Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/amXibTSlO_J-8hE5NjBzuia52_o.cer
File: amXibTSlO_J-8hE5NjBzuia52_o.cer (raw, json)
Hash identifier: oECuVLFR824vep+uGqzHhBbZDjO+KmgYqMzvLLw95eI=
Subject key identifier: 6A:65:E2:6D:34:A5:3B:F2:7E:F2:11:39:36:30:73:BA:26:B9:DB:FA
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 43C6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/amXibTSlO_J-8hE5NjBzuia52_o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 Nov 2023 15:09:00 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 185.126.124.0/22
IP: 185.212.120.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 20:58:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17350 (0x43c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Nov 21 15:09:00 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A914B46A/serialNumber=6A65E26D34A53BF27EF21139363073BA26B9DBFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a2:ac:9c:e3:53:55:b8:32:da:35:cc:ab:8d:
d7:a3:cd:1f:2c:fb:77:d7:8f:b0:91:40:bb:dc:51:
16:62:69:3b:27:f6:52:1c:92:a5:50:ac:eb:44:f6:
46:bd:7d:e7:0b:1a:33:3e:91:92:64:32:c2:1e:ca:
b5:36:3c:77:39:fd:25:5e:c6:2f:24:01:06:28:8d:
bc:6a:ea:cf:e7:a2:6d:c1:30:ed:4c:55:2c:45:5e:
94:d4:50:81:e7:71:39:86:b0:17:c6:8b:6d:15:49:
a5:46:f8:a3:03:37:60:e7:ed:87:89:9e:7a:aa:9a:
1a:a7:f4:41:03:9d:fc:7b:55:7e:d6:25:7d:cc:38:
a7:38:49:a7:5b:a4:7c:3a:1e:17:51:3a:9a:7f:57:
69:36:1f:14:49:a6:e9:f3:0e:a8:b3:12:35:c1:20:
26:b7:c5:41:a4:58:4e:00:e7:f6:aa:07:42:01:5b:
4a:99:cf:9d:9d:98:85:e8:0a:f2:9d:cb:6d:56:21:
9f:0d:1d:58:f2:f1:ee:d2:ce:51:dd:5d:dc:84:b4:
7c:16:b9:49:bc:e5:0f:fb:9f:30:60:c9:f1:04:cd:
97:68:4d:e1:ec:d9:f7:db:17:19:76:0f:3b:50:94:
bf:97:84:d4:db:05:05:84:ed:77:29:77:93:9e:58:
71:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:65:E2:6D:34:A5:3B:F2:7E:F2:11:39:36:30:73:BA:26:B9:DB:FA
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/amXibTSlO_J-8hE5NjBzuia52_o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.126.124.0/22
185.212.120.0/22
Signature Algorithm: sha256WithRSAEncryption
cb:c5:79:3f:16:a8:4e:3e:cf:ec:ce:61:60:73:5f:af:17:16:
5d:7b:2f:fd:a4:1a:9f:fb:4f:23:84:e5:32:49:89:14:f6:c4:
48:65:b0:7b:52:62:fd:b9:55:8e:d1:f5:3e:14:25:d1:2c:a4:
2a:f4:5e:8d:92:91:97:2e:de:1b:27:d7:f0:9e:21:4d:d1:76:
d6:93:f7:13:c2:2f:2d:eb:91:75:b1:a2:10:ef:e5:41:21:40:
7f:a9:15:5b:ae:04:21:6b:bd:a8:db:21:97:d9:aa:3b:c5:69:
db:ec:ec:f1:3f:49:63:20:82:c5:99:b4:cc:1b:d3:8b:ce:ef:
d6:fe:c5:42:36:93:1b:78:73:8e:58:73:0b:1d:be:36:e5:6f:
6b:9b:8b:cf:53:98:1c:8e:06:28:9e:f8:45:5e:19:92:61:c5:
3b:38:fc:8a:c3:b0:43:c9:5d:7a:77:ab:79:db:aa:3e:4e:14:
5e:de:82:8e:29:9d:15:dd:7d:d1:26:c7:cf:d8:b4:d4:f7:9c:
30:62:83:ff:c8:80:0c:b7:ce:be:06:c1:3a:e1:b1:35:65:78:
ab:d9:16:4c:22:af:41:57:b6:fc:2a:f0:65:ee:21:58:6c:0d:
9e:47:dc:fc:50:ce:1c:5c:81:79:a4:5b:42:d4:0e:c9:9e:e3:
9d:fe:c0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:04:22 2024 by rpki-client on console-fra.rpki-client.org