Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer
File: lDrZvGF3q4wvjoExwUpUZexClU8.cer (raw, json)
Hash identifier: Tzh6hExO8SQHxQ4I6+YAXQjARr/wZ7HpjpDcz6RtTHA=
Subject key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4465
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Jan 2024 15:05:52 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 37.139.131.0/24
IP: 193.47.63.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 20:58:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17509 (0x4465)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jan 5 15:05:52 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:75:e8:c7:ee:02:f3:cb:06:75:3d:a7:d7:cc:
f2:15:e7:fc:16:8f:7c:da:e6:96:c4:66:12:99:dc:
7e:09:0f:d0:35:8e:6d:0b:11:ec:f6:0c:a6:05:df:
f4:2e:7e:3e:e7:ab:21:6f:aa:c3:67:2f:b8:e2:95:
b6:6c:57:39:fd:9f:b0:06:45:74:26:f1:4b:79:7d:
4f:1d:d6:c4:67:71:d9:b3:d0:7b:33:3c:37:7a:47:
db:55:bd:05:d9:f1:b0:62:fd:8a:dd:01:5b:03:a1:
7b:65:cc:cb:34:d5:54:5d:e7:e2:99:39:97:20:ac:
98:54:f6:d8:5b:92:c8:dc:07:fa:2f:bf:99:1c:2d:
2a:1d:84:20:4f:6f:61:e6:b7:eb:d7:5c:24:c8:2f:
15:f5:b0:7e:28:cf:9a:77:43:67:0d:21:45:94:f7:
ac:bc:b9:7e:1e:90:63:42:59:e9:79:33:e4:c5:c9:
ee:4f:ef:7a:3d:62:e7:c1:ea:61:9a:1f:45:bb:d3:
6f:3d:56:3b:31:0a:0a:78:17:53:e5:22:39:76:c1:
e3:f3:dc:3b:e9:e2:e2:e1:61:d3:74:37:c5:d1:6a:
40:c3:ce:58:d0:2d:07:fb:90:97:65:d5:2c:ae:c4:
cf:b4:60:f6:ec:62:3d:d7:66:ca:be:3e:ef:40:33:
98:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
37.139.131.0/24
193.47.63.0/24
Signature Algorithm: sha256WithRSAEncryption
29:5a:4c:7a:98:5c:9c:c6:c2:32:c6:2a:68:c4:1d:c2:82:e4:
b4:2d:93:68:3f:cb:02:5a:02:2f:c3:87:49:72:fd:ad:5c:01:
89:07:af:4d:15:22:09:3b:92:e1:6c:13:3c:cf:32:06:76:7b:
92:e1:2e:9f:f6:c9:f1:cc:3a:cb:5d:4c:cd:92:92:3f:24:91:
91:ee:1d:51:20:86:03:f2:74:5f:c1:84:ba:94:fe:95:46:7a:
be:f2:7f:cc:c5:ec:f5:af:fa:69:84:89:30:64:82:49:96:63:
87:d4:45:7b:b5:3d:dc:f5:8d:1c:b3:ca:a8:e2:10:b2:4b:4e:
6c:c1:0b:00:cb:98:3e:68:31:c8:fb:3a:e2:07:d0:82:02:be:
75:bd:f8:93:68:89:59:01:9f:e6:55:cf:c5:cf:07:4c:33:77:
66:92:75:34:e6:e0:ad:a1:ef:e6:95:7f:a5:78:1c:d5:fc:6e:
b0:f6:71:1d:65:d5:79:e9:40:6b:7c:d9:04:b9:ef:d6:7a:e6:
b6:6e:0b:e1:8f:69:51:fe:2a:20:8b:9a:e3:13:24:d3:1b:27:
da:4c:b8:62:ea:fa:57:7a:35:9f:5f:2f:de:52:c8:47:4f:db:
a4:21:6b:85:a9:d2:c5:c9:4e:57:1d:77:6c:f1:fb:8b:3b:7c:
db:c1:a2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:04:22 2024 by rpki-client on console-fra.rpki-client.org