Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer
File: jSAgfR7bX1wtZjsKahC81AutOt4.cer (raw, json)
Hash identifier: fz+3eLaI646iWGc8iyYX56lXwTVekddhSCptQ1hN6w8=
Subject key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 42BA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 Sep 2023 16:58:07 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 141.163.128.0/17
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 May 2024 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17082 (0x42ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Sep 12 16:58:07 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:38:72:ae:9f:a0:65:d9:7a:95:c9:09:2a:0a:
77:59:bd:7b:e7:3a:ef:b5:38:9e:93:40:b5:8b:c7:
b5:10:62:22:b6:10:91:1f:bf:2d:d1:af:4e:ee:fb:
b9:f4:7c:09:2d:bc:c9:8d:2b:63:fd:14:b4:ea:97:
6f:c0:37:8f:fd:2f:56:a5:1f:a4:d3:6b:21:7d:46:
c7:db:81:be:29:bc:65:98:d6:f1:6e:51:aa:63:ab:
ae:78:53:9a:f1:25:a5:28:6d:9e:b1:c1:44:43:b2:
53:c9:00:e2:6e:51:61:03:e4:c1:ea:91:fa:5f:ba:
de:b5:d8:27:d1:00:37:1b:7c:c9:78:f6:a2:31:fe:
46:62:46:06:46:dd:c6:e2:50:bc:30:a5:69:7e:90:
6d:fc:56:08:fc:2e:49:45:2e:39:28:54:eb:35:7f:
e7:05:3c:79:27:91:73:17:c3:60:b9:fa:38:b5:c7:
1e:3d:91:9a:e7:7e:04:68:2c:ca:71:b0:9c:a9:ff:
09:d6:e5:bd:24:90:c6:a1:2c:5e:b2:ee:9f:d2:51:
36:66:56:5d:eb:0e:61:e8:5a:bb:76:1c:59:40:2b:
03:9b:ea:0e:fc:fc:46:9b:9d:cc:21:ee:26:fd:60:
0b:bc:6a:fd:74:4e:6c:b9:42:73:82:79:41:21:d7:
a7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
141.163.128.0/17
Signature Algorithm: sha256WithRSAEncryption
bc:23:24:a3:9d:d1:ca:09:3e:29:8f:8c:05:cc:89:a7:bf:c2:
bf:77:2d:3e:eb:f8:89:f4:ec:4a:17:93:c9:65:62:6f:fd:c7:
9d:44:99:20:d8:7f:c1:c4:b7:af:b6:fb:b9:58:80:5a:2e:36:
97:b6:dc:ca:67:80:0c:fd:c7:10:e6:0f:69:b7:c2:31:ff:1e:
75:4a:5f:21:fb:c7:91:f5:23:4d:f4:f8:09:8c:8a:94:2b:91:
fc:f1:a6:54:06:38:f8:dd:27:69:b9:11:55:79:95:08:14:85:
1b:0a:95:fc:1f:7b:36:dc:a3:6d:bc:88:63:a8:02:48:a2:4d:
dc:99:25:10:9d:fd:a7:02:d4:32:6f:16:60:44:31:50:73:0f:
64:2b:32:8e:dd:ec:94:0f:d3:70:89:57:9a:dc:c5:2d:3b:45:
b9:19:b2:52:f9:9c:31:94:fc:4d:11:63:dc:b1:f2:c7:3a:e6:
8f:7d:ad:23:f9:9d:10:26:18:35:eb:b6:a9:b3:18:91:f8:a3:
23:e6:93:a1:86:52:06:08:ad:73:e9:21:0c:c1:0b:e9:a1:fe:
a9:73:15:c0:fd:f9:cc:db:57:ec:8f:df:d3:ee:db:7a:26:c6:
bd:67:7c:3a:af:88:86:bd:22:35:be:91:d8:ce:f4:61:83:bc:
dd:2f:da:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:47:49 2024 by rpki-client on console-ams.rpki-client.org