Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer
File: jSAgfR7bX1wtZjsKahC81AutOt4.cer (raw, json)
Hash identifier: fF9eM1LUzL0OGdBuh589r2UagKzPkn0OtHQJ1MRPh1o=
Subject key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4818
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Sep 2024 16:40:33 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 141.163.128.0/17
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18456 (0x4818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Sep 11 16:40:33 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:38:72:ae:9f:a0:65:d9:7a:95:c9:09:2a:0a:
77:59:bd:7b:e7:3a:ef:b5:38:9e:93:40:b5:8b:c7:
b5:10:62:22:b6:10:91:1f:bf:2d:d1:af:4e:ee:fb:
b9:f4:7c:09:2d:bc:c9:8d:2b:63:fd:14:b4:ea:97:
6f:c0:37:8f:fd:2f:56:a5:1f:a4:d3:6b:21:7d:46:
c7:db:81:be:29:bc:65:98:d6:f1:6e:51:aa:63:ab:
ae:78:53:9a:f1:25:a5:28:6d:9e:b1:c1:44:43:b2:
53:c9:00:e2:6e:51:61:03:e4:c1:ea:91:fa:5f:ba:
de:b5:d8:27:d1:00:37:1b:7c:c9:78:f6:a2:31:fe:
46:62:46:06:46:dd:c6:e2:50:bc:30:a5:69:7e:90:
6d:fc:56:08:fc:2e:49:45:2e:39:28:54:eb:35:7f:
e7:05:3c:79:27:91:73:17:c3:60:b9:fa:38:b5:c7:
1e:3d:91:9a:e7:7e:04:68:2c:ca:71:b0:9c:a9:ff:
09:d6:e5:bd:24:90:c6:a1:2c:5e:b2:ee:9f:d2:51:
36:66:56:5d:eb:0e:61:e8:5a:bb:76:1c:59:40:2b:
03:9b:ea:0e:fc:fc:46:9b:9d:cc:21:ee:26:fd:60:
0b:bc:6a:fd:74:4e:6c:b9:42:73:82:79:41:21:d7:
a7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
141.163.128.0/17
Signature Algorithm: sha256WithRSAEncryption
80:43:fe:c3:61:50:cb:73:f1:02:63:fd:fd:3c:6f:35:5b:85:
c0:60:b8:9d:c1:8f:97:6b:88:fb:af:9e:94:27:f8:d9:84:ea:
4e:76:ab:78:d5:99:c7:c9:e3:ef:09:e5:b1:f8:b8:ff:ad:90:
e5:10:73:0a:62:07:35:f5:ed:f7:38:20:70:3f:c0:32:0a:10:
ec:83:91:44:06:f0:25:a7:1b:5d:48:e2:7e:1a:58:ed:5f:be:
b3:4a:72:bf:78:99:4b:3f:b5:54:8b:9b:30:4b:dc:13:07:67:
5e:ba:c2:36:03:01:82:b5:f9:33:91:82:b4:e3:c9:bf:96:cb:
b7:bc:a0:5e:86:4c:2e:20:93:7c:f7:9c:55:15:79:fc:14:cf:
17:eb:18:83:3d:2e:d0:93:18:94:ca:2a:9a:01:d3:1c:0f:48:
82:cd:2b:42:67:05:fa:79:f3:f9:67:ce:34:84:64:01:69:f4:
7e:3f:50:8f:de:1f:11:77:28:11:43:08:0d:30:77:ea:28:0a:
33:e9:62:5c:73:66:e0:20:83:54:24:0b:00:a7:91:bb:c1:92:
c1:16:ac:6b:8f:e8:31:48:80:19:5f:95:a0:85:0c:05:d7:a1:
05:51:1e:38:76:58:d1:43:3f:e6:28:70:88:93:29:a4:79:a6:
67:47:96:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org