Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer
File: 0S_1veXU0upxiMsALH_wFtyZTXI.cer (raw, json)
Hash identifier: AyMP37nwXZnU97Yc4zFoEExaDglg03QozNgAVftbxOw=
Subject key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 508A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 15 Jan 2024 20:19:41 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 152.101.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20618 (0x508a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 15 20:19:41 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7c:4e:3f:9c:3b:64:c2:21:b8:5f:fd:06:9b:
8b:0d:f0:1a:d3:00:cf:cd:5b:ee:3f:b9:f5:6d:ec:
8f:cf:14:9f:b7:18:ea:a9:6f:60:a2:6e:27:4a:b6:
03:e0:ac:8e:b6:ce:9d:cc:62:bf:b3:34:77:e7:a0:
49:cb:fd:bf:05:60:bd:16:a8:45:91:dd:e1:b9:7f:
c2:85:ba:03:be:02:d6:40:36:09:f5:ce:d2:48:fa:
c2:ce:f0:9c:6d:96:90:f3:02:0e:10:62:15:66:ea:
fb:d9:7f:6d:c8:7e:42:ca:9e:b8:c6:60:ad:03:25:
50:14:02:1c:b0:7a:0c:ff:e5:84:73:61:91:a6:cc:
84:60:4b:af:49:40:25:33:00:42:d2:76:15:9b:21:
ea:86:ce:81:00:de:b4:8b:be:b2:e1:ca:f7:44:3e:
32:39:88:bc:d3:b8:04:2a:0e:3a:15:9c:4e:a5:eb:
23:10:3c:09:be:44:b4:6a:a4:e3:c3:24:db:ae:d6:
76:6e:bc:fe:95:78:5a:fb:0f:37:ad:10:39:1c:df:
3d:5c:f9:89:8d:07:ad:60:7d:f5:6d:4d:7c:28:98:
b5:43:06:fc:3c:ab:ea:3d:4a:96:ff:6e:d5:af:6e:
65:f8:de:d4:2e:f4:eb:b5:6e:68:fe:89:22:db:9d:
1c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
152.101.0.0/16
Signature Algorithm: sha256WithRSAEncryption
67:6a:3e:4e:85:19:54:31:f5:fb:62:79:53:c1:96:63:37:87:
51:2a:93:5e:e2:13:a0:83:4d:f1:27:23:d9:6d:fd:0b:9d:b2:
9f:69:81:2f:af:cc:e9:2d:49:11:74:aa:10:ac:06:b8:8c:ba:
14:9e:a6:e3:53:3e:b7:25:ff:1e:d1:b7:51:3f:b9:f5:ea:13:
eb:7e:f5:70:1a:05:6d:0a:ba:2d:28:5d:96:5f:6d:99:e8:4e:
5c:14:b1:2d:29:1a:a1:6e:c6:56:44:a5:21:25:be:0d:cf:70:
dc:02:64:34:cc:2f:7c:8e:74:f5:c8:56:ab:ac:46:d9:7d:56:
d2:81:20:3d:d7:1c:38:ed:9f:92:e5:00:04:8a:c4:9d:f6:b6:
5d:7b:64:7a:d7:02:08:08:30:5a:e8:09:a4:f8:68:7e:36:a0:
f1:60:48:0d:d1:a6:99:20:2d:c3:21:aa:45:22:b9:7d:eb:df:
40:e3:2a:77:e4:8c:8c:1b:ed:30:24:96:7f:6d:9f:a5:8c:db:
1e:b8:ee:a5:cf:a7:6d:ec:1d:2b:09:37:6e:b4:35:49:13:0b:
1e:49:e6:f7:56:08:3d:0b:29:be:59:a0:40:8c:6d:fa:c1:e8:
b4:f3:e7:9e:3b:1c:19:01:5c:8d:56:12:e5:2a:4b:78:2d:5b:
af:ba:8d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:10 2024 by rpki-client on console-ams.rpki-client.org