Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer
File: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer (raw, json)
Hash identifier: ulgj+NWXHDNkmPvo1q57Qijm5uFqg26O4DoGd3uj1RY=
Subject key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5384
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Mar 2024 16:40:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 161.64.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21380 (0x5384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 19 16:40:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A917ACF1/serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f8:d2:8d:e9:45:1c:45:89:87:b2:83:4d:9a:
e2:1c:ce:11:b8:d9:4a:ba:44:1c:a1:62:4b:96:ad:
49:c4:8f:87:bf:b7:e2:c9:60:36:39:c6:76:e1:36:
d9:5a:00:9f:84:f6:1c:8f:4c:55:1b:15:02:dd:dd:
40:68:d6:fd:ce:86:3a:cd:d1:b2:f7:cd:98:48:6c:
5f:b1:81:f7:83:47:81:98:e5:94:08:bc:da:6d:75:
d3:52:89:e4:03:13:0a:b4:9d:df:01:ec:73:33:8d:
bb:e5:dc:16:74:b9:2b:bc:5f:a6:e0:41:e7:92:b0:
43:59:4e:5c:d3:08:0f:04:a4:a5:6b:ca:e3:e9:a8:
84:68:8a:b0:a4:fe:25:c4:c1:5e:dc:a3:23:9d:c4:
6f:9f:d8:52:fa:2b:62:8e:57:92:27:24:4b:10:f6:
4c:da:73:06:46:95:14:34:d0:8c:31:3d:02:2f:0c:
f4:d1:98:cf:27:d1:b3:56:58:5c:7b:9d:5f:3a:59:
24:10:63:f3:39:8a:eb:79:08:ef:04:bd:88:8f:6d:
53:8e:1c:ac:ce:f4:f1:47:08:43:0b:8f:7b:75:03:
a6:6f:16:1b:ea:b0:98:c1:4e:7b:17:18:1d:75:57:
0c:63:82:d2:e0:4d:96:6d:82:60:e5:dd:78:55:3a:
71:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
49:74:54:5c:69:29:72:b1:6f:00:e7:fd:72:1e:69:41:49:7e:
4d:a9:c8:1c:95:91:38:41:d7:68:4d:1b:68:62:47:2b:11:67:
fb:32:a6:8a:52:8a:2a:7f:98:04:36:2e:33:65:85:04:30:20:
6c:dd:ca:4b:84:7a:7b:1b:f3:31:d6:64:d9:1b:db:b7:ca:18:
2b:38:66:53:0d:a7:59:8e:5d:77:57:fd:c5:6f:31:69:40:eb:
cf:20:7a:fd:db:4d:2b:c4:b7:25:41:30:a3:ee:7d:4b:07:bf:
d8:01:c0:92:42:e2:cf:91:98:5a:87:45:99:4f:13:64:a8:6d:
99:98:8b:4f:47:6b:b5:ca:69:bd:a2:57:e8:1f:f7:06:55:f0:
33:7a:f1:27:be:a8:a4:e8:11:d7:19:1b:11:81:48:63:0d:46:
7d:2b:c2:8f:aa:e4:5b:3d:af:e3:09:72:24:2c:33:5c:c4:3b:
18:c5:c6:90:69:39:e5:bb:50:a6:ca:fe:f1:80:6a:f7:63:6f:
3f:44:7a:48:27:32:e4:8c:0a:16:d7:4c:cb:e1:34:ed:8c:c2:
68:ae:06:e4:ac:34:df:66:f1:4a:cd:67:77:77:0a:3a:70:10:
2a:33:f4:45:4a:85:c7:c3:2d:87:34:c5:24:75:f3:6a:32:9c:
0c:57:9b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:10 2024 by rpki-client on console-ams.rpki-client.org