Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/voMTRZEKyCwYqIMcLYUK5bOOUA8.cer
File: voMTRZEKyCwYqIMcLYUK5bOOUA8.cer (raw, json)
Hash identifier: fQ/d4tzUhbeTUef1LbfFgn8MF4jfZTwNtxmdPez6s/Q=
Subject key identifier: BE:83:13:45:91:0A:C8:2C:18:A8:83:1C:2D:85:0A:E5:B3:8E:50:0F
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 462A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/voMTRZEKyCwYqIMcLYUK5bOOUA8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 05 May 2024 17:59:05 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 78.138.10.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17962 (0x462a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 5 17:59:05 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91B8C13/serialNumber=BE831345910AC82C18A8831C2D850AE5B38E500F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:95:8f:04:ae:7a:bb:b1:4f:83:d2:bd:3c:f7:
95:03:00:ac:7d:43:78:8f:72:32:f1:d4:1c:fb:4b:
2c:49:4a:94:e1:d3:16:54:52:3a:14:00:b6:47:4d:
95:52:55:ed:4a:52:46:94:52:6f:80:20:6e:95:3c:
ea:f3:c6:ae:55:f7:fe:b5:72:0c:bc:68:79:a2:fe:
76:77:34:9f:9e:32:2f:37:31:74:48:77:c5:1e:86:
22:d3:c3:3f:db:2d:14:41:01:34:f3:55:dc:5b:5b:
5d:56:43:ca:f6:ee:22:02:64:5f:b4:49:5c:dd:20:
36:6b:2c:7b:b8:c1:50:b5:0a:0f:61:76:87:d6:f4:
8e:bd:30:57:a7:fc:c3:1e:2f:49:10:4c:69:0f:fa:
83:ad:3a:84:b8:16:55:c6:81:69:42:b5:cd:94:3b:
75:13:dd:79:61:8b:8e:97:08:dd:db:63:f1:bb:f9:
72:46:90:11:9b:6d:c7:7a:ac:f8:76:e9:98:37:d2:
2e:92:d4:cc:41:dc:39:9b:1f:02:2f:fa:27:b8:17:
67:72:69:6f:48:75:5e:f0:fa:be:22:27:cf:6e:61:
c4:9c:72:e7:e8:e7:98:dd:65:9c:67:d7:71:4b:01:
dc:d7:9f:37:c6:2c:3d:6a:31:95:78:0f:cc:07:0f:
0a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:83:13:45:91:0A:C8:2C:18:A8:83:1C:2D:85:0A:E5:B3:8E:50:0F
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/voMTRZEKyCwYqIMcLYUK5bOOUA8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
78.138.10.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:fd:68:1d:4e:ce:50:cd:25:f2:fd:20:de:e9:b7:c5:94:61:
be:b4:d4:1e:8b:05:b2:a6:40:98:6c:ef:d5:a9:98:07:5b:1c:
33:b6:f6:7b:ec:ae:52:d9:73:c6:55:49:9e:7a:f6:0a:5e:e8:
99:fc:cc:da:28:b1:f9:16:aa:66:fd:38:b7:2e:ba:6d:c7:42:
9b:5d:64:f3:3c:4f:82:16:ab:42:15:12:68:c2:eb:a4:80:95:
0e:04:10:49:50:f3:38:a7:e2:38:9b:4f:15:0c:2e:f9:9b:b2:
af:0c:d8:9a:75:dd:41:29:75:a0:78:37:2d:c0:d9:10:b0:0c:
30:15:41:64:68:16:1e:47:80:4a:6f:47:1c:6a:15:e1:b8:c4:
8b:08:76:9e:a9:54:2a:b0:16:ef:27:ac:34:3b:b7:91:49:09:
74:43:26:bd:0b:20:0a:8a:66:73:02:f0:4c:63:f1:0b:cd:28:
11:7a:bd:d5:2d:cf:c7:bf:7c:5f:9d:4b:d7:b8:8d:2f:12:4c:
21:47:cf:43:b6:31:e8:2c:21:b6:87:4c:00:be:dc:46:69:fc:
14:86:fb:bf:59:06:be:f3:e5:e8:1d:fe:ab:d4:11:e5:a3:74:
85:7c:bd:cb:29:51:f2:95:c4:7b:72:8c:4e:37:4b:9a:62:58:
6d:61:74:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org