Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer
File: du8ZOVeobWTTw83rngdGdG70KQo.cer (raw, json)
Hash identifier: C+/DlaEq4PRyHJD8T5rCiiyh6Baftm2VScUNB9/3Jxg=
Subject key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 51BA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Feb 2024 21:31:07 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 138.99.216.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 18:05:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20922 (0x51ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 6 21:31:07 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:54:d3:b9:0e:33:45:dc:34:4b:7f:e0:08:
4b:1c:79:63:08:82:80:d9:70:aa:69:d7:5e:fe:5e:
1e:39:b8:a0:a5:14:d2:70:5b:73:31:59:da:00:16:
36:86:99:a1:e2:96:b2:54:ca:d5:98:e6:c9:f0:26:
ad:f6:4d:df:f8:07:3f:0d:06:63:aa:d7:06:b1:5f:
4e:d2:2a:44:98:d8:48:72:00:e6:87:41:75:e2:ef:
e4:7f:2e:6e:87:39:98:93:a7:5e:5c:f0:a1:d1:31:
9d:4e:43:79:fd:e3:06:9b:23:8d:62:07:3b:e9:05:
1c:86:03:55:e9:d7:0e:67:3f:0a:d1:09:9d:ad:45:
0e:67:6c:0b:3d:e3:80:3c:49:68:b5:b8:0c:17:23:
b8:e4:52:c7:64:f5:95:95:2d:72:1a:ae:f9:47:88:
d0:0a:cf:50:b6:9c:bc:ad:d2:26:07:8f:c8:85:56:
af:10:8e:d4:f0:36:b6:59:31:b4:b4:94:61:25:08:
bb:f1:36:a2:bc:b1:c5:a2:3f:a5:0b:a0:78:70:e0:
15:d3:bb:22:69:64:35:44:c6:24:af:62:58:f1:0b:
b1:82:6a:e4:63:42:ad:0d:42:77:6d:f2:48:de:6f:
60:94:37:34:3c:c1:57:2b:2c:1c:2b:9d:c4:71:d0:
4b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
138.99.216.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:d9:91:21:26:bb:05:30:ad:80:16:d1:5e:8e:5f:19:0a:64:
42:37:73:95:11:73:80:36:25:3d:ce:c4:9b:91:8c:99:a1:5a:
7d:f1:b4:f8:01:a8:b5:0d:e6:18:0b:01:6f:f0:d5:24:14:5e:
97:63:97:85:a8:72:77:f4:82:3d:92:a3:35:c6:21:6e:1b:49:
70:d9:44:be:9e:a7:3c:81:63:37:2e:30:42:39:6e:70:76:9d:
ed:6c:de:d1:77:b6:62:21:67:54:ce:d0:cf:6a:1f:6d:50:2d:
60:b2:7a:96:f8:e2:c4:59:d3:6c:f9:72:f5:6e:dd:12:5c:e2:
70:40:d5:13:f5:66:4c:95:8e:d9:b8:1a:11:52:5a:8e:32:eb:
07:09:db:ce:68:b4:72:1b:23:b4:4b:b6:26:d8:e7:41:5c:a1:
4d:fa:8f:4d:56:41:56:08:6d:8d:90:c3:e1:b4:cf:3e:8c:cb:
37:4d:92:04:5b:99:e5:fb:70:c2:2c:b0:ca:e9:73:62:21:bd:
3c:59:73:4d:4a:91:36:b3:ad:31:f6:1f:18:4f:ed:4a:66:fe:
45:6b:f8:a4:dd:86:e4:a5:55:af:f0:7f:a2:ce:3c:a0:5d:40:
5f:ec:85:a8:31:48:80:a5:80:a4:0c:7e:e4:a2:a9:9c:2f:fb:
e1:76:52:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:34:23 2024 by rpki-client on console-fra.rpki-client.org