Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer
File: 3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer (raw, json)
Hash identifier: dnLSSkKNWAm/cxWbVTeAoiKZxg6IQ0eiBKoh7dS8h70=
Subject key identifier: DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5EB6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Dec 2024 13:06:27 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 45.89.176.0/22
IP: 45.157.88.0/22
IP: 134.236.0.0/16
IP: 147.78.152.0/22
IP: 159.192.0.0/16
IP: 192.145.20.0/22
IP: 209.15.96.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24246 (0x5eb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 2 13:06:27 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9125475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:a1:2b:92:6c:2f:0e:78:d2:2a:fb:c9:ad:
b9:a4:79:5b:88:a5:29:ef:fe:e6:dc:c0:66:08:9f:
d9:aa:9d:a6:ae:70:06:06:64:96:72:d6:62:46:f8:
a4:e7:2e:b3:78:c3:b0:2e:8b:76:66:14:dd:97:53:
82:09:6a:5b:37:5b:aa:b5:81:e2:b2:49:34:ff:00:
5f:99:a1:11:7b:d0:ae:ef:45:55:92:f0:41:bc:46:
0d:4b:61:ef:3e:f1:ae:be:d0:cf:38:b2:63:27:5f:
10:d1:9c:8a:7a:4e:fa:23:c2:62:17:fe:e4:01:8f:
d2:52:1a:ec:dc:7e:f9:84:8d:bd:a6:ff:d0:66:c6:
03:fa:ec:b0:c0:dd:8e:10:63:bd:63:54:71:93:0d:
22:5a:fa:04:2e:6f:98:6a:e7:49:bb:80:02:93:de:
5f:9b:7c:75:8d:d0:cc:ae:a2:fa:d6:d0:2a:6d:e6:
d7:5f:89:c0:a8:af:d1:97:01:f3:72:f0:87:41:bb:
67:e0:8f:5e:62:1a:3d:2e:f3:61:46:c6:3b:1f:10:
a7:75:fb:53:ad:28:86:0f:41:a7:15:b9:d5:37:56:
f3:f2:13:e8:fc:32:1e:19:cd:b3:a4:e4:b6:6d:60:
03:68:7b:d0:44:b8:e2:67:8f:a7:85:c0:de:35:70:
b3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.89.176.0/22
45.157.88.0/22
134.236.0.0/16
147.78.152.0/22
159.192.0.0/16
192.145.20.0/22
209.15.96.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:79:29:f3:9e:21:62:c7:27:fa:56:90:5f:45:15:68:96:ff:
fb:63:11:bf:93:8f:ba:75:8c:ba:eb:d3:79:47:de:ad:0f:a6:
77:da:48:05:11:f7:d0:1f:72:53:1b:bd:a3:a0:46:04:17:22:
bf:65:6d:cf:1b:13:d1:b6:27:ff:fd:7b:b9:90:61:88:e0:0f:
19:fe:7c:78:ed:16:b9:9e:b0:93:bd:59:f5:16:29:35:d2:9b:
ff:d1:36:7f:33:78:7f:fc:b0:5a:d0:a2:af:f2:ed:90:a1:5e:
11:ba:be:25:91:8c:09:ce:10:85:64:06:19:85:23:ae:a2:22:
cc:e6:03:f5:bd:32:8c:df:13:9d:9f:20:a2:9d:79:a9:f2:48:
38:82:a5:c9:82:a6:19:99:88:e3:6a:06:d0:9b:ac:53:c0:06:
d7:97:d9:6c:1c:14:50:e0:66:91:b7:83:39:fb:fb:8f:fb:3d:
17:93:f5:61:f4:d9:33:6c:e4:d0:a6:e5:f0:81:89:b7:87:31:
e7:52:ea:c6:c7:7b:0b:45:38:b8:15:7d:3e:98:54:46:96:b8:
11:97:f0:a4:a8:ad:3c:63:fd:30:4d:64:59:9f:cb:d0:c0:b0:
5b:06:49:25:da:95:ae:85:bd:5d:81:ce:f9:a8:5c:23:72:c5:
bc:98:92:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:41:25 2025 by rpki-client