Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer
File: rbmJeP11H5nZqOsq5y08DFUEU6Q.cer (raw, json)
Hash identifier: RyU3t/dOpkEGOtKCamlgvJi43gUl5vxZMg+qP4tA/p8=
Subject key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4842
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Sep 2024 21:52:51 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 213.170.156.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18498 (0x4842)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Sep 23 21:52:51 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:78:88:48:de:f3:9c:b7:ef:cc:30:8c:72:c7:
6e:fc:8d:2c:84:54:06:55:cc:e2:54:08:a0:84:5c:
95:38:a9:4e:7a:28:ef:b5:96:db:bf:e5:ec:fb:06:
24:96:bc:4f:43:f4:67:f2:54:68:a0:62:99:22:cc:
ea:e6:19:32:e7:86:ef:d8:33:0d:15:1f:b5:a4:2e:
43:91:b9:9a:e6:b6:f9:ae:61:b4:75:f8:37:01:f3:
c8:13:24:49:49:8d:7d:d7:b1:e3:4a:67:3a:fc:59:
ed:b0:0e:6f:9d:70:47:d8:46:3f:45:37:c9:2b:d2:
51:71:44:03:93:bd:4d:5c:d9:77:c4:e6:3d:57:34:
1d:ac:f9:fc:77:58:81:3e:37:ad:21:23:36:93:80:
7a:5d:ed:9f:16:67:af:47:0c:fd:55:4c:2b:d6:57:
35:9f:24:4a:09:44:8f:62:8c:73:96:52:d1:7d:41:
7a:33:b9:b7:d1:ac:19:99:9c:4c:e0:1c:80:c8:f0:
61:8f:28:4e:e2:fe:c9:87:f2:3a:59:c1:50:47:d6:
60:95:19:11:23:e9:3e:0a:1e:08:3f:f0:9e:87:31:
e8:f8:c2:9a:b7:de:8d:24:c0:e5:7e:bc:7f:46:31:
06:00:84:3a:ef:33:95:a3:17:05:bb:0e:25:e0:e7:
bf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
213.170.156.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:51:a5:bf:ef:ab:84:83:1d:3a:34:71:f5:b9:5f:33:81:27:
5b:9a:3a:60:8d:99:74:a3:91:3e:9f:cc:7c:d8:2b:5e:ba:0b:
a9:f3:7f:82:e0:35:b8:d9:96:d2:fb:cd:41:46:a1:97:33:1f:
9b:9d:45:67:e9:71:09:f8:7b:74:a8:cc:67:a6:6b:cf:8e:7f:
72:9f:dd:da:e6:fd:f3:bb:1a:9d:de:d1:8f:97:1e:47:f7:fa:
fb:fc:82:84:be:45:b5:77:b3:c9:30:8b:8a:52:59:ad:f6:9d:
b2:d8:b0:18:dc:fb:2e:51:b6:a2:5f:f2:b7:ce:15:91:a1:8b:
70:77:e7:c0:2e:6b:12:34:14:cd:ad:05:6f:44:97:b2:05:37:
1e:dd:28:8b:88:1b:e5:7a:7b:df:00:e1:27:fb:92:b9:62:6f:
45:b8:ee:73:c6:29:74:31:cd:26:56:37:92:07:20:c5:d0:f4:
7d:96:b1:99:c3:01:8b:46:97:50:64:fb:ab:c1:29:c4:39:5b:
07:30:35:38:90:1a:4d:f8:1b:9b:be:2a:57:46:08:da:2b:0d:
2b:55:78:82:e8:9b:f6:5d:de:83:37:d8:b8:2e:e2:a7:e3:8c:
24:d3:ff:c0:28:65:29:17:44:b1:0e:d5:12:6b:c8:8c:2f:d2:
12:45:07:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org