Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer
File: 0S_1veXU0upxiMsALH_wFtyZTXI.cer (raw, json)
Hash identifier: k/gcYPt2QipFUq+w/EafLAZ8cvqZ49z1IDwIDZhb15s=
Subject key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 614C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 Jan 2025 21:46:48 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 152.101.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24908 (0x614c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 21 21:46:48 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91EA623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7c:4e:3f:9c:3b:64:c2:21:b8:5f:fd:06:9b:
8b:0d:f0:1a:d3:00:cf:cd:5b:ee:3f:b9:f5:6d:ec:
8f:cf:14:9f:b7:18:ea:a9:6f:60:a2:6e:27:4a:b6:
03:e0:ac:8e:b6:ce:9d:cc:62:bf:b3:34:77:e7:a0:
49:cb:fd:bf:05:60:bd:16:a8:45:91:dd:e1:b9:7f:
c2:85:ba:03:be:02:d6:40:36:09:f5:ce:d2:48:fa:
c2:ce:f0:9c:6d:96:90:f3:02:0e:10:62:15:66:ea:
fb:d9:7f:6d:c8:7e:42:ca:9e:b8:c6:60:ad:03:25:
50:14:02:1c:b0:7a:0c:ff:e5:84:73:61:91:a6:cc:
84:60:4b:af:49:40:25:33:00:42:d2:76:15:9b:21:
ea:86:ce:81:00:de:b4:8b:be:b2:e1:ca:f7:44:3e:
32:39:88:bc:d3:b8:04:2a:0e:3a:15:9c:4e:a5:eb:
23:10:3c:09:be:44:b4:6a:a4:e3:c3:24:db:ae:d6:
76:6e:bc:fe:95:78:5a:fb:0f:37:ad:10:39:1c:df:
3d:5c:f9:89:8d:07:ad:60:7d:f5:6d:4d:7c:28:98:
b5:43:06:fc:3c:ab:ea:3d:4a:96:ff:6e:d5:af:6e:
65:f8:de:d4:2e:f4:eb:b5:6e:68:fe:89:22:db:9d:
1c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
152.101.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7a:26:f9:b1:e0:d1:e7:a9:b9:82:65:2c:24:79:85:3d:00:ed:
fb:45:16:95:b5:f8:e2:a9:5d:7f:c3:f1:4d:b3:28:a2:dd:c8:
96:4d:e7:9d:b8:73:37:99:3d:96:ca:2a:fe:31:82:6e:ad:91:
22:81:71:07:40:fe:4b:5e:0f:9c:d4:01:a4:b1:aa:b7:52:49:
8b:0b:15:ae:88:59:02:e3:5e:d3:46:4f:77:e7:58:88:98:bc:
e5:a9:0a:2d:9e:e4:e6:70:6b:71:92:4e:32:02:f9:2c:26:5d:
86:1b:c3:65:8a:65:6d:c5:39:2b:18:28:cf:e3:0e:42:1d:4e:
ad:51:bc:42:69:2c:ad:e7:fd:0b:86:69:89:fe:4c:06:47:ee:
fb:6a:b1:93:31:0f:84:86:a3:e4:6c:f2:cb:9d:c9:e4:18:be:
de:8c:3b:4d:a2:fb:3d:84:14:2c:47:81:13:ff:65:a0:ef:a8:
e8:c2:75:dc:1a:70:85:e2:55:ab:18:5d:c9:91:27:70:4c:83:
96:10:3a:ca:be:78:d7:69:78:45:31:f7:47:63:d5:e4:5c:c1:
f6:97:3e:3c:48:3b:ab:28:62:12:65:a8:19:10:1a:b1:df:a7:
32:e0:d1:17:d4:0c:76:83:59:cd:26:de:6e:dc:29:5d:0c:96:
01:a2:0d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:39:37 2025 by rpki-client