Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
File: 4OynvFsloMo3TZqDzEz5DdbPIgk.cer (raw, json)
Hash identifier: 6uXude7y2u1KgQmcjmNqNtP9Onpyok04Z9MaxDLmAc8=
Subject key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5134
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 06:21:07 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 192.150.130.0 -- 192.150.139.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20788 (0x5134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 29 06:21:07 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e7:d3:6b:6e:d1:b3:f9:6b:17:39:a0:aa:c8:
49:42:dd:d2:09:23:ac:ab:0c:d8:d8:21:be:cd:fc:
06:c9:39:31:e1:a3:a2:9e:6e:cc:f7:ce:85:22:73:
d8:f8:cc:9b:b9:6d:b7:cf:5c:45:0b:2b:78:74:8a:
6b:9a:12:a2:45:ae:68:57:79:4d:f3:ab:5c:70:8a:
88:35:e5:b7:02:15:76:52:b0:c9:4b:14:e7:37:67:
04:d6:23:a0:a8:05:4f:c7:c9:b6:1c:e4:bc:94:ad:
5c:8f:e0:ca:6a:10:59:89:c3:b9:eb:9e:ae:28:b4:
8d:2a:86:ee:cb:4a:e6:75:90:e8:14:63:e4:0e:a8:
a9:3f:66:fb:b8:ca:71:c3:e1:5c:dc:07:89:f2:9c:
54:cb:9a:b5:fc:03:ea:b9:29:2f:fb:14:6e:74:1f:
54:b9:2a:41:cc:43:a4:e7:5e:0c:6f:d7:51:6b:24:
71:75:44:96:2a:d1:97:92:58:dd:1b:79:00:5e:59:
f7:ed:d3:59:1e:f9:37:2d:d1:c7:05:b8:e2:b6:33:
3d:07:1c:bf:69:cf:9f:12:fa:4a:d4:55:16:ab:d2:
3a:a2:f6:af:62:d6:ad:99:6c:00:7a:9a:75:f0:41:
86:5d:b0:86:50:aa:ce:a6:60:e6:38:d9:e1:b8:30:
84:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.150.130.0-192.150.139.255
Signature Algorithm: sha256WithRSAEncryption
8d:bc:f7:9a:c2:be:ed:4e:0f:d5:79:fa:ee:bc:fb:bb:47:42:
75:b7:96:27:0d:01:7e:5a:3a:28:fc:f6:aa:1c:39:24:de:ac:
86:0c:fd:ef:5a:f1:0d:d9:bf:0a:ed:c9:b6:6e:f1:e4:9f:30:
93:04:00:a8:3b:d4:4f:88:a8:ea:85:ee:d8:27:bd:63:b0:82:
21:cc:15:ca:2a:6a:fe:8d:f3:44:ea:6f:ed:fd:0b:8a:23:7a:
24:42:38:92:a4:e6:dd:09:c1:8c:71:2b:60:7e:4f:a3:62:f3:
c4:d6:3f:0f:c2:07:e6:bd:d8:6b:a1:a7:ee:71:68:0a:2d:f5:
00:5b:ad:14:b9:36:9a:04:ae:76:75:d4:08:7f:5f:d0:b9:c5:
69:64:54:32:15:f3:23:24:a5:b7:f6:51:0a:ab:43:6b:a1:de:
a5:7d:c5:f5:d1:48:49:5c:6a:2f:29:30:d9:db:fe:09:4c:ca:
f6:c5:b4:9d:23:52:f3:78:bf:e4:dc:7b:db:12:b8:a5:5c:bf:
f4:cc:f6:2b:be:2f:ad:bc:cf:88:63:30:08:35:82:b4:97:95:
27:b6:c8:c8:68:84:36:c1:17:1d:44:6d:6b:47:87:9c:41:e9:
2e:c3:47:8b:2f:11:3d:63:24:6b:68:65:c2:2a:f2:2f:44:e6:
94:92:c2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org