Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer
File: QELCSQ19r-wzIDFu1ap04L7Kqak.cer (raw, json)
Hash identifier: ji5IQClffjOMG+RQwHDEZtb+Y9183x0sMVKNPqE9DzI=
Subject key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 57CE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Jul 2024 19:24:42 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 167.103.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22478 (0x57ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 4 19:24:42 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91A7169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:90:ec:a2:dc:71:d7:71:2f:26:e4:52:b6:
17:13:58:3c:73:84:a9:3e:ec:d0:18:5d:fb:d8:a6:
90:02:d5:84:71:83:e4:41:a9:dd:aa:e9:1d:17:09:
16:37:0a:6a:3b:6a:9c:ee:a3:05:41:f9:b9:36:fa:
03:7c:50:a9:50:0d:70:0e:75:8f:5a:17:ef:8f:ea:
6c:5f:05:a9:98:cf:f9:fd:9c:50:1f:32:af:82:02:
90:c4:61:57:e3:2d:20:13:d3:ce:62:ad:4b:32:4e:
ac:16:c2:09:50:55:a6:d0:68:bf:41:e3:d7:db:06:
44:46:43:b7:97:71:b7:ab:e8:8a:89:bf:f3:08:05:
df:bf:23:75:69:2b:48:48:e6:d8:56:ba:c3:c3:fb:
92:16:de:80:22:01:19:f2:f9:99:c3:2c:19:f9:ae:
d6:57:06:9c:cf:4f:3b:8c:f6:44:46:30:d7:44:4f:
55:51:8e:67:c6:63:f3:2a:69:28:cf:9c:3b:69:eb:
72:bb:92:0a:dd:c5:57:9f:95:9a:ad:32:a2:bf:1d:
3b:1a:6f:2b:42:a8:e7:d4:42:6f:1a:57:52:fd:0e:
60:4e:13:79:84:38:59:e8:d9:f5:e4:2b:78:df:48:
61:93:db:c2:fb:cb:c7:df:e8:79:0b:49:57:3a:d9:
ce:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
76:9b:19:89:eb:93:ea:1a:96:10:93:78:72:c9:50:90:13:f0:
06:e8:15:7a:ad:ac:a5:02:a6:d1:8b:74:44:45:f1:ab:49:6d:
a4:31:4f:50:ca:7f:6b:6a:81:e3:65:c7:98:4a:a9:fb:67:a4:
7f:40:20:05:bc:6f:2c:02:09:69:59:78:05:a0:82:09:c9:69:
a7:f9:98:13:61:d5:4c:06:6d:2b:a0:6e:f4:0a:ae:cf:cd:9a:
7a:00:2c:14:65:ab:1c:81:ec:ad:c2:bd:3c:24:d5:f2:32:30:
2c:7e:96:ad:8d:5e:34:f1:21:50:bd:37:93:d1:37:b0:51:da:
2d:2e:58:69:c0:ec:38:35:8d:d9:1e:29:1a:e6:ec:cf:57:75:
f8:1b:18:6a:3b:3b:a8:51:db:29:10:92:f3:cd:f1:10:68:d0:
79:04:40:4e:6e:53:60:b7:7f:ae:93:d6:6b:61:8c:3a:91:bd:
4f:47:bc:6d:ea:a4:54:83:c4:a0:d4:a6:67:31:0c:49:1e:05:
dd:d0:ac:4a:74:7a:36:64:35:fd:de:e4:a5:f3:de:28:4f:16:
64:4c:b0:94:38:06:f2:d0:25:ef:59:9c:b5:a1:85:f4:b4:c7:
4f:8e:f3:46:f9:c5:a1:32:13:34:ab:17:54:b3:d5:ec:b9:ea:
fc:85:4d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:30:04 2025 by rpki-client