Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rUR6Z_B-gc0JwyLs0QrZQWvESys.cer
File: rUR6Z_B-gc0JwyLs0QrZQWvESys.cer (raw, json)
Hash identifier: cDUBi0jWXJ6Rif2n70oE3B6n8DApRk8t2Xs0d/nvk6U=
Subject key identifier: AD:44:7A:67:F0:7E:81:CD:09:C3:22:EC:D1:0A:D9:41:6B:C4:4B:2B
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 44E1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9188EB6/9C0EF83A74EC11EC93F81A33C4F9AE02/rUR6Z_B-gc0JwyLs0QrZQWvESys.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9188EB6/9C0EF83A74EC11EC93F81A33C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 23:11:16 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 193.149.153.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 17:59:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17633 (0x44e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Feb 1 23:11:16 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9188EB6/serialNumber=AD447A67F07E81CD09C322ECD10AD9416BC44B2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:de:76:a9:af:c2:24:c2:28:ae:3a:27:20:6d:
70:a2:01:79:33:b4:66:20:51:07:56:02:bd:e5:6c:
12:7a:0b:98:ef:2e:a3:13:da:1e:15:3e:2f:d4:c9:
a7:7d:93:6c:21:84:03:8f:91:af:3d:4b:10:2d:d6:
27:f0:8e:d1:a6:13:d8:d2:4b:f1:42:1d:b7:c2:49:
c4:a7:2b:ff:85:03:58:41:69:03:d5:51:74:7f:f1:
1a:91:0f:84:db:8a:12:c8:cb:32:8e:cf:60:c8:4f:
cc:5e:6c:e1:55:bc:0f:50:d2:52:12:31:a7:fc:b0:
1b:c5:d4:c0:3f:32:f2:c0:18:be:7d:cd:78:e9:3e:
2f:92:c7:84:d5:9e:da:41:e6:6f:fa:b2:cb:88:f9:
7a:03:57:a1:fe:30:94:44:39:2c:16:ae:8c:4e:1e:
7d:9d:f4:e9:1f:51:27:d8:ef:09:e8:60:31:ad:b6:
6b:d3:a2:2b:7b:3d:3b:0d:85:06:b3:45:44:db:fc:
c8:22:3e:09:76:18:ba:04:8c:f6:44:90:0a:7a:89:
a0:cb:35:69:29:ac:0a:96:8e:b4:10:57:e6:29:83:
d4:94:75:af:7d:e9:5f:9c:f0:df:cb:6f:7a:d7:91:
19:88:ba:29:d3:4a:18:07:9a:f9:5b:d8:21:f7:a6:
1b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:44:7A:67:F0:7E:81:CD:09:C3:22:EC:D1:0A:D9:41:6B:C4:4B:2B
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/9C0EF83A74EC11EC93F81A33C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/9C0EF83A74EC11EC93F81A33C4F9AE02/rUR6Z_B-gc0JwyLs0QrZQWvESys.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
193.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:98:67:7b:3d:c8:3e:66:94:87:85:c1:3e:39:e9:7d:67:12:
5a:fe:7a:92:b2:08:c1:94:b6:3b:31:8d:59:7b:dc:0b:8e:6f:
87:0f:1c:9f:da:0c:a5:dc:79:c6:35:d2:8a:9b:54:4d:5b:1d:
4b:6e:a3:03:2a:0a:aa:5d:c9:26:b5:0f:54:de:5c:93:db:87:
1f:cc:ed:59:3c:5c:a7:c5:27:26:f4:e9:83:71:c7:27:db:bf:
ec:5d:5d:e5:fe:e1:15:37:a9:9e:10:4d:d0:ae:32:09:dc:ff:
43:94:7d:71:a6:79:43:4e:87:a6:64:06:6c:e9:61:5f:c6:7b:
73:4b:46:4e:e8:91:00:c0:17:18:03:df:2a:60:e5:b3:62:2c:
1f:46:65:d1:bc:22:7e:da:68:c4:60:04:68:16:22:10:97:2b:
b8:5d:14:99:3c:4e:67:59:5b:f9:92:39:17:c8:ea:10:d5:11:
4d:ed:3d:fa:7e:28:5d:bb:56:a9:18:1a:5b:89:db:9c:14:c2:
ee:ef:c8:da:af:b2:15:be:a2:e1:d3:45:e8:c1:42:c2:05:45:
37:db:18:58:2c:d5:67:56:47:a6:85:d3:35:ee:66:1d:36:33:
51:af:e4:31:82:92:1f:fd:25:73:ae:72:8f:17:28:e2:57:a5:
9d:1f:11:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:08:11 2024 by rpki-client on console-ams.rpki-client.org