Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer
File: u9Lp2RPGRcigUZJHTP-olruaTqY.cer (raw, json)
Hash identifier: gFl2fyYxhhaJgLWCc9Vx6xGUct4nHGCoYjDbec67LbE=
Subject key identifier: BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 438F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Nov 2023 12:23:18 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 141.243.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 20:58:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17295 (0x438f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Nov 6 12:23:18 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A9111B00/serialNumber=BBD2E9D913C645C8A05192474CFFA896BB9A4EA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:2d:31:91:33:be:43:cf:02:9f:ba:e7:70:
cd:ec:22:8b:9e:3d:58:a1:e4:10:10:2e:7d:85:ca:
3c:bc:dd:f2:93:ab:ff:f4:c1:fe:59:51:6a:9c:5e:
db:83:c2:43:3a:e6:a0:cc:70:11:9f:18:3f:52:e2:
d8:db:d8:1d:07:03:45:7b:8d:b0:41:1d:6d:1c:43:
56:aa:2a:34:01:6f:69:70:1a:d0:c8:95:35:68:71:
c0:af:d3:fe:ac:70:40:2a:9e:16:de:e8:f2:2e:c3:
87:b3:3a:a3:72:6c:b5:a4:fa:ff:e8:dc:53:9a:b6:
25:bf:82:95:54:4a:41:45:83:b1:92:fe:a5:db:22:
9e:14:11:67:e6:5e:9f:0e:78:c4:b1:ea:21:59:04:
9d:79:2f:47:a0:a2:bf:d9:db:05:2e:02:69:c3:3e:
94:ee:6b:4e:75:48:42:cc:8a:63:7f:93:81:9a:28:
35:46:f5:b4:81:a0:d4:99:40:28:9b:28:74:20:9c:
62:bc:b4:da:57:39:5b:6f:ae:36:e4:fb:22:7a:0c:
e6:dc:30:71:57:8a:e7:54:98:1f:e3:f6:8f:c0:76:
27:d5:d2:8b:8f:2f:a2:a6:ed:85:51:56:88:a7:28:
a0:da:e4:fd:9b:8c:46:ca:5e:de:e2:69:33:df:8d:
b0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
141.243.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c3:de:b6:78:a0:e8:0d:c6:93:3b:d5:1b:25:49:66:82:03:c9:
f8:6c:ec:7b:ee:7f:f0:59:da:55:59:5f:7b:3a:44:58:e9:77:
48:1e:3f:35:e8:32:e9:b3:1f:66:9c:3b:55:5a:c5:2c:c6:e8:
03:0d:bc:3a:f5:33:f1:fe:d7:b4:0c:62:56:ea:ac:18:e0:51:
a4:d2:bd:86:c0:1b:53:6e:42:ae:17:49:fd:6c:51:82:f1:b8:
3d:cc:7e:a4:8f:cd:7c:c4:9a:24:b1:dc:7b:3d:c6:4d:ad:10:
d5:f4:12:06:09:0d:fb:67:60:08:7c:75:1c:2b:68:1e:93:81:
ec:00:92:dc:3a:4f:89:90:5f:5e:35:8b:90:f3:c9:c2:4b:84:
04:c4:73:81:64:ae:c7:9e:7b:4f:20:b8:1f:a1:c5:29:75:6a:
5a:ab:81:c6:de:37:55:7b:0c:2a:36:73:fd:db:1c:63:2a:17:
9e:e6:59:6e:f7:fe:35:13:18:01:39:c8:99:ae:53:95:8b:b3:
e5:4d:9e:e6:13:8d:00:33:1a:e1:bf:0e:79:a2:30:f5:1e:b8:
81:16:de:10:7f:af:18:0f:b7:fa:51:e4:4e:ec:7a:0e:62:d3:
64:2b:b9:1c:5f:86:42:28:a6:22:fc:1f:75:75:cc:15:9c:81:
39:34:c0:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:04:22 2024 by rpki-client on console-fra.rpki-client.org