Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer
File: UgupTND7nnwUDfvAzFi5PPVMIvM.cer (raw, json)
Hash identifier: o2aLrp8dK0dtkGBzZNy1V9h7IXeJWFmYFDRMuTu9bdE=
Subject key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5AAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Sep 2024 18:37:54 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.26.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23212 (0x5aac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 6 18:37:54 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7a:2a:18:c3:c6:8a:4f:25:fd:39:e3:9e:24:
d8:cb:fd:41:05:32:ea:bf:ad:16:7e:c6:00:0d:dd:
b9:36:80:49:67:9f:1d:d8:39:82:16:cb:6f:f8:1d:
3b:e3:45:3a:06:87:99:4a:96:33:f4:29:13:fe:79:
0b:ff:c3:17:e6:91:96:64:e2:e9:78:9d:7c:64:f2:
56:8c:c7:9b:57:cb:8a:e5:cb:b1:cd:76:50:4c:9c:
5d:f5:ea:b9:06:95:d4:c1:ec:66:30:2c:5e:a5:05:
98:64:2f:66:33:6b:a5:91:de:35:71:15:7c:01:a7:
61:e0:56:53:ce:0c:bc:df:43:d3:b1:1e:66:49:8b:
09:d3:92:01:9d:c1:f3:cd:5f:6b:38:2a:e9:c1:da:
6c:af:a1:f8:8a:68:97:bc:c1:f1:cb:b2:d9:ab:83:
36:bf:88:f5:fc:b5:60:ab:64:06:5e:85:89:c2:89:
51:5a:a7:a1:9e:30:d2:66:cd:ec:c6:7e:aa:d0:09:
52:e6:98:ce:7d:ed:d8:72:6f:e2:c6:0a:e3:a9:ad:
d1:cb:8b:5a:a5:b2:c5:38:b3:34:f1:0a:92:59:86:
45:55:8e:c1:28:a7:00:30:7e:8e:d0:f5:fe:b2:27:
3a:f4:a4:0f:f2:75:5d:d3:d6:75:d4:1d:9a:bd:2b:
a4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.26.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:f7:80:5b:e0:6b:fd:d1:bf:1e:a4:3d:80:83:ad:98:f5:3f:
1d:3f:b7:6e:d6:66:e4:6d:46:48:01:17:2b:ea:6a:6d:e1:3f:
5e:72:8f:46:e8:b8:30:50:a2:91:cb:95:2b:90:a5:b4:27:4b:
d9:86:9f:63:aa:08:ec:36:b3:31:65:1b:91:0b:0e:08:3f:6f:
1c:38:21:0f:aa:f9:87:3a:e7:a7:f8:22:70:7f:8d:ea:d3:02:
76:80:6c:2c:f2:48:dc:47:ca:3c:df:3d:49:91:dd:bb:c6:75:
91:72:27:70:4e:84:0e:eb:df:7e:0e:e7:68:4d:0b:fc:0e:29:
07:67:0a:e7:55:e6:f0:db:a3:45:f4:82:8c:84:53:e6:67:ca:
f3:c4:31:e0:88:b0:fd:f7:4c:a5:50:14:a3:e5:e6:18:f7:05:
3c:80:95:1a:55:73:19:35:4b:03:1b:e2:7f:9a:0f:8a:00:47:
24:b9:b1:7a:40:f6:22:89:5d:5e:00:a2:aa:03:6e:c8:43:26:
41:6d:1c:5b:18:81:9b:3f:a5:81:ab:fe:fa:a2:3e:85:33:28:
d6:56:13:11:c6:dc:67:c0:fc:e3:18:f4:b5:cf:43:f7:3b:b1:
78:04:14:a5:ee:85:f3:d8:ed:8e:45:a6:cf:bf:8f:4f:82:78:
bc:15:29:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 20:55:01 2024 by rpki-client on console-ams.rpki-client.org