Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer
File: DFpUKh6bP7XI5JaG6-vPwFDM5KU.cer (raw, json)
Hash identifier: Dc9ysPmZjocE0N4QsY3M4xXzUGrZwaHoLPxsuEjv7cs=
Subject key identifier: 0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 570B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Jun 2024 16:37:52 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 168.70.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22283 (0x570b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 20 16:37:52 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A918495F/serialNumber=0C5A542A1E9B3FB5C8E49686EBEBCFC050CCE4A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b1:43:af:54:39:e4:a9:e5:a4:64:03:ee:4c:
c2:d5:09:6a:23:3f:83:97:7a:31:4e:d9:49:01:bb:
bd:c7:22:a7:b0:02:e2:22:55:97:d1:96:5a:11:4c:
34:d3:4a:0c:4f:3b:7d:81:7c:57:2b:3c:c6:39:8d:
f2:0e:74:3f:b4:6c:53:70:83:02:b6:9d:63:a3:05:
54:75:82:09:33:6c:d5:ac:bf:8d:f8:b8:40:10:44:
d0:5c:c4:16:7c:bc:12:1f:9c:08:06:32:a7:00:09:
40:47:de:80:a8:37:26:29:dc:8c:d3:09:61:87:e4:
67:82:cb:6d:67:ee:e9:49:df:30:8d:2b:ee:e3:21:
e7:67:fb:ce:39:56:75:71:aa:af:fd:9c:8b:58:6c:
20:4f:1f:c7:ee:77:a6:93:68:22:56:ea:bf:8e:4b:
ae:ee:f3:27:31:fe:a8:d5:80:68:6a:a1:4a:66:a0:
26:2b:89:8c:a3:cd:b9:28:b6:47:8c:ff:55:25:f4:
2f:57:bc:da:59:55:2b:a9:aa:0e:f9:9d:68:d7:99:
e4:ef:ed:49:fd:55:10:d5:79:03:2e:7c:fb:0e:df:
cf:f8:84:08:11:cd:d1:09:14:2e:56:85:d3:67:cf:
62:b4:c5:60:29:57:f8:da:ab:6c:1a:84:31:d4:96:
de:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:5A:54:2A:1E:9B:3F:B5:C8:E4:96:86:EB:EB:CF:C0:50:CC:E4:A5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918495F/78D5D896DFEC11E7A27A2213C4F9AE02/DFpUKh6bP7XI5JaG6-vPwFDM5KU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
16:f6:47:b8:2f:91:6c:6f:62:3a:16:d8:24:15:34:b9:f9:60:
70:8a:8e:74:da:fa:36:1e:8d:de:66:26:34:83:88:99:8d:32:
29:2c:dc:14:03:11:fd:6c:3d:40:1e:fd:c2:2c:70:ae:95:97:
ad:1b:0c:34:9f:ba:85:f2:9e:c7:ca:b1:37:64:c9:30:d8:00:
dd:a6:f5:18:c9:2e:57:f2:2d:94:78:bc:7d:a3:8b:7b:77:ec:
e6:77:29:57:ca:10:48:9a:c8:b8:65:1f:2c:92:db:96:ae:46:
dd:60:06:79:dc:c4:55:1f:1b:48:73:19:57:c4:38:46:73:8d:
c3:9f:45:4f:38:db:8e:6d:d5:0c:a6:ce:d6:93:12:e0:73:30:
c1:98:6f:8e:91:07:1b:8a:ea:7d:d7:eb:0d:d4:ca:dd:1e:a1:
e5:af:85:c6:3c:40:7e:9f:89:c5:c5:36:20:97:90:4d:da:5c:
b2:3e:a8:66:ab:9a:9c:d0:4f:b9:47:3b:0c:d4:03:a4:9f:b4:
8b:02:ac:ad:21:ce:52:3e:3b:d9:d7:3f:87:b8:72:d0:fd:f2:
11:9c:be:43:bf:f7:ea:a0:14:ba:d7:54:c5:2a:19:54:38:bb:
ca:4a:c3:c7:36:64:98:6a:5e:ef:91:0e:d0:0e:f5:a4:a9:45:
e9:6f:45:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org