Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer
File: lDrZvGF3q4wvjoExwUpUZexClU8.cer (raw, json)
Hash identifier: BqjUXSzP4JPgsAQVW1ha5ZPZhBQ0YBoE5qYeefNUfE4=
Subject key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4A32
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Feb 2025 14:56:34 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 37.139.131.0/24
IP: 193.47.63.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18994 (0x4a32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 3 14:56:34 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A9158568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:75:e8:c7:ee:02:f3:cb:06:75:3d:a7:d7:cc:
f2:15:e7:fc:16:8f:7c:da:e6:96:c4:66:12:99:dc:
7e:09:0f:d0:35:8e:6d:0b:11:ec:f6:0c:a6:05:df:
f4:2e:7e:3e:e7:ab:21:6f:aa:c3:67:2f:b8:e2:95:
b6:6c:57:39:fd:9f:b0:06:45:74:26:f1:4b:79:7d:
4f:1d:d6:c4:67:71:d9:b3:d0:7b:33:3c:37:7a:47:
db:55:bd:05:d9:f1:b0:62:fd:8a:dd:01:5b:03:a1:
7b:65:cc:cb:34:d5:54:5d:e7:e2:99:39:97:20:ac:
98:54:f6:d8:5b:92:c8:dc:07:fa:2f:bf:99:1c:2d:
2a:1d:84:20:4f:6f:61:e6:b7:eb:d7:5c:24:c8:2f:
15:f5:b0:7e:28:cf:9a:77:43:67:0d:21:45:94:f7:
ac:bc:b9:7e:1e:90:63:42:59:e9:79:33:e4:c5:c9:
ee:4f:ef:7a:3d:62:e7:c1:ea:61:9a:1f:45:bb:d3:
6f:3d:56:3b:31:0a:0a:78:17:53:e5:22:39:76:c1:
e3:f3:dc:3b:e9:e2:e2:e1:61:d3:74:37:c5:d1:6a:
40:c3:ce:58:d0:2d:07:fb:90:97:65:d5:2c:ae:c4:
cf:b4:60:f6:ec:62:3d:d7:66:ca:be:3e:ef:40:33:
98:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
37.139.131.0/24
193.47.63.0/24
Signature Algorithm: sha256WithRSAEncryption
03:38:b5:bf:2e:71:bb:29:dc:15:f6:fb:c6:0b:19:fb:77:ca:
8b:da:66:57:41:72:12:33:60:60:8f:34:71:74:f3:a4:3b:87:
c1:7c:7c:04:bf:a0:87:39:75:7b:18:b8:ea:ac:45:39:ad:af:
73:23:62:83:07:84:4b:06:74:3e:f8:50:82:78:f4:e0:4b:43:
25:7d:8b:71:36:9b:0e:c1:d2:8f:94:5c:cf:c3:b8:ce:c8:f4:
ef:be:5a:70:eb:f9:86:ec:06:80:d6:e8:05:6f:ae:77:4c:1f:
4d:bc:d7:93:48:5a:50:79:d9:65:ad:ec:6a:65:42:25:68:99:
fd:a1:00:da:f4:4d:9a:90:bf:0b:d5:56:7c:a5:f7:0a:9a:51:
f4:54:55:0a:44:2a:e0:f9:0c:d6:9b:76:1e:f7:db:06:2b:9f:
7e:d6:21:7b:fe:4d:bb:2a:90:f7:54:05:89:50:98:b6:ab:e8:
02:0a:5e:1d:0a:3e:7c:fa:b6:23:40:16:f1:73:eb:77:ea:67:
ed:72:98:81:07:fb:97:11:14:ae:26:12:fd:79:d6:18:2f:59:
ea:c1:b8:ae:53:a7:26:f2:85:79:74:36:ab:95:8f:fe:03:4f:
10:e4:a7:83:c7:6b:f5:31:a1:86:f7:92:b0:fd:09:6d:29:59:
81:0f:af:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:38:52 2025 by rpki-client