Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer
File: feYHxGFdegH73UqGrVRZQBp1mSE.cer (raw, json)
Hash identifier: t+HEhp7E2uc3Qb3wJSyC85hWsGu9391GvRwRt87jp3k=
Subject key identifier: 7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 45C7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Apr 2024 04:02:02 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 85.204.26.0/24
IP: 85.204.243.0 -- 85.204.244.255
IP: 85.204.247.0/24
IP: 85.204.250.0/24
IP: 85.204.253.0/24
IP: 86.107.53.0/24
IP: 89.36.199.0/24
IP: 89.38.134.0/24
IP: 89.39.91.0/24
IP: 89.47.94.0/24
IP: 92.114.109.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 17:59:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17863 (0x45c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 9 04:02:02 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A912442A/serialNumber=7DE607C4615D7A01FBDD4A86AD5459401A759921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:25:e7:5e:5e:b1:04:dd:e1:3a:5b:84:0d:76:
3f:67:d8:96:02:6c:2f:e4:b5:b2:9e:b2:eb:84:cf:
42:ed:02:b8:7c:13:09:61:ed:89:d6:f5:3d:1f:d6:
4f:03:a9:c1:4f:fc:44:cd:11:57:9a:f4:4a:f7:55:
61:df:e1:5a:c3:66:4c:c8:a7:46:4c:57:64:8a:88:
c1:1a:83:cc:1a:45:2b:c3:c9:ff:18:e2:5e:12:58:
13:04:01:40:4a:80:1d:2c:90:d1:8d:36:02:69:c9:
9d:f9:6c:f8:72:93:0d:26:30:68:40:57:0e:32:e5:
4c:13:0c:d8:da:3d:2e:3f:e9:f2:ca:28:f5:83:a1:
b4:de:f2:05:32:d5:c5:24:bd:4b:b0:1a:a6:87:37:
44:92:75:9f:f8:e9:35:53:86:b3:ad:54:85:ee:4f:
5c:d4:98:1c:4d:c6:f9:4c:7d:8b:d9:2c:c5:93:d0:
81:cd:be:f4:f4:5f:a7:7c:1d:fc:bb:76:a5:ab:de:
1e:55:22:56:00:30:06:c9:24:d7:bc:64:d2:7b:52:
6f:ef:1d:d8:28:87:4f:bc:b4:74:75:f6:39:d1:ad:
0f:4f:da:da:42:e2:13:ea:41:9f:c7:de:97:d5:1a:
55:bc:b2:5e:71:04:22:13:37:da:12:cc:51:a2:f2:
75:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
85.204.26.0/24
85.204.243.0-85.204.244.255
85.204.247.0/24
85.204.250.0/24
85.204.253.0/24
86.107.53.0/24
89.36.199.0/24
89.38.134.0/24
89.39.91.0/24
89.47.94.0/24
92.114.109.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:dc:50:fe:d1:06:aa:33:e7:11:79:b3:48:e5:09:e8:62:93:
b9:37:5a:67:23:44:3e:d0:a5:d6:ee:ee:db:13:09:c8:61:64:
9d:9f:a4:c8:04:03:7f:4d:eb:dd:b8:07:63:18:d4:5a:65:b0:
01:16:d5:87:0b:75:d0:9c:85:4a:c0:54:0b:ba:d3:0b:1f:10:
7e:5e:b6:a1:b8:ab:73:d7:f9:07:8b:00:e7:f4:97:cf:74:13:
f1:15:ad:02:75:3c:4a:e4:63:b5:c7:b1:cc:48:1a:6a:49:19:
60:77:32:8d:29:6d:42:d7:cf:51:f8:33:57:c7:c8:4c:13:b0:
ec:86:6e:b8:47:f3:3c:02:ec:3a:cb:8a:cf:69:c0:62:49:5e:
bb:11:55:a9:45:ee:30:b4:29:0d:3a:73:ce:65:30:18:ad:ef:
8e:67:d4:c0:c2:a0:5d:9b:14:1e:2a:18:10:c1:4c:91:7a:28:
87:b1:8d:1b:ed:b6:e2:29:c3:71:49:b1:61:55:1f:1a:2f:19:
be:43:5e:2b:1e:4f:cf:d6:81:f3:17:7a:73:11:25:f1:d3:a9:
a2:ab:7b:af:3f:bc:63:e6:a3:cd:ba:ab:b0:dc:55:3a:bd:bb:
62:d1:23:22:60:f9:d2:a4:38:59:21:56:b7:8c:a4:fd:f2:7f:
12:aa:8c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:08:11 2024 by rpki-client on console-ams.rpki-client.org