Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer
File: WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer (raw, json)
Hash identifier: VJYTmg5d3tQugAw41zyivfifw5Fk7Scdi8He+H7Zh1U=
Subject key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 45C0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 07 Apr 2024 19:16:51 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 195.114.14.0/23
IP: 195.114.126.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 May 2024 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17856 (0x45c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 7 19:16:51 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:56:ad:fe:3d:d1:74:27:dd:1d:85:27:3f:29:
8b:67:0e:a7:b1:de:a2:b2:7a:da:35:83:97:85:d3:
21:d6:eb:64:4e:a5:8c:ae:e6:10:2f:a5:37:02:6b:
74:b5:7c:07:9e:fd:51:d3:66:e1:f1:cd:de:22:14:
44:2d:75:3a:50:cf:a1:0b:09:5a:6e:7b:c7:c2:a1:
d9:fe:06:27:ea:84:d0:2d:98:4c:71:4b:28:08:99:
9b:08:b5:af:97:db:46:b7:39:74:7d:3b:fa:e4:3f:
65:52:da:a0:78:44:50:35:70:21:cc:a9:10:92:f4:
25:fb:a9:13:a6:39:f4:5f:95:a2:05:13:e1:a2:ff:
94:f7:77:6b:9c:03:ec:d3:c5:52:2d:98:e5:ce:72:
e8:3b:c5:d5:c4:fc:c2:9a:cb:dc:aa:b8:20:49:37:
f1:28:05:dc:17:62:f7:3f:2a:b1:7b:a6:47:3f:7f:
2a:90:a8:a8:86:70:28:33:55:01:09:0a:12:e6:59:
ed:68:5e:d0:5f:eb:8b:0e:6b:72:ea:6f:95:c6:63:
9c:23:44:91:dd:fc:c5:ac:c7:dd:0f:9a:25:72:0b:
0e:59:14:50:95:b4:a7:c2:c5:48:01:5b:7b:7f:e0:
b2:b1:75:97:e0:b7:63:33:00:68:48:78:f8:c3:e5:
3c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
195.114.14.0/23
195.114.126.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:f5:14:8a:98:ca:94:8f:3e:d2:31:ad:2e:2e:c1:43:8b:d0:
e8:e7:21:93:16:92:be:32:97:45:e0:ce:e8:01:7f:22:69:5a:
86:7d:bc:6c:47:7f:e0:3c:ce:7e:04:9b:49:e7:17:83:b0:fc:
09:bc:42:90:5b:33:9f:cf:79:66:e0:47:93:b7:4f:db:e4:af:
0f:b6:12:7f:df:6f:ae:d7:74:94:5d:cd:e6:ae:6d:a0:3f:92:
27:bc:ee:7f:35:4c:1b:8c:d2:7c:3d:5f:34:97:3c:21:30:69:
2e:6e:13:a7:82:ef:0f:e3:3a:4e:18:a3:5b:2a:f6:69:a6:ea:
9d:a5:fd:65:45:82:f1:6b:b9:9e:87:57:c6:a5:92:31:9f:f4:
d7:ad:c3:7e:79:c4:1d:85:77:c0:c0:58:49:a3:78:04:0d:35:
5c:4d:0e:00:e3:12:8f:a2:58:af:68:b2:af:6a:4a:13:52:f9:
1d:c6:c9:29:b6:b3:a4:2f:36:df:5d:f4:43:57:31:45:e2:22:
76:f5:94:40:58:bd:37:6e:50:3a:41:ad:f4:1a:6f:17:b8:ca:
3f:95:c3:bf:cd:5a:5d:e1:70:0b:df:6b:19:d5:08:31:f1:8e:
2a:34:c8:79:b8:5d:5e:a0:6c:4d:f3:c1:91:9f:4f:71:98:8f:
21:dc:57:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:48:39 2024 by rpki-client on console-fra.rpki-client.org