Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer
File: JnQ7Hk4OkKGbJAwJNpecojdojfI.cer (raw, json)
Hash identifier: QqdptrI0c5gQHET3FtZCAT4ffHFZ6XnzZcbaJa2iifU=
Subject key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5ED3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Dec 2024 14:20:02 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 146.88.64.0/20
IP: 155.137.64.0/18
IP: 209.141.0.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24275 (0x5ed3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 3 14:20:02 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9144F59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:50:ac:fa:29:4b:08:3c:59:ba:f3:9d:e0:
74:32:12:b7:b6:f4:95:3c:6f:87:79:93:24:60:d2:
e3:3b:32:38:f0:c0:51:d3:dc:71:1d:59:a9:22:67:
ac:2f:1f:17:34:31:2d:76:2f:5a:5e:77:55:a8:25:
a4:b3:dd:cb:96:d0:48:68:83:96:29:21:fc:5a:ce:
7c:7d:0e:2e:2d:75:0a:3e:27:0b:25:63:06:b8:ae:
48:7f:05:83:1b:c9:eb:e6:d2:b1:d1:05:7b:d7:bc:
71:71:c6:cd:17:f5:59:10:06:84:35:26:73:48:f9:
c4:3a:73:74:c6:5a:00:f9:79:27:c8:26:49:f0:a8:
8c:3d:43:26:46:92:9c:1a:2e:af:ad:9d:31:05:11:
ad:6a:f0:96:a9:93:11:8b:eb:83:8a:7d:a8:93:ab:
3d:e0:97:6a:7d:43:8a:c3:62:21:38:80:ec:52:b1:
b6:1e:6b:3e:77:ed:e3:79:1a:d8:0e:3f:a1:b4:46:
83:61:a2:a7:86:ec:83:27:fa:80:27:64:03:1a:fb:
70:47:19:22:e3:67:ae:bb:c1:8e:6f:e5:3e:91:72:
84:12:67:b2:1d:e0:94:28:05:1c:5a:b4:d7:8e:dd:
7f:de:b7:f3:18:4a:10:8b:4b:98:fc:4e:df:a7:71:
51:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
146.88.64.0/20
155.137.64.0/18
209.141.0.0/20
Signature Algorithm: sha256WithRSAEncryption
30:94:98:11:22:a4:e1:07:53:2a:08:78:6f:45:46:64:51:22:
dd:cf:ea:5e:8c:5e:37:1f:d2:f7:0c:17:f9:4d:8c:dc:60:94:
b7:f3:fd:dd:7f:94:1e:c8:19:95:7a:08:ef:ee:b7:ce:ce:e7:
a3:f8:29:55:a9:f9:18:ae:9a:7b:e6:f9:68:2c:91:b0:6d:94:
0d:69:57:3f:d9:8c:10:1a:a4:6b:83:23:43:86:c7:3b:4b:c1:
9f:ac:45:4f:83:f8:b4:ff:e7:0b:fe:4e:e5:d3:9f:de:5c:e1:
77:be:fa:4e:d2:57:53:f3:bb:cd:06:89:b5:6e:18:d1:16:96:
b5:e4:63:0e:ed:56:85:23:40:74:b0:7d:f2:1a:66:ef:98:0f:
53:4d:75:26:64:8c:b7:eb:d6:8e:f7:01:b0:7c:da:01:5f:e1:
f9:55:c9:83:c2:4f:33:e0:af:99:f0:40:66:47:14:44:84:c3:
d1:c9:ff:22:17:47:ed:7a:98:49:ee:7c:4f:2e:99:a3:0b:7d:
02:77:8b:ef:8c:06:75:a9:2f:51:de:19:89:16:34:dc:fb:80:
d8:bc:b9:d7:27:78:6c:26:22:cd:36:14:ee:27:18:dd:8b:17:
0b:b0:bc:01:d0:50:8e:e9:53:e6:42:ec:a7:72:b1:8d:79:46:
a9:e7:e5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:32:23 2025 by rpki-client