Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ujlGsBPVR9Dpy6S7EbWKyQAcV-M.cer
File: ujlGsBPVR9Dpy6S7EbWKyQAcV-M.cer (raw, json)
Hash identifier: 2jbxVRJ0lWAjrqhYF3jhzR4RXmd+hPlkf0iLrVnLfL4=
Subject key identifier: BA:39:46:B0:13:D5:47:D0:E9:CB:A4:BB:11:B5:8A:C9:00:1C:57:E3
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 471F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/ujlGsBPVR9Dpy6S7EbWKyQAcV-M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 11 Jul 2024 23:30:05 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 212.32.30.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 14:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18207 (0x471f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jul 11 23:30:05 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91F731E/serialNumber=BA3946B013D547D0E9CBA4BB11B58AC9001C57E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:39:9a:d3:79:09:d5:0b:37:36:94:98:96:
10:14:2d:d4:14:05:49:db:70:02:8f:52:81:08:50:
a8:6b:e3:69:3c:85:f1:33:06:ce:d1:4f:bb:80:76:
27:6d:a8:f0:d5:00:0b:f5:b1:94:5f:11:1a:44:e8:
e7:c3:31:30:c9:e0:41:25:d0:82:6d:59:4e:ff:4c:
40:a9:66:d9:29:2c:5d:75:7b:41:78:c4:aa:19:5a:
f8:2c:bc:c5:e0:6a:1b:25:8f:d9:7a:3b:81:5f:d6:
8f:c8:04:7e:70:26:11:81:d8:38:73:5f:72:a0:46:
35:45:8a:55:2d:8d:8d:32:db:35:6a:7c:20:89:26:
4e:58:3f:e3:63:3e:f8:18:72:8c:85:3a:b4:4b:c6:
75:35:7a:5f:61:f8:03:38:8f:16:9e:9d:eb:ca:d7:
00:ce:e0:84:2d:38:46:89:18:86:e0:ef:70:6c:31:
9d:cf:8c:84:a8:fa:71:f7:a3:26:a1:33:ef:3c:5a:
6d:bc:20:7c:1a:ec:9b:2e:f8:85:5f:b6:79:d7:bd:
cf:00:9c:b4:db:00:06:9b:64:1f:04:6b:d5:ed:e0:
66:8c:cc:d2:9e:78:3d:48:92:81:d7:31:13:c5:4f:
e7:af:bc:8d:11:eb:e1:1a:07:35:0f:8f:ba:ba:40:
00:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:39:46:B0:13:D5:47:D0:E9:CB:A4:BB:11:B5:8A:C9:00:1C:57:E3
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F731E/566F347CF2A111EEA8A44F1AC4F9AE02/ujlGsBPVR9Dpy6S7EbWKyQAcV-M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
212.32.30.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:d2:99:bb:98:52:80:28:04:cb:b1:4a:60:a5:fe:54:77:55:
56:54:e2:56:5b:7c:6e:b0:13:2b:b6:f5:90:90:5f:90:65:56:
ce:00:e3:12:ab:a6:96:11:5a:4f:a9:a9:31:1c:ce:a2:14:d5:
ce:8e:c5:d1:89:c7:5f:5b:4c:00:dc:38:8a:bc:29:eb:d7:6c:
0f:86:37:d7:b7:3e:51:0a:4d:af:6b:57:f0:2b:41:b0:74:e7:
0f:d7:17:55:85:93:54:18:a6:a1:dc:16:61:67:b4:13:fa:4b:
c3:4f:09:6f:38:be:e8:47:b7:78:d4:72:0e:33:e4:d3:df:eb:
83:14:d3:8b:04:03:43:ee:26:3b:48:df:af:8b:19:4f:84:61:
c4:11:b8:ab:b3:1c:a0:b8:bb:68:78:4b:5b:1e:1a:50:b5:1a:
04:b7:e1:c2:94:50:f6:1d:b0:85:3c:c0:a4:10:1c:e7:63:15:
ef:2e:b6:03:77:d5:2b:a6:3c:93:88:8e:33:1b:d3:d4:14:68:
55:60:5f:59:ab:67:ed:ee:43:23:19:de:8f:48:73:15:82:2f:
40:37:c5:44:81:69:95:e7:9a:36:09:4f:f8:0a:28:a8:59:32:
35:72:28:1e:90:f6:9f:3d:16:65:73:a4:7a:97:16:9f:65:cb:
30:c6:4a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 15:54:07 2024 by rpki-client on console-ams.rpki-client.org