Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer
File: u9Lp2RPGRcigUZJHTP-olruaTqY.cer (raw, json)
Hash identifier: w3wtQyGUlQpT8fllZBgNcS+93H9S4ks2miwUf/wMiOc=
Subject key identifier: BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 48FC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Nov 2024 12:22:17 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 141.243.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18684 (0x48fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Nov 11 12:22:17 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9111B00/serialNumber=BBD2E9D913C645C8A05192474CFFA896BB9A4EA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:2d:31:91:33:be:43:cf:02:9f:ba:e7:70:
cd:ec:22:8b:9e:3d:58:a1:e4:10:10:2e:7d:85:ca:
3c:bc:dd:f2:93:ab:ff:f4:c1:fe:59:51:6a:9c:5e:
db:83:c2:43:3a:e6:a0:cc:70:11:9f:18:3f:52:e2:
d8:db:d8:1d:07:03:45:7b:8d:b0:41:1d:6d:1c:43:
56:aa:2a:34:01:6f:69:70:1a:d0:c8:95:35:68:71:
c0:af:d3:fe:ac:70:40:2a:9e:16:de:e8:f2:2e:c3:
87:b3:3a:a3:72:6c:b5:a4:fa:ff:e8:dc:53:9a:b6:
25:bf:82:95:54:4a:41:45:83:b1:92:fe:a5:db:22:
9e:14:11:67:e6:5e:9f:0e:78:c4:b1:ea:21:59:04:
9d:79:2f:47:a0:a2:bf:d9:db:05:2e:02:69:c3:3e:
94:ee:6b:4e:75:48:42:cc:8a:63:7f:93:81:9a:28:
35:46:f5:b4:81:a0:d4:99:40:28:9b:28:74:20:9c:
62:bc:b4:da:57:39:5b:6f:ae:36:e4:fb:22:7a:0c:
e6:dc:30:71:57:8a:e7:54:98:1f:e3:f6:8f:c0:76:
27:d5:d2:8b:8f:2f:a2:a6:ed:85:51:56:88:a7:28:
a0:da:e4:fd:9b:8c:46:ca:5e:de:e2:69:33:df:8d:
b0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
141.243.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8b:db:d6:bc:0a:ba:bd:70:3e:b7:72:d4:24:96:ae:02:18:58:
dd:0c:4f:b5:e5:48:28:aa:fb:5e:30:08:e8:f7:96:06:cc:6a:
d0:06:b5:23:c1:6f:9b:49:4a:bf:03:2e:df:2a:ff:92:4e:ec:
73:79:d4:20:4e:23:1d:f7:4b:84:6d:97:e4:1f:be:c4:0f:a4:
ee:18:54:e3:9f:ac:bc:a5:3e:28:38:51:c2:a4:b5:b9:19:a3:
ae:98:7c:3d:3f:10:05:6b:03:2c:d0:2f:52:98:f8:33:51:b0:
90:aa:44:09:d9:34:ab:39:26:a6:f1:d8:a5:67:72:39:4c:eb:
96:b1:58:e4:d2:12:7e:e2:25:0b:a7:e2:f2:1e:7a:33:0b:3e:
20:06:a7:f3:e8:4e:e4:d1:7e:31:2a:24:27:04:df:8f:96:3e:
41:c7:db:c2:06:91:23:13:4f:8f:98:48:22:ef:8d:8d:4d:0f:
da:5d:6a:2e:9e:b9:ba:a6:6a:b6:cb:71:2f:8e:7c:d5:d8:72:
00:56:5c:89:a4:d1:28:b8:01:8f:96:ee:6d:a8:f4:35:89:55:
c8:ce:58:f7:99:21:a7:4c:f5:65:2f:3c:5c:dc:9e:41:bd:24:
de:8d:4c:e6:c1:5c:63:2b:9c:54:c9:b3:05:de:c4:0d:dc:d2:
63:a2:5b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org