Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer (raw, json)
Hash identifier: j2q0jZCslm1Z+e72Kx44PJlxdZ9sD3zgjCzd1DL3Axs=
Subject key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 462E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 May 2024 12:59:06 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.251.172.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17966 (0x462e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 6 12:59:06 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9123BFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:50:a4:db:a0:d8:fc:46:51:fd:f6:95:95:65:
6f:d9:04:c7:a0:a2:5d:d8:97:49:0c:a1:58:18:8b:
3d:fc:2a:08:9a:be:64:d4:52:bb:75:ce:3f:a0:d0:
a6:bc:bb:e2:58:42:f7:86:de:12:9c:5e:b1:99:54:
38:5b:88:fa:11:29:0b:dd:32:2b:74:a1:a6:89:27:
b4:4c:80:78:8f:4c:a6:cf:0a:f1:05:c5:ae:38:7f:
2a:ea:4d:ca:78:94:81:e5:02:b3:9b:50:7b:57:fd:
fc:dd:83:dc:0b:0e:ac:e4:70:06:e6:79:9b:34:d4:
38:8f:6f:85:4f:2e:09:c5:3b:44:9d:52:fd:fa:0b:
ee:bc:02:df:4f:88:ba:82:e7:b8:6f:de:70:7f:0e:
c1:78:61:fb:d9:d5:d3:7f:53:3a:bd:0f:61:e4:f6:
43:8b:7f:79:6b:f5:c8:80:57:f7:88:d1:78:29:da:
44:73:d4:90:90:ee:56:02:43:ba:94:29:30:aa:fb:
91:2a:ab:c6:dc:01:25:60:c5:3d:88:48:39:95:e7:
22:3d:0d:b8:bd:a4:3a:9e:81:be:fa:c2:41:97:02:
28:b3:5c:19:18:e3:10:5f:bd:4a:b3:fe:0c:a3:ff:
23:df:e8:64:b3:9a:94:be:28:fc:22:c6:58:52:53:
4f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.251.172.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:62:db:4b:46:51:0a:43:08:e2:70:42:bc:85:0c:20:41:cb:
88:0a:93:dc:30:ed:e4:5c:16:d8:c3:b8:c3:f0:5a:d6:0d:d3:
9c:63:6a:3e:d5:76:bd:93:4f:46:0a:ea:73:d1:02:51:06:87:
66:1b:7b:16:bb:74:35:da:37:41:44:c8:e3:87:b4:e9:fe:28:
90:45:98:c9:dc:93:01:82:e3:a3:7f:af:8f:5d:5d:47:c3:76:
6b:92:df:66:ef:70:fd:e3:b9:96:ce:fb:19:2e:81:bf:96:d8:
c5:6f:de:9a:bc:ef:80:56:e4:b4:e8:ce:af:1d:b6:f8:63:01:
c8:34:99:97:29:12:10:7c:3c:75:f8:d3:3b:e6:1e:01:8f:e3:
b2:63:d2:46:f5:dc:34:b3:a1:25:ea:59:44:97:1b:bb:ae:bc:
20:dd:ae:cc:b7:44:8e:84:ac:f5:9a:e2:46:59:7a:d3:75:01:
18:d6:c3:ec:f5:07:58:ac:53:a0:cb:54:9c:51:49:21:38:ac:
b9:1f:6c:50:00:18:22:90:80:c5:bb:09:f9:62:62:8b:b7:1a:
8e:12:7d:f9:4a:38:2f:5e:f1:5e:01:2e:af:15:04:99:bf:02:
ba:15:19:ea:11:8c:1e:ef:d4:4f:d1:d3:a6:b2:e8:9b:e8:81:
fb:94:85:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:42 2025 by rpki-client