Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer
File: JSwA6X56eGlZOIzyBKTH5kVYDGg.cer (raw, json)
Hash identifier: 2tzzCUks8BgS5TlCOlknAEvGuH7G7Bd7/oS2rs68Zf8=
Subject key identifier: 25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 490B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Nov 2024 02:18:57 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 193.36.72.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 14:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18699 (0x490b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Nov 15 02:18:57 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A919DA26/serialNumber=252C00E97E7A786959388CF204A4C7E645580C68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c9:26:8b:ed:46:2b:f5:f0:76:e0:91:6e:89:
49:be:0d:2b:bb:c4:e4:e0:08:84:f1:18:60:de:de:
3b:d9:1f:9f:68:12:ab:bf:4f:19:2e:4d:a1:15:9d:
07:da:8e:e2:98:78:2a:0e:a9:9c:59:cc:95:e4:73:
96:ef:c6:d6:83:ca:e1:9d:31:88:8e:3b:37:e7:24:
89:6d:f0:f7:97:ce:b5:9f:23:14:ed:5b:18:84:35:
9e:49:a2:8c:51:4a:87:00:69:5e:9b:9a:e4:9e:e5:
49:29:d9:26:ce:07:b5:8f:4b:ba:a9:4e:c5:c0:29:
53:40:89:2a:35:58:59:53:ea:ba:c9:70:a9:f0:8f:
23:86:6e:0c:3a:a0:b2:59:33:80:73:79:eb:83:c5:
72:53:23:10:1f:47:b4:d8:45:8a:61:96:12:73:46:
a8:82:cc:c1:21:73:a3:db:69:c9:c8:36:8a:d8:98:
43:c8:1d:41:6a:75:4d:ed:08:95:b1:1d:f1:93:c3:
02:33:f1:84:11:03:ee:af:7e:b5:c9:ee:60:c8:3b:
c4:09:00:1b:d5:12:e5:3c:c3:f6:ca:99:c3:c9:9d:
9b:d3:af:be:b5:1b:6a:1b:0b:0e:37:51:60:cb:df:
d3:d1:63:dc:b1:e7:09:a3:ee:25:3c:b7:ce:61:92:
0c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
193.36.72.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:0c:0d:fc:19:6e:25:1e:2b:a9:a4:40:ef:5e:83:08:f8:2c:
4b:34:e4:3b:7d:c5:8f:3f:02:23:35:e2:04:15:76:1a:85:1a:
98:75:84:23:bb:5b:11:fa:3f:7b:c7:8f:0f:fc:75:97:c1:d8:
14:c5:cb:ac:15:63:c1:8c:27:a8:48:43:e0:4c:5d:62:2d:7b:
2c:14:c2:81:ab:e2:12:80:c7:58:3a:2c:32:19:d9:1d:5f:7a:
88:01:fc:e6:63:71:09:81:d9:f1:f2:64:b7:93:99:de:67:a9:
af:5e:ca:73:f8:08:27:54:28:d8:e1:93:be:46:0b:e1:57:9b:
af:a8:3a:c4:b1:7d:7b:71:a3:94:fa:9d:ba:8c:be:5e:e2:79:
3a:28:8a:c7:7e:f3:ad:09:55:f6:01:aa:8f:80:7d:ef:94:f9:
fd:67:9b:e4:7e:b3:36:61:bf:27:de:8e:aa:40:42:8d:28:ff:
9d:49:92:31:67:8c:ca:8a:3d:77:b9:19:4c:ea:76:e2:e3:36:
9e:28:63:88:81:ba:b0:5e:9a:70:99:77:71:b6:68:9a:36:a7:
dc:cf:bf:a4:52:6f:98:29:20:38:02:6a:04:49:f4:ab:00:fd:
55:3b:a3:8e:f0:89:8f:ac:5d:2e:dc:f0:8f:4a:79:87:3b:5a:
b7:cf:01:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 15:30:15 2024 by rpki-client on console-fra.rpki-client.org