Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer
File: h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer (raw, json)
Hash identifier: z6Ty1teakD0ZZYeq01vXVoleY4fiLvAFfA6gvM2ttiI=
Subject key identifier: 87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 44AA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jan 2024 16:04:32 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 2001:7fa:3:: -- 2001:7fa:4:ffff:ffff:ffff:ffff:ffff
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17578 (0x44aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jan 19 16:04:32 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9174880/serialNumber=879062503FD208466F74EA9AF87670A87D86A736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cc:80:db:4e:1a:4e:e8:c1:d0:45:5f:bf:a1:
61:f3:97:9b:56:b3:a1:03:67:1b:92:21:ed:54:38:
08:b4:42:55:2e:b3:38:f5:ef:9d:f8:c9:53:bd:d8:
4b:79:a1:87:6e:bd:05:d4:a6:35:f7:47:cb:9f:52:
c1:88:c2:6d:63:56:c0:7c:7f:b5:d9:25:e1:f1:8d:
ea:2a:21:37:e4:a3:3a:96:25:fe:c9:28:e5:6d:78:
be:52:81:19:ca:7f:c9:9b:2d:0f:b0:6f:7d:f8:40:
34:6d:88:2d:a9:0e:14:63:c1:83:0f:5e:38:96:dd:
6e:a8:e1:95:4c:0f:32:62:59:f1:84:03:57:a7:2e:
e7:e0:10:30:cd:30:67:2e:c7:1e:35:e0:1b:c2:fa:
f9:9f:05:26:02:84:24:dc:24:72:a4:b1:ba:ae:b4:
1b:e2:c5:d1:e1:f2:58:9a:a9:2a:cf:04:74:cf:6c:
2f:67:58:cf:e8:53:96:bb:a5:b7:15:18:92:55:ee:
24:6b:0b:7d:05:ac:9c:aa:f2:9c:24:50:ee:c9:f2:
21:09:41:08:7e:40:61:78:60:1d:5f:b5:02:20:26:
06:d5:f5:ed:c3:34:c8:9a:fd:ee:0c:ca:ee:93:da:
f5:2b:88:d1:a7:a3:ee:79:a4:78:16:f3:12:4a:2f:
cf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:3::-2001:7fa:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
58:e0:aa:13:6c:61:1b:28:f8:b2:75:54:36:b6:66:dd:09:32:
5d:e1:d8:e8:4b:cb:cf:8f:d8:b6:30:63:b4:64:02:08:f0:d7:
f2:8d:95:17:9c:b1:78:0f:68:fa:17:64:0c:d8:54:12:1a:2e:
44:22:a8:db:76:74:1a:21:ec:e2:07:46:6d:5d:93:ac:25:8a:
e1:9d:9b:fd:81:46:e4:2e:a7:7e:04:53:a4:49:d9:c1:b6:21:
df:1d:68:ea:e7:56:3e:56:35:b2:b0:b5:da:13:28:95:b1:e6:
91:a9:97:1b:f6:c2:02:1b:96:4e:3b:97:74:92:0f:7a:99:a6:
dc:87:61:db:ab:f5:ad:b4:5a:20:7b:0f:a2:b8:3a:1f:fd:53:
fe:0d:46:a2:34:1c:8b:b8:06:e8:4a:93:f5:ad:45:9d:f8:8f:
22:38:14:a7:90:84:43:bb:86:67:f5:de:20:c2:8f:a8:1f:89:
3e:7f:b8:e5:1a:7e:9e:34:0e:30:08:45:a6:1f:19:29:e6:1b:
17:2f:c4:02:66:0c:e9:fa:11:18:cd:40:8f:58:89:1f:64:f9:
cc:64:42:11:df:8c:d6:cc:02:96:a4:98:6d:b3:33:91:31:8b:
6f:c0:bc:25:27:de:17:57:a1:84:95:3c:37:88:e6:38:e3:f4:
26:0d:50:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:41 2024 by rpki-client on console-ams.rpki-client.org