Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ujlGsBPVR9Dpy6S7EbWKyQAcV-M.cer
File: ujlGsBPVR9Dpy6S7EbWKyQAcV-M.cer (raw, json)
Hash identifier: 4OmT+SXFNO/oLZCKoW7whLaa2CE0v7+EdyZoNwRG5Yw=
Subject key identifier: BA:39:46:B0:13:D5:47:D0:E9:CB:A4:BB:11:B5:8A:C9:00:1C:57:E3
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 45B5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/ujlGsBPVR9Dpy6S7EbWKyQAcV-M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Apr 2024 16:35:31 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 212.32.30.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 17:59:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17845 (0x45b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 4 16:35:31 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91F731E/serialNumber=BA3946B013D547D0E9CBA4BB11B58AC9001C57E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:39:9a:d3:79:09:d5:0b:37:36:94:98:96:
10:14:2d:d4:14:05:49:db:70:02:8f:52:81:08:50:
a8:6b:e3:69:3c:85:f1:33:06:ce:d1:4f:bb:80:76:
27:6d:a8:f0:d5:00:0b:f5:b1:94:5f:11:1a:44:e8:
e7:c3:31:30:c9:e0:41:25:d0:82:6d:59:4e:ff:4c:
40:a9:66:d9:29:2c:5d:75:7b:41:78:c4:aa:19:5a:
f8:2c:bc:c5:e0:6a:1b:25:8f:d9:7a:3b:81:5f:d6:
8f:c8:04:7e:70:26:11:81:d8:38:73:5f:72:a0:46:
35:45:8a:55:2d:8d:8d:32:db:35:6a:7c:20:89:26:
4e:58:3f:e3:63:3e:f8:18:72:8c:85:3a:b4:4b:c6:
75:35:7a:5f:61:f8:03:38:8f:16:9e:9d:eb:ca:d7:
00:ce:e0:84:2d:38:46:89:18:86:e0:ef:70:6c:31:
9d:cf:8c:84:a8:fa:71:f7:a3:26:a1:33:ef:3c:5a:
6d:bc:20:7c:1a:ec:9b:2e:f8:85:5f:b6:79:d7:bd:
cf:00:9c:b4:db:00:06:9b:64:1f:04:6b:d5:ed:e0:
66:8c:cc:d2:9e:78:3d:48:92:81:d7:31:13:c5:4f:
e7:af:bc:8d:11:eb:e1:1a:07:35:0f:8f:ba:ba:40:
00:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:39:46:B0:13:D5:47:D0:E9:CB:A4:BB:11:B5:8A:C9:00:1C:57:E3
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/ujlGsBPVR9Dpy6S7EbWKyQAcV-M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
212.32.30.0/23
Signature Algorithm: sha256WithRSAEncryption
37:85:81:be:e7:f4:59:3b:73:5c:a5:b9:83:75:d2:bb:8e:90:
fd:fb:21:d0:f0:16:4d:7f:cc:f4:e1:1a:3c:96:a1:02:b2:37:
fc:72:fe:d7:cd:b8:69:1e:51:88:72:b0:7a:87:90:56:c7:4c:
30:1f:9f:7b:b4:cb:50:07:98:d2:5f:92:e6:41:30:ec:d3:67:
79:57:1f:f1:9a:73:98:8f:0c:5c:59:43:78:ef:f6:ab:96:2d:
34:68:25:1f:d4:0a:7a:64:79:15:fc:de:c9:a6:31:e6:cb:dc:
68:ed:84:e2:15:ea:28:23:e5:cf:ab:7d:3c:b3:d9:fb:d4:85:
cf:9a:0b:e3:44:04:b6:22:4f:6f:89:89:fb:8b:01:88:0c:c6:
19:59:e1:28:2a:6b:cd:79:82:1b:71:11:81:d9:a3:36:31:dc:
ec:d3:5b:de:0f:7e:e3:74:db:26:25:af:db:ac:93:f6:b2:8a:
2d:a2:87:b1:ae:89:85:22:98:65:70:7f:a6:ac:90:e9:47:8c:
16:ea:98:1f:30:ea:83:8e:1d:89:51:8b:ec:e9:78:79:46:5e:
cd:63:10:d4:1e:fd:80:ee:bd:29:28:dd:26:38:d6:f0:c1:d5:
65:81:f2:96:28:8d:23:d6:e1:a9:08:a6:c5:1d:4d:14:31:0f:
31:d9:e4:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:08:11 2024 by rpki-client on console-ams.rpki-client.org