Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/amXibTSlO_J-8hE5NjBzuia52_o.cer
File: amXibTSlO_J-8hE5NjBzuia52_o.cer (raw, json)
Hash identifier: QrHwR+6X6w04lOhpezJh4zXdU+S4Y+CuU72Iy9JJfMk=
Subject key identifier: 6A:65:E2:6D:34:A5:3B:F2:7E:F2:11:39:36:30:73:BA:26:B9:DB:FA
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 494B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/amXibTSlO_J-8hE5NjBzuia52_o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Dec 2024 16:17:12 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 185.126.124.0/22
IP: 185.212.120.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18763 (0x494b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 2 16:17:12 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A914B46A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a2:ac:9c:e3:53:55:b8:32:da:35:cc:ab:8d:
d7:a3:cd:1f:2c:fb:77:d7:8f:b0:91:40:bb:dc:51:
16:62:69:3b:27:f6:52:1c:92:a5:50:ac:eb:44:f6:
46:bd:7d:e7:0b:1a:33:3e:91:92:64:32:c2:1e:ca:
b5:36:3c:77:39:fd:25:5e:c6:2f:24:01:06:28:8d:
bc:6a:ea:cf:e7:a2:6d:c1:30:ed:4c:55:2c:45:5e:
94:d4:50:81:e7:71:39:86:b0:17:c6:8b:6d:15:49:
a5:46:f8:a3:03:37:60:e7:ed:87:89:9e:7a:aa:9a:
1a:a7:f4:41:03:9d:fc:7b:55:7e:d6:25:7d:cc:38:
a7:38:49:a7:5b:a4:7c:3a:1e:17:51:3a:9a:7f:57:
69:36:1f:14:49:a6:e9:f3:0e:a8:b3:12:35:c1:20:
26:b7:c5:41:a4:58:4e:00:e7:f6:aa:07:42:01:5b:
4a:99:cf:9d:9d:98:85:e8:0a:f2:9d:cb:6d:56:21:
9f:0d:1d:58:f2:f1:ee:d2:ce:51:dd:5d:dc:84:b4:
7c:16:b9:49:bc:e5:0f:fb:9f:30:60:c9:f1:04:cd:
97:68:4d:e1:ec:d9:f7:db:17:19:76:0f:3b:50:94:
bf:97:84:d4:db:05:05:84:ed:77:29:77:93:9e:58:
71:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:65:E2:6D:34:A5:3B:F2:7E:F2:11:39:36:30:73:BA:26:B9:DB:FA
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/amXibTSlO_J-8hE5NjBzuia52_o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.126.124.0/22
185.212.120.0/22
Signature Algorithm: sha256WithRSAEncryption
d7:ba:53:8f:86:ab:a6:56:ca:49:ce:8b:10:7d:01:e3:a1:01:
34:4b:e9:de:7c:71:fa:0d:56:b1:d7:f4:5b:70:be:d2:97:c4:
b5:cd:b9:57:37:cb:85:71:1d:a4:9b:13:63:34:d0:fd:68:79:
46:88:64:de:6e:52:73:95:c0:6f:91:0f:b1:e8:6e:3e:fd:e1:
32:d8:9e:87:4c:cb:1f:21:0b:0a:85:b6:2e:fb:3e:0c:f6:f0:
ee:cc:eb:89:d1:f0:eb:6a:a4:e3:4f:32:48:68:f2:70:9c:ef:
45:d5:d9:21:e1:e6:94:a1:0f:a3:74:57:65:4c:1b:91:f2:c8:
27:6c:88:17:7b:91:7b:ae:cb:81:6c:5e:64:cb:76:d3:5a:c4:
c0:33:de:7d:7e:86:82:9a:6f:26:83:a1:67:da:8f:26:fb:0f:
a8:6a:cc:35:65:44:93:4c:b5:0f:2f:bd:83:98:4e:52:14:7e:
88:ea:76:b6:07:c3:9d:64:32:35:ce:b1:9f:0b:87:93:c4:a0:
7e:e9:23:74:12:29:be:34:5e:c4:69:bd:41:95:93:57:7d:d4:
67:24:70:2c:27:43:e4:86:d7:71:5e:73:e7:6a:75:40:c5:68:
48:86:7f:e1:0b:c9:80:6f:cf:bf:03:40:f2:b4:88:a0:b2:15:
ee:ec:ef:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:18 2025 by rpki-client