Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer
File: uKIid-zGsQo9ICqjkMyn-7kqRuA.cer (raw, json)
Hash identifier: 4/ux9WznsRhS87mDOawLtn68CNoruGkl/juMujxB+Y8=
Subject key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 44DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 03:23:54 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 87.121.72.0/22
IP: 87.121.92.0/22
IP: 87.121.248.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17630 (0x44de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Feb 1 03:23:54 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e9:9e:6b:ab:a8:58:78:f1:a8:19:16:8b:7a:
6e:ec:1b:a4:39:13:cf:c0:b7:96:55:19:e0:1a:45:
80:9d:db:4f:04:25:41:18:f0:92:ea:79:06:de:c3:
59:21:c0:39:b7:c1:f9:75:97:16:d7:ef:9a:08:4c:
9b:8c:ed:0b:9d:fe:6f:ff:a6:9b:b2:66:12:07:be:
58:a3:79:1c:29:92:a3:66:2a:c8:2d:2e:b9:61:4e:
ec:59:68:58:2a:3f:9a:2f:8c:a7:ec:2a:6f:4c:1f:
b4:b1:62:94:a6:73:8c:cf:00:e6:9c:ab:d3:26:8d:
86:54:43:37:ec:36:1c:18:fc:5a:be:b6:0c:03:dd:
56:2b:4b:87:11:cf:3d:e5:0a:6a:0d:0d:00:c9:90:
da:3d:f6:6e:3f:7d:01:b5:59:20:d9:6d:27:5d:42:
69:2b:86:0c:f4:9e:c6:e2:25:cf:d6:8e:43:c7:7d:
ac:c1:13:74:cc:1a:25:77:f3:19:62:b8:d7:b1:19:
23:3b:77:5c:25:ff:77:58:b1:18:ed:f4:97:75:a7:
15:76:74:75:6c:24:ed:15:f1:ce:9d:f7:f6:09:b7:
96:1a:8e:8b:a0:d6:57:49:e8:1c:9a:a4:4b:e9:e2:
1c:62:09:40:06:85:f7:04:b7:d6:07:92:37:ab:11:
b9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
87.121.72.0/22
87.121.92.0/22
87.121.248.0/22
Signature Algorithm: sha256WithRSAEncryption
35:8c:b0:1f:0d:bb:5a:06:d8:1b:47:cb:04:22:18:37:d6:38:
68:97:a9:35:07:a7:4d:6d:62:20:dd:b3:a4:74:26:60:c7:db:
64:b5:1f:a3:fd:46:6b:49:47:8e:e6:f8:71:55:dc:40:90:a5:
8d:f6:17:14:64:ec:aa:93:97:66:59:0a:c7:37:dc:7c:d0:fb:
86:dc:02:7f:90:7d:fe:4c:00:8c:ea:35:4e:41:d1:2e:ca:28:
93:ad:b4:56:fd:fc:e5:88:0c:48:bc:8e:01:07:92:e2:55:c2:
d5:22:c2:33:46:18:7d:ca:1e:df:2e:8d:d9:45:9a:0d:a4:c3:
5b:e5:a2:d6:a5:8a:f8:c7:19:34:25:5e:80:c9:9c:4f:31:e0:
77:4f:7b:79:00:93:6d:77:b0:e7:12:5a:c9:7c:8d:12:25:92:
c7:31:3f:ff:21:3b:08:1b:ae:0c:98:2a:7b:61:84:78:81:23:
7d:a8:ad:a6:f2:74:36:b8:93:60:e8:7d:ae:dd:80:7a:96:7b:
44:69:08:b8:3d:2d:cb:6f:7f:dd:d6:a6:e8:33:8a:65:4d:73:
59:00:ac:97:02:c2:43:df:db:69:ef:95:19:be:57:5f:23:53:
30:a5:c3:97:0d:a6:60:73:88:d4:2e:8a:8e:2f:72:f6:88:3a:
07:f5:4d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:41 2024 by rpki-client on console-ams.rpki-client.org