Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer
File: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (raw, json)
Hash identifier: I57g7UURifl1rN5HCmANeVZX/RZ1zm10FgQBzo4Ieak=
Subject key identifier: C8:C0:FB:87:04:74:C3:E8:4C:AB:83:59:7C:46:A8:62:C4:7F:88:82
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 3E5A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft
caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
Certificate not before: Thu 29 Jun 2023 04:05:11 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 154.8.48.0/20
IP: 154.33.0.0 -- 154.34.255.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 14:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15962 (0x3e5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jun 29 04:05:11 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91A73810000/serialNumber=C8C0FB870474C3E84CAB83597C46A862C47F8882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:c5:dd:78:66:9d:4f:89:58:f8:4a:3b:0d:
e4:d7:18:ae:d7:30:be:76:45:3e:e4:a7:24:27:55:
65:31:67:03:3f:d0:64:92:e4:e6:f5:85:15:ea:62:
47:b4:9b:85:6a:99:d6:e8:75:b7:83:4b:3f:e1:da:
7d:54:3f:3e:a5:1f:0d:8d:92:e7:a8:3f:e6:e5:74:
8f:7c:4b:2c:d9:62:dd:b0:f8:d0:5a:75:e2:b5:4a:
a5:df:23:56:39:7b:e8:c1:77:3a:dc:69:d2:ca:ac:
f1:23:02:56:1c:88:53:60:2c:33:77:e2:e9:c1:55:
50:bb:35:a3:28:04:ff:d0:2c:50:60:87:3e:19:22:
ed:bc:5a:51:dd:2a:ab:8c:c6:6f:1f:8a:86:5f:55:
1d:18:a6:de:20:7f:f0:78:9e:22:99:b2:c1:c0:04:
6f:be:c4:99:52:1d:8d:17:1b:16:3b:52:a1:62:c5:
3a:a5:96:6d:26:5c:75:1b:b9:61:6a:7b:52:d6:1b:
d2:51:52:b1:cd:97:a7:1e:6f:be:83:f1:d0:29:42:
60:96:38:69:12:59:8e:2e:29:c6:96:f3:47:ff:37:
95:56:3c:03:22:15:d9:5d:22:1b:3e:09:df:7e:57:
6c:d6:8a:0c:ba:f8:ac:2c:15:48:8c:b9:55:ee:de:
43:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C0:FB:87:04:74:C3:E8:4C:AB:83:59:7C:46:A8:62:C4:7F:88:82
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/
RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.8.48.0/20
154.33.0.0-154.34.255.255
Signature Algorithm: sha256WithRSAEncryption
63:34:b4:4c:84:da:2e:e2:09:e3:af:60:4c:0a:6b:8e:67:40:
23:64:15:c4:9b:15:23:86:40:9f:ff:54:12:b4:bb:fd:13:ed:
fc:ce:9c:01:af:21:a1:78:79:cf:68:a9:1c:6e:33:5f:d7:6c:
6a:e3:e0:d1:f1:47:32:11:1b:08:bc:36:5b:e5:c1:42:c1:51:
8a:2f:b9:43:8d:b9:9a:c2:a9:3c:e7:6c:aa:86:7e:1e:fb:32:
94:6c:b6:1e:ad:12:80:f6:56:9c:02:c1:85:51:2d:1d:bf:fb:
81:88:91:70:78:a5:12:37:ed:4d:63:4d:87:5b:eb:9e:e8:17:
08:fb:b1:84:27:c9:9b:f1:15:73:7c:3f:da:88:91:95:29:2c:
68:36:b0:a3:73:57:cc:f8:91:5c:8e:54:92:4f:9c:17:ed:89:
13:b2:2d:30:25:01:84:6e:f3:b2:da:a9:4d:b7:9e:de:70:12:
4d:8b:d9:27:4a:2d:c4:08:81:ea:06:47:ca:0e:e7:b1:dc:bc:
16:bf:d9:82:00:c4:20:90:c2:01:f0:ab:ac:45:c4:b7:cd:d7:
1e:04:1c:da:ce:3e:b8:1a:cc:9d:9a:f1:89:ad:5a:97:9c:1a:
6c:f8:e4:03:39:9c:b6:89:2c:e6:4b:a1:04:2b:7e:da:c1:be:
b1:07:53:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 16:30:05 2024 by rpki-client on console-fra.rpki-client.org