Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer
File: rbmJeP11H5nZqOsq5y08DFUEU6Q.cer (raw, json)
Hash identifier: ZHjT4HCg//v1/p0vfcvutVNvwBSZBe0xgEvE3wTKxIo=
Subject key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4318
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Oct 2023 16:44:04 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 213.170.156.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 04 May 2024 19:45:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17176 (0x4318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Oct 6 16:44:04 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:78:88:48:de:f3:9c:b7:ef:cc:30:8c:72:c7:
6e:fc:8d:2c:84:54:06:55:cc:e2:54:08:a0:84:5c:
95:38:a9:4e:7a:28:ef:b5:96:db:bf:e5:ec:fb:06:
24:96:bc:4f:43:f4:67:f2:54:68:a0:62:99:22:cc:
ea:e6:19:32:e7:86:ef:d8:33:0d:15:1f:b5:a4:2e:
43:91:b9:9a:e6:b6:f9:ae:61:b4:75:f8:37:01:f3:
c8:13:24:49:49:8d:7d:d7:b1:e3:4a:67:3a:fc:59:
ed:b0:0e:6f:9d:70:47:d8:46:3f:45:37:c9:2b:d2:
51:71:44:03:93:bd:4d:5c:d9:77:c4:e6:3d:57:34:
1d:ac:f9:fc:77:58:81:3e:37:ad:21:23:36:93:80:
7a:5d:ed:9f:16:67:af:47:0c:fd:55:4c:2b:d6:57:
35:9f:24:4a:09:44:8f:62:8c:73:96:52:d1:7d:41:
7a:33:b9:b7:d1:ac:19:99:9c:4c:e0:1c:80:c8:f0:
61:8f:28:4e:e2:fe:c9:87:f2:3a:59:c1:50:47:d6:
60:95:19:11:23:e9:3e:0a:1e:08:3f:f0:9e:87:31:
e8:f8:c2:9a:b7:de:8d:24:c0:e5:7e:bc:7f:46:31:
06:00:84:3a:ef:33:95:a3:17:05:bb:0e:25:e0:e7:
bf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
213.170.156.0/22
Signature Algorithm: sha256WithRSAEncryption
01:e2:cd:5c:72:fa:ca:b5:72:f1:1b:78:99:c1:b4:9b:7c:46:
82:4c:87:c6:1b:18:ea:9a:78:48:57:fb:13:5c:1b:08:c7:63:
66:de:53:85:19:05:5c:3f:3a:57:c7:72:02:08:ea:36:28:7b:
7d:db:f8:a8:0c:98:c3:5f:78:ce:66:f7:a2:94:35:45:a7:9d:
b6:d4:8d:62:ae:d5:a9:05:2b:f8:f2:55:70:5c:45:67:6f:5a:
7e:f7:2a:26:74:e0:c2:a6:99:03:84:6e:e9:e5:cf:3f:b4:30:
bb:c3:8e:e6:f2:f4:65:9a:1b:46:e6:73:38:c1:27:d3:e3:39:
16:05:a4:62:59:1f:36:69:86:8d:b7:b3:3e:6a:48:b6:ea:57:
3a:19:9d:e5:ea:eb:86:74:4b:34:fc:28:f9:5f:4a:58:40:b7:
54:45:27:8a:b5:fd:5f:bf:86:0e:8a:99:11:62:bf:a3:97:c3:
23:9b:36:73:30:4a:af:c8:56:e1:49:82:2f:94:b8:7b:14:65:
72:34:11:0c:55:95:b7:d4:39:0d:00:08:64:81:14:f9:4e:b7:
1b:47:04:a2:dd:d6:9b:e0:ed:e6:99:ba:55:98:dd:38:69:32:
de:d2:fc:37:9a:7e:e1:0b:74:17:fe:5e:1e:4c:8b:62:fb:5d:
03:70:88:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 21:41:52 2024 by rpki-client on console-ams.rpki-client.org