Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer
File: uko-NN2arQAtSR0TxciM5c3Jk6o.cer (raw, json)
Hash identifier: rtNNULoDH7YaEwVeZxKk3o7E5QlQZR2SS1QmEXTKRPs=
Subject key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4595
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Mar 2024 14:30:49 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 188.125.176.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 14:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17813 (0x4595)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Mar 26 14:30:49 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b8:6d:b0:92:23:d5:43:3a:f7:c8:51:f5:47:
ea:c1:dd:dc:f3:48:e6:9d:2f:68:04:67:cf:6b:c1:
47:63:f7:e0:a6:98:35:3a:78:b0:d1:c6:da:a4:d4:
06:85:3d:64:42:73:54:58:91:e1:09:1f:95:62:fb:
18:36:d2:be:04:41:1a:e5:c4:46:65:77:e7:b5:3a:
cc:06:84:9d:28:8a:2d:08:c4:28:17:f7:f0:52:9b:
e6:e2:7f:99:9a:86:1d:f8:c0:8f:af:1b:3d:3a:96:
ad:e9:e9:11:a9:5e:01:42:60:bb:7b:11:28:21:92:
3e:08:b6:78:dd:de:bf:e0:03:e1:99:95:c1:ae:f5:
9a:54:26:12:05:76:7f:16:70:50:6c:7c:aa:4d:bd:
7a:be:6e:d8:68:6e:bd:78:57:a6:31:e3:b5:a3:42:
e3:b8:1d:2d:4f:c2:00:eb:96:29:22:5b:64:bb:c0:
0a:13:ef:dc:0d:21:7d:10:2f:96:6b:3d:ac:15:c0:
07:8b:34:e0:c5:72:a4:0b:62:37:50:10:20:08:fc:
28:b4:84:4a:b0:95:44:d2:c1:b6:b8:a7:d4:1b:f0:
89:31:80:a8:0c:e6:5b:e7:76:e1:e9:66:82:7f:bb:
4f:bc:ce:72:23:c9:a8:95:70:88:17:77:32:68:fb:
9b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
188.125.176.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:76:14:d3:cb:a2:03:4c:b7:9f:5c:e5:a7:6c:7e:20:5d:4e:
d1:1e:2a:c6:f6:6c:e1:77:0b:6c:56:63:e4:0f:f4:8c:a6:74:
60:28:c5:d6:aa:72:08:3b:91:48:5d:d5:2f:0a:b0:98:7c:36:
b2:2a:9d:87:b5:02:4d:ca:9d:cc:47:e7:1e:fe:e0:4d:d5:97:
4c:34:94:80:9b:3e:08:9e:d8:4a:18:da:fb:17:8b:df:f4:4b:
7f:be:bf:a1:54:f2:28:d6:be:b0:55:fd:a2:4d:89:7c:c4:1d:
80:49:d0:52:8b:e6:c5:f8:53:43:bf:13:98:7e:87:4e:26:0a:
9b:92:5f:5c:7c:f3:e3:a7:92:6d:a8:65:70:64:ed:d0:85:5d:
91:5a:1d:41:2e:87:48:b3:64:42:b4:d3:12:e9:83:c0:ee:62:
d8:55:bf:2b:62:a3:d1:56:c5:11:0a:15:8d:ca:9b:e2:3e:af:
2c:75:36:cb:8c:b7:5c:e2:eb:4f:5c:c1:b3:86:ff:49:5a:91:
92:ce:a6:68:53:91:0d:b9:49:31:92:cc:d2:bc:01:71:c0:ef:
b3:3f:c9:7a:33:41:58:56:4e:a1:4e:4f:65:34:53:70:d9:64:
bf:14:89:70:b0:0e:00:49:d2:9f:c7:c0:5e:ed:23:78:ee:05:
3c:3f:fe:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 15:30:16 2024 by rpki-client on console-fra.rpki-client.org