Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer
File: tljvayeSnHt_X7Jsue5qQSzoXdQ.cer (raw, json)
Hash identifier: LPSuwOW4icZTVvngKtD6cGXZSPHwkOiroL83NCoVCDo=
Subject key identifier: B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 43E4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 13:26:01 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 185.135.72.0/21
IP: 185.189.240.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 20:58:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17380 (0x43e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Nov 30 13:26:01 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9123072/serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:f0:2d:af:0c:67:4d:95:8a:37:af:49:2f:5c:
48:30:fd:41:ec:10:28:46:76:1b:13:49:b4:46:86:
5e:d0:84:14:b9:2a:da:ce:44:43:5b:22:ea:91:e0:
26:d2:e2:ee:3d:c7:cb:06:c4:5d:f5:92:4b:14:f5:
09:b7:9a:6d:12:41:76:9b:e0:23:5a:e1:92:e4:72:
b3:38:3b:6e:81:37:67:73:50:40:60:86:2e:5b:69:
f8:cb:f7:42:ea:1a:9d:1c:5e:fa:ee:73:f4:63:5a:
e7:9c:8a:26:37:f5:8d:f7:f3:5e:a9:41:27:dd:38:
dd:55:34:be:ed:97:cf:4e:1a:b4:6f:9e:08:a5:6b:
84:c9:f2:54:b4:fd:12:96:ae:32:86:c5:5b:a8:d7:
b0:15:cb:a3:99:de:dd:1c:79:65:2f:6d:c8:b2:1e:
a0:23:07:f7:f4:7c:c4:45:47:ce:a9:89:a8:e1:85:
b8:c7:8e:ee:79:7f:9a:9c:66:2f:0d:34:d1:7f:1c:
bf:89:a0:9f:4e:fb:e1:ac:3b:cf:96:9e:57:ed:4c:
46:0e:57:62:7b:4f:b1:64:c8:14:fa:9d:4d:40:78:
8a:44:e3:ad:90:07:71:f4:7b:f4:3a:e2:45:54:6d:
ce:b8:be:a4:fd:ea:71:ce:22:5b:c8:9a:44:e8:19:
46:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.135.72.0/21
185.189.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:93:47:ca:e3:f0:72:bf:bb:05:35:4d:bd:2d:2c:9b:b5:fb:
b2:6f:19:69:f6:2b:e4:59:e4:d2:ed:5e:f4:1b:f3:ef:5d:d2:
53:6d:02:f5:84:16:c6:07:5c:25:bc:54:ac:39:69:50:ea:e7:
0d:62:a6:a6:ef:c0:d7:a3:15:ec:48:b4:83:d4:74:03:f7:04:
95:f8:6d:11:10:46:e3:5a:e5:59:42:5c:ab:09:54:8a:bb:9e:
5a:0e:95:54:84:e1:00:79:51:64:1e:f9:9d:b6:a0:42:8b:24:
02:dc:9e:2c:9a:62:5d:65:48:59:4e:fc:f1:24:df:41:37:a8:
fe:74:e3:5f:5a:f6:f3:43:7d:2a:c8:78:4c:e3:1d:4b:f2:45:
5c:dc:46:b9:58:59:c6:60:f7:95:32:a2:16:8e:00:ec:89:8d:
13:07:16:5d:6b:23:34:47:f5:0a:db:c4:69:8c:38:fc:9d:f8:
3b:12:73:b5:86:c7:7c:f6:04:47:71:8a:64:25:24:74:e2:c5:
64:1f:07:e7:70:21:3a:40:25:94:90:fd:b1:b0:9a:7a:a0:c6:
d9:71:ba:f0:c0:4b:ec:24:4a:30:d6:0a:d5:62:8b:44:18:f6:
ee:a2:e5:cc:2c:c6:e1:3b:40:b4:78:05:8f:53:53:6a:4f:54:
c7:3d:15:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:04:22 2024 by rpki-client on console-fra.rpki-client.org