Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer
File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer (raw, json)
Hash identifier: +8hD9Bdx/XC3vKMREaxPuVqq3LqBuMzyx0C4jy7oV2U=
Subject key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4752
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 20:35:09 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 2001:7fa:5::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18258 (0x4752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jul 19 20:35:09 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4c:42:ed:8e:b1:64:99:78:3f:87:26:96:bf:
1c:f7:54:6b:81:4b:ae:fa:a4:44:66:e8:52:56:e5:
e0:ea:22:ff:a1:43:76:7f:c1:1d:8d:ab:b9:18:13:
17:fe:ec:c4:28:a7:b2:30:14:10:d5:de:35:ca:b8:
84:c6:d0:d9:62:50:8a:c9:33:67:98:06:f8:44:7e:
01:40:f3:df:11:e2:e9:96:77:b2:40:94:41:c8:a3:
dc:9f:d0:2e:44:5e:05:ba:ed:64:53:82:70:63:b9:
00:02:9e:b6:b5:0d:63:5f:42:90:c8:8e:e2:2d:4c:
52:c9:67:d6:08:ba:42:53:bc:fc:fc:c6:85:01:5a:
c0:93:6e:7e:17:4d:64:ec:67:28:d0:9d:56:2a:1f:
f8:f8:bf:3f:16:43:1c:39:7e:c5:4e:bc:05:f2:91:
4d:9f:5c:8c:34:45:e2:15:01:11:88:78:1b:a1:4d:
b1:ed:18:8b:c4:50:e5:b4:93:0e:75:34:b0:32:44:
04:4f:ea:c1:0b:85:7a:05:67:24:60:72:c1:67:cc:
3c:9a:eb:07:93:f7:b5:4c:56:a7:a9:3c:a8:ee:aa:
10:36:ce:a7:22:3b:62:e0:f4:5a:8c:a4:c7:4e:5a:
68:40:9f:45:ed:94:8d:ea:7b:d6:81:f6:08:a9:34:
fa:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:5::/48
Signature Algorithm: sha256WithRSAEncryption
7b:c9:5b:93:2e:2d:39:bf:52:9a:04:52:16:ee:93:d4:06:2a:
53:0e:38:23:e2:14:5b:e4:3a:5f:be:5c:71:18:f9:51:66:0b:
14:de:0c:02:d2:6d:91:aa:2b:b1:de:ad:63:e8:c0:3f:9e:91:
69:1f:9f:98:e9:c3:3d:26:81:dd:ba:d7:4e:b4:15:31:a4:93:
1e:dc:03:cb:4d:9b:43:7e:ef:dc:48:ce:43:b5:c3:fd:b7:86:
50:b7:26:44:8c:d1:df:2b:2a:60:b5:d1:7c:56:72:29:59:9f:
5f:1b:01:dc:45:7c:80:28:96:f3:21:12:4a:a2:be:31:4e:c6:
2b:2b:e6:44:3a:6b:09:da:b2:fb:5e:ff:25:b5:b0:37:f5:78:
bd:01:03:8e:9d:c6:0f:3e:4b:a4:20:32:f6:eb:6f:09:3e:aa:
ba:03:66:40:8d:69:4b:42:59:9e:6e:20:ea:b8:31:80:91:d9:
d9:e7:ee:05:1b:f9:fd:48:19:c1:ed:4c:c6:6b:20:19:e8:78:
2a:43:83:c6:c3:ee:78:0b:29:92:cf:fa:cf:54:bd:7b:f3:c3:
1d:6e:f5:b0:0c:2a:be:65:31:51:b5:d5:c7:6d:30:54:52:43:
86:21:f4:da:88:ef:26:b3:f4:f2:49:98:6d:f4:04:0f:04:ac:
1b:73:86:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org