Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer
File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer (raw, json)
Hash identifier: 9bw6F57IXRZ1r51KTbl/gle47ZzVqBDZNkswf9JGTak=
Subject key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 44B7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 22 Jan 2024 16:00:05 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 37.111.192.0/18
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17591 (0x44b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jan 22 16:00:05 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:eb:d0:73:c9:f7:5d:72:de:fc:05:8b:84:2a:
9f:be:7b:32:73:f7:ca:3d:f8:88:03:1b:62:03:37:
c8:dc:d8:4e:0b:99:1f:6a:60:a8:0e:c1:dc:e8:72:
4a:d5:54:2c:68:90:63:92:13:7e:23:f2:a0:4d:74:
78:f9:94:37:13:34:c5:e4:00:1c:c5:57:e6:08:e4:
9f:25:55:a0:74:fc:75:0a:74:fe:75:2e:20:cc:ab:
6b:ed:a5:2d:8c:8f:12:4c:97:3f:07:b2:c9:95:ca:
17:6c:41:44:98:e3:4c:67:95:61:49:60:a9:cd:c8:
bf:59:4f:8a:1f:a8:17:fc:f2:b0:51:29:78:e1:b3:
16:72:c1:80:b0:8b:03:9f:60:2b:c6:c1:ff:b8:c0:
6f:44:aa:78:5e:64:82:a6:b6:ce:af:72:4e:9a:8f:
35:86:00:03:51:81:0a:e8:78:a9:ea:7c:dd:82:f8:
af:40:9f:9d:6d:c4:61:c9:fa:c5:b4:18:ef:8c:66:
6f:17:5c:cc:87:54:d0:f2:ab:ed:83:e1:74:1d:bc:
15:c6:35:39:3a:53:5e:36:2d:1a:37:00:f5:0e:01:
b2:6b:d5:13:1c:45:ff:28:bd:6c:b3:be:cd:a2:93:
ff:b0:e8:fd:df:44:d0:4d:a5:43:0f:43:19:92:e7:
58:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
37.111.192.0/18
Signature Algorithm: sha256WithRSAEncryption
0e:36:ba:a9:e1:1d:59:8f:4f:44:94:5e:3b:5b:09:9f:7e:69:
51:1b:4d:c9:00:4b:1c:09:0f:da:d8:e2:54:9a:e5:5f:ea:c1:
25:b9:3d:8d:4a:7c:e5:6d:6b:15:34:65:0f:11:40:73:33:f5:
bf:86:be:e7:c7:41:2d:cd:75:c2:26:de:63:d7:71:f4:4f:3d:
38:1f:5e:8a:84:da:e7:f4:bc:a0:96:d2:d1:ff:b8:7f:5b:5a:
54:ea:7d:47:1f:ad:da:a8:52:a1:0d:20:f0:45:95:71:e4:0f:
fa:92:95:99:48:e1:5e:50:5d:59:eb:87:18:78:23:11:f7:15:
00:c4:17:8d:84:1c:d1:88:4d:28:6e:08:98:b4:94:38:b0:7e:
50:43:1f:4a:b4:a0:81:ad:e3:db:c1:a6:af:50:6f:34:62:b4:
69:38:89:b8:61:90:14:95:65:08:5c:27:69:96:db:61:93:89:
a5:58:e9:30:b5:e0:23:9c:a0:97:0c:99:39:bf:fc:9b:c2:e0:
df:ee:16:a6:d2:bb:11:ea:32:71:ce:bc:ac:a5:61:33:86:1b:
00:ea:12:fe:35:db:37:7f:84:ae:36:17:68:c4:b2:f2:ec:07:
10:67:30:95:67:a5:ca:1e:90:d6:f2:5b:e2:cb:65:5f:eb:fa:
16:e1:39:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org