Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer (raw, json)
Hash identifier: 0FrFyx3bel2uQiDalPlzapyqWsyts0wTI1cuUA89oKU=
Subject key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 40E2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 May 2023 12:54:28 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.251.172.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 20:58:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16610 (0x40e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 9 12:54:28 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:50:a4:db:a0:d8:fc:46:51:fd:f6:95:95:65:
6f:d9:04:c7:a0:a2:5d:d8:97:49:0c:a1:58:18:8b:
3d:fc:2a:08:9a:be:64:d4:52:bb:75:ce:3f:a0:d0:
a6:bc:bb:e2:58:42:f7:86:de:12:9c:5e:b1:99:54:
38:5b:88:fa:11:29:0b:dd:32:2b:74:a1:a6:89:27:
b4:4c:80:78:8f:4c:a6:cf:0a:f1:05:c5:ae:38:7f:
2a:ea:4d:ca:78:94:81:e5:02:b3:9b:50:7b:57:fd:
fc:dd:83:dc:0b:0e:ac:e4:70:06:e6:79:9b:34:d4:
38:8f:6f:85:4f:2e:09:c5:3b:44:9d:52:fd:fa:0b:
ee:bc:02:df:4f:88:ba:82:e7:b8:6f:de:70:7f:0e:
c1:78:61:fb:d9:d5:d3:7f:53:3a:bd:0f:61:e4:f6:
43:8b:7f:79:6b:f5:c8:80:57:f7:88:d1:78:29:da:
44:73:d4:90:90:ee:56:02:43:ba:94:29:30:aa:fb:
91:2a:ab:c6:dc:01:25:60:c5:3d:88:48:39:95:e7:
22:3d:0d:b8:bd:a4:3a:9e:81:be:fa:c2:41:97:02:
28:b3:5c:19:18:e3:10:5f:bd:4a:b3:fe:0c:a3:ff:
23:df:e8:64:b3:9a:94:be:28:fc:22:c6:58:52:53:
4f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.251.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:a4:90:47:80:00:76:9f:59:3a:19:a0:8e:54:96:2c:99:9a:
84:6a:a8:df:7e:30:b6:85:92:55:95:52:5d:80:1e:d6:4b:9a:
9e:9a:89:87:09:c6:79:03:83:04:72:75:93:bf:47:65:7f:54:
ab:78:1a:59:3e:c7:88:0a:87:09:01:4b:de:d3:8a:f5:42:29:
3a:c9:07:12:3c:e9:57:a5:b4:d2:fe:28:34:9c:ee:95:09:2d:
54:30:4d:a5:f5:29:27:96:0e:df:7f:b0:66:0d:f7:16:79:09:
82:ee:e0:ef:df:cb:10:9b:ed:cd:29:47:17:5b:9a:4a:db:85:
2f:ab:0b:df:9a:d7:4e:af:76:40:8d:7a:a8:ec:b7:38:b5:46:
8a:a6:a4:81:90:0b:e2:16:1f:23:24:96:73:12:61:62:9c:da:
52:8c:cd:33:a5:8c:da:42:5f:eb:06:94:93:5b:6b:bb:58:cf:
7b:72:7f:21:9f:07:3c:fe:ce:61:7f:81:64:e0:e6:c0:1a:26:
22:a5:82:06:24:74:a4:d1:f4:2f:6a:09:46:9e:38:76:09:00:
7f:84:6a:ab:f9:54:2a:75:a8:26:cd:88:49:e4:06:bd:69:dc:
ea:7a:f5:58:97:d2:d8:58:43:38:cc:22:c2:ee:ed:e4:6d:b9:
cd:ac:7a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:04:22 2024 by rpki-client on console-fra.rpki-client.org