24:ab:b7:c7:b9:58:f2:
50:e0:3b:f0:57:2e:1c:ad:d6:44:a9:07:f4:1f:db:
93:08:79:95:50:23:51:b1:77:1f:5f:d7:d1:69:7c:
ac:bf:62:e8:11:44:2a:a2:c8:34:2f:92:12:28:e9:
d2:a8:14:05:6d:4d:74:ac:7f:da:36:0f:f6:0a:3f:
cc:ff:5b:f7:f2:51:d5:aa:b8:37:53:34:12:15:ea:
90:2e:8d:20:2a:6d:fd:01:76:4e:16:bc:e1:26:ca:
73:d9:4c:76:b2:d3:48:fc:d7:00:f8:52:0e:d1:c7:
17:d8:a3:81:7d:e2:e7:8e:2f:20:42:98:65:44:e3:
d8:5d:92:fc:dd:7a:43:49:7e:eb:80:8c:a4:20:fc:
e9:a7:a3:c0:a7:b7:1b:d2:66:77:5a:7d:1e:8d:ee:
dd:88:3b:9a:ee:d8:7b:23:22:39:7c:07:5c:2a:3a:
5c:0e:03:f1:9b:37:a3:24:17:5b:bc:69:74:b0:6b:
63:6e:b9:71:fa:5f:1d:6b:9c:36:dc:ee:d3:c1:75:
90:e7:86:0f:47:ba:f7:c6:0d:51:cc:72:a7:ca:33:
5d:f9:d0:2a:01:b7:27:61:d7:b7:1b:00:4b:5d:cf:
c7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.205.140.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:da:d9:1d:c0:60:2d:b1:32:d7:2c:c8:88:b4:9f:cb:4d:01:
2b:58:52:11:26:80:cf:ea:e6:b1:ac:fe:2d:6e:1c:07:9b:7e:
e0:72:5b:62:9f:68:a9:f0:95:5e:c8:4b:5f:15:cd:93:af:ad:
eb:c2:09:4c:38:f8:c0:eb:9c:ff:0e:58:90:25:fc:63:8d:06:
f0:40:7f:d8:37:06:de:a7:ce:db:1e:32:0e:9f:18:4d:78:bf:
82:81:2c:20:5c:fa:26:01:3d:d3:00:ca:2b:4f:77:c7:a6:49:
44:d1:bb:96:ff:d4:7d:23:b0:84:c4:51:db:d1:33:fd:f0:a0:
fa:f9:a0:ad:d5:31:22:84:53:03:06:8e:7f:3b:f1:63:ae:24:
84:88:46:92:cf:b4:64:ca:84:7f:69:b2:fb:e1:3b:ee:4c:1a:
b4:98:ec:fa:ef:d6:4c:60:b9:dd:23:52:3f:56:63:7a:27:bf:
1b:39:b0:18:cc:d1:7f:db:2e:52:91:16:3a:74:45:96:dd:db:
3b:f1:0c:7d:11:ab:a1:ee:dc:2e:52:61:7b:f5:90:15:31:63:
e6:a6:8d:bd:fa:e2:33:58:f0:08:93:d6:29:ee:22:a5:ad:cf:
22:18:6b:6c:96:6e:8a:c3:db:fa:40:c2:02:ab:17:fa:d3:44:
72:36:de:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:47:49 2024 by rpki-client on console-ams.rpki-client.org