Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer
File: kXkVGVyXGrRB_d7eb_PNNy51TLU.cer (raw, json)
Hash identifier: zXxjc/6Bl3wnlfaVyzyyrXEA7WfVCk3iaNiAxrmp92Y=
Subject key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4614
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Apr 2024 20:25:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 194.233.64.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17940 (0x4614)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 29 20:25:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:de:56:6f:2b:48:0f:84:d8:d6:18:6e:bd:24:
36:1b:39:7d:08:5c:83:6e:35:b5:e8:aa:bd:b3:da:
ec:89:77:80:7c:86:99:65:6c:8d:2e:3f:0d:d6:35:
86:5a:6b:21:fb:bd:d7:d1:9b:19:c2:a4:4f:e8:20:
5e:10:ad:7d:b6:0b:91:bc:c7:d4:54:22:f7:58:5e:
61:9e:20:f4:78:dc:56:a6:3f:78:a0:32:08:d7:7c:
2b:d0:f4:5b:d8:ba:01:ce:de:b2:2f:a9:6b:a3:92:
8a:8c:7a:c1:af:c9:6e:bb:81:86:cb:13:06:f4:7e:
2f:b1:6d:06:37:0a:b2:8a:24:b4:41:f0:11:ff:d2:
16:da:96:8d:84:63:4e:ec:f8:f1:10:72:0c:81:09:
24:9b:b1:b2:24:6a:b5:64:a0:29:0b:e6:b6:53:23:
5e:01:ff:3a:0b:a7:4e:1c:69:75:3d:45:e5:ab:14:
59:df:1d:33:08:e7:da:97:ea:9c:f2:bb:ba:b2:9f:
b2:e0:7a:15:59:d6:9b:e2:de:7f:bf:43:49:06:3e:
6f:c5:d2:b5:1f:48:fa:10:da:99:90:f8:45:f3:e4:
9a:c7:ce:82:9b:e0:03:97:62:1d:ef:34:56:cf:c7:
09:26:1e:30:46:91:3c:1e:0a:c9:6c:ce:ef:a0:30:
55:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.233.64.0/19
Signature Algorithm: sha256WithRSAEncryption
7d:49:89:46:c7:3e:09:fc:0b:c9:d3:50:35:54:7d:f1:98:2e:
96:f2:c2:6b:98:cc:fa:06:75:03:34:dd:cf:79:df:9c:44:8d:
f9:d0:47:d5:02:63:41:93:ad:bd:82:0b:76:a1:43:98:75:f9:
76:1a:1c:b2:ef:f0:a1:4b:4e:1b:eb:14:da:3c:14:0a:3f:31:
5d:54:74:f4:01:49:0b:ef:80:65:7d:91:70:59:34:0e:a8:da:
a8:40:85:6f:b2:ae:6f:72:6c:0d:d4:bc:56:ff:59:89:9c:77:
8e:fb:ad:03:c4:d5:21:73:c5:32:bc:0d:e6:25:2c:f2:e8:60:
47:77:be:e1:ca:1d:25:e5:34:15:c5:1a:2b:45:d0:c4:1c:00:
8b:08:33:ab:5e:bd:4e:a1:6e:d7:03:b4:8b:94:c5:ff:45:3e:
df:6a:3d:8f:77:69:61:4d:d0:13:aa:7f:32:6c:72:98:88:7a:
ba:88:99:27:61:cf:a1:9e:57:f1:c8:f8:ac:a6:a2:ad:ca:46:
c4:ba:63:c7:1e:ef:c1:ff:0f:dc:2e:35:b2:c6:9b:2b:0c:de:
25:04:48:bc:e2:0d:d1:da:ca:94:89:cc:9a:ef:68:59:e2:2f:
ab:5d:fa:9c:3a:99:ed:f4:f2:e0:10:1e:d9:b8:f8:c8:2f:11:
46:e2:f2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org