Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer
File: CC8e6S_qY3P9odWuxG4vLYrorIc.cer (raw, json)
Hash identifier: AlCs3SL17mCQJBsgiJ5gdAMq6Rckr2WePTG7GcoYS5I=
Subject key identifier: 08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4B81
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Jun 2023 14:15:32 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 164.100.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19329 (0x4b81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 22 14:15:32 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A919F0DA/serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:65:9a:08:7b:d3:75:be:2a:a3:48:ac:8f:45:
1d:3f:76:7f:ad:75:27:53:a2:88:fc:db:17:29:9c:
2a:31:e0:25:6a:d8:94:27:d3:b2:eb:4f:80:b1:27:
18:0a:82:d2:b1:66:db:c2:d7:a9:27:cf:a6:ea:58:
7a:07:b3:ce:1f:9e:a4:fc:0b:4d:5f:ee:7a:b9:7c:
7f:d8:fb:f5:31:f6:98:52:14:5f:c2:80:04:e0:a3:
9d:2a:87:1b:fa:68:90:63:d0:c1:9c:15:92:3a:9d:
95:59:4c:7a:49:cf:97:3a:d7:fa:a7:66:56:8f:09:
1c:60:37:17:b9:72:f7:1c:8a:bc:0a:a6:51:e3:fe:
cb:a4:cf:bc:ab:db:3e:06:6f:f7:29:3f:ae:e9:2c:
f0:a8:2c:e5:13:8d:00:4c:25:3a:50:b8:70:f7:45:
b0:6b:3a:7c:50:c8:4e:3f:42:d0:61:43:d9:9f:39:
6a:03:a3:8b:01:fc:36:47:eb:0f:85:b3:ff:ee:a6:
42:72:f4:6b:cc:dd:e2:17:98:e0:fa:f3:32:fa:a0:
c7:9b:1b:bf:94:07:8b:23:4d:7b:dd:31:6a:73:5f:
e6:a4:1a:68:63:ab:d0:ce:48:11:5a:9d:6a:cb:ec:
6b:10:93:89:e9:0c:35:d2:b9:f3:95:b1:8d:c4:7e:
5c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.100.0.0/16
Signature Algorithm: sha256WithRSAEncryption
15:47:ba:f4:5b:7f:4b:2a:49:cd:3d:2d:b6:73:b4:46:6d:17:
eb:f1:f8:39:29:46:cd:cc:97:10:90:5f:1a:5a:65:72:0a:60:
c8:c0:d7:fe:97:73:fd:71:bb:6c:69:e4:40:e7:c0:c9:e4:ec:
7f:4e:b8:ca:b4:ec:e4:21:55:38:42:6a:33:33:0a:0c:72:e0:
e7:51:30:88:35:31:43:0e:9c:8c:47:89:d1:5f:bb:68:65:e9:
e0:6a:2d:05:2d:c1:2b:6e:ff:41:56:b9:3d:3a:cd:72:cf:14:
ba:af:b3:d5:ec:39:e7:fb:8f:2a:d8:7a:8b:4b:08:d8:db:d3:
24:89:79:2d:19:4d:eb:4f:c2:0a:b3:47:ad:33:fd:35:5a:8d:
77:2b:1f:d2:b9:99:56:54:00:45:e3:20:a3:56:31:5a:e4:cb:
fe:b9:72:79:5d:31:f4:72:a7:f4:60:36:a3:70:46:19:be:c8:
4b:2a:ea:69:ee:f2:6b:3b:b0:e8:f9:4b:32:c0:41:94:be:76:
1a:4c:31:74:70:b1:7c:8f:f6:58:84:28:67:80:3a:63:4c:28:
22:79:eb:6d:a9:24:0b:42:2a:57:b0:6d:43:1c:b7:b8:f3:be:
39:78:cc:02:84:ff:3a:69:c2:2f:1f:ae:06:fe:d8:95:b1:0f:
35:30:b2:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:29:32 2024 by rpki-client on console-fra.rpki-client.org