Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer
File: JnQ7Hk4OkKGbJAwJNpecojdojfI.cer (raw, json)
Hash identifier: j2oWbA838w3xoCkf8bx20OmU4Jxuf0igs8WV/DJglKc=
Subject key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4F20
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Dec 2023 14:57:44 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 146.88.64.0/20
IP: 155.137.64.0/18
IP: 209.141.0.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20256 (0x4f20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 2 14:57:44 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:50:ac:fa:29:4b:08:3c:59:ba:f3:9d:e0:
74:32:12:b7:b6:f4:95:3c:6f:87:79:93:24:60:d2:
e3:3b:32:38:f0:c0:51:d3:dc:71:1d:59:a9:22:67:
ac:2f:1f:17:34:31:2d:76:2f:5a:5e:77:55:a8:25:
a4:b3:dd:cb:96:d0:48:68:83:96:29:21:fc:5a:ce:
7c:7d:0e:2e:2d:75:0a:3e:27:0b:25:63:06:b8:ae:
48:7f:05:83:1b:c9:eb:e6:d2:b1:d1:05:7b:d7:bc:
71:71:c6:cd:17:f5:59:10:06:84:35:26:73:48:f9:
c4:3a:73:74:c6:5a:00:f9:79:27:c8:26:49:f0:a8:
8c:3d:43:26:46:92:9c:1a:2e:af:ad:9d:31:05:11:
ad:6a:f0:96:a9:93:11:8b:eb:83:8a:7d:a8:93:ab:
3d:e0:97:6a:7d:43:8a:c3:62:21:38:80:ec:52:b1:
b6:1e:6b:3e:77:ed:e3:79:1a:d8:0e:3f:a1:b4:46:
83:61:a2:a7:86:ec:83:27:fa:80:27:64:03:1a:fb:
70:47:19:22:e3:67:ae:bb:c1:8e:6f:e5:3e:91:72:
84:12:67:b2:1d:e0:94:28:05:1c:5a:b4:d7:8e:dd:
7f:de:b7:f3:18:4a:10:8b:4b:98:fc:4e:df:a7:71:
51:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
146.88.64.0/20
155.137.64.0/18
209.141.0.0/20
Signature Algorithm: sha256WithRSAEncryption
27:e7:c1:a5:46:f3:81:7e:c9:c3:a1:6f:b8:96:18:89:cc:a0:
df:15:0d:23:ba:06:54:85:51:21:27:e2:7f:9e:2c:5d:a2:ff:
2d:6e:6a:02:67:46:f4:c2:c0:4c:f2:13:a7:1e:80:39:42:c5:
a9:5a:0e:ca:39:d2:bc:ea:cd:21:31:7f:23:04:ae:b7:8c:be:
62:78:d8:d7:7e:3e:2c:ae:fd:8e:1f:0b:aa:bf:57:84:9e:ba:
24:02:84:bc:15:37:25:d4:6c:58:cb:cd:a1:5f:83:7a:da:d3:
39:30:38:9f:6d:bc:c4:bd:f8:d5:ef:06:29:cf:31:83:63:13:
98:54:b3:8e:29:4a:c4:6a:b7:5f:6d:48:3c:32:b1:c0:f7:0a:
dd:15:a1:bc:1b:b4:cf:de:9c:fa:93:5a:db:84:9d:26:6a:bb:
2f:2d:cc:18:d4:bf:e2:c4:6c:1c:1d:e6:01:d5:14:93:92:55:
db:08:a7:e4:d2:ba:68:a9:61:04:61:5a:c4:cd:3d:34:bf:2c:
d2:7e:c8:1e:8d:8b:d3:6b:65:df:79:63:c7:a6:1d:ba:cd:86:
b4:48:46:87:65:f2:9a:f1:1f:f6:82:74:33:08:8a:66:e8:1c:
fe:fe:5c:d6:2e:99:1c:ab:0e:41:48:32:b5:70:87:e2:eb:3d:
6a:dd:56:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:10 2024 by rpki-client on console-ams.rpki-client.org