Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/G5AiZjIh2M567rA_P1eZ8NV-phY.cer
File: G5AiZjIh2M567rA_P1eZ8NV-phY.cer (raw, json)
Hash identifier: N9cGfWkNvgFBQZvjgGhn1ORElugJ1SfFcIINWaiyGcg=
Subject key identifier: 1B:90:22:66:32:21:D8:CE:7A:EE:B0:3F:3F:57:99:F0:D5:7E:A6:16
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 49A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Dec 2024 13:49:54 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 94.190.208.0 -- 94.190.239.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18851 (0x49a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 27 13:49:54 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9133E16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:8f:2f:bd:1a:e6:bb:c4:57:35:ec:40:b1:
4e:6d:c5:ae:59:bb:19:0a:5b:0e:61:0f:5f:f8:b3:
99:da:ae:3a:00:4d:2d:21:60:6d:53:2f:57:79:cf:
e2:94:63:55:c5:ee:d8:9a:cb:9e:57:08:e3:e6:97:
13:2a:4f:97:ed:cd:c9:34:87:19:9c:5c:30:97:70:
59:4c:61:80:fb:64:4d:1e:d6:6b:5c:a4:d1:00:9a:
26:d7:c8:05:40:f8:0a:05:a2:18:f9:cc:76:75:e6:
87:0d:86:38:24:c6:62:e0:e9:c4:be:96:5a:41:39:
b5:62:a3:3e:3a:53:b1:53:af:2d:51:63:58:b5:1f:
ea:b4:6e:4b:92:22:11:97:62:74:ab:1e:f2:12:73:
ea:ab:11:5a:64:64:e7:78:09:4a:c4:d8:03:8b:2a:
0c:75:78:ee:98:9c:f6:0a:95:13:0e:c1:e3:66:64:
b5:65:a0:67:28:80:02:1f:58:3d:4f:cd:3a:29:c2:
79:1b:20:e0:99:3b:52:83:2f:dc:79:a0:ec:ca:d4:
4b:a3:60:fa:b9:25:7b:5a:d4:7f:5b:e6:dd:57:77:
ae:c4:b7:7b:5c:51:86:10:b7:3b:23:3b:f5:14:a1:
88:79:71:16:5a:22:6d:c8:c9:c3:b6:87:f5:59:e3:
95:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:90:22:66:32:21:D8:CE:7A:EE:B0:3F:3F:57:99:F0:D5:7E:A6:16
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
94.190.208.0-94.190.239.255
Signature Algorithm: sha256WithRSAEncryption
4d:60:3f:5e:d8:3d:9d:d1:24:c5:9e:b3:ce:19:a2:55:29:69:
d0:67:f7:a0:83:4c:2f:98:f7:34:3b:2d:64:00:75:ba:b6:4a:
eb:a2:82:87:25:69:67:5c:a0:97:48:c2:2e:d6:bf:e1:a9:71:
56:4b:d2:bc:a1:f3:17:92:dd:3a:7e:ce:e4:9d:1c:83:26:c7:
e7:99:6a:52:46:88:01:c7:6d:b5:60:ae:6f:24:2f:3e:b8:0c:
cd:fd:f5:08:3b:9c:be:5c:9f:52:e4:07:85:30:a2:e2:f8:7e:
d9:2c:8b:7b:71:02:21:ef:4d:2e:f0:bf:5a:a3:56:22:90:9f:
21:b0:d3:13:81:e3:46:2a:88:11:ef:3b:a4:57:4b:15:fd:9b:
cd:2c:9a:80:fe:0f:2e:22:b6:e0:3d:c1:9c:2f:cd:04:a1:c0:
91:c2:80:35:e0:80:4a:de:3f:50:52:c3:89:44:48:01:0d:ff:
17:6e:13:cf:94:25:69:fa:ca:9c:64:2e:fe:f3:17:fa:ef:36:
b4:6c:6f:af:d9:67:bd:6c:b3:6c:a0:6a:56:75:8f:a8:fb:4e:
90:e9:82:c7:54:e2:9e:2a:91:8e:9c:08:60:9b:ce:5f:d8:d3:
ef:8e:f7:bf:08:a2:05:66:e4:71:c8:02:c5:4b:ea:6e:34:6f:
bf:c2:4d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:58:09 2025 by rpki-client