Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer
File: RoxqeSq7PkX-7iIo0o54AxNytFU.cer (raw, json)
Hash identifier: kJT+huQ8ycGEqMC7re8ZmSiqrV9qAz9tEBwn2sgmMZU=
Subject key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4F3A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Dec 2023 05:16:48 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 161.152.0.0/16
IP: 192.112.215.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20282 (0x4f3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 5 05:16:48 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e2:b5:d3:02:07:2f:71:52:c0:2a:9c:76:4f:
4b:16:37:45:48:cb:fe:e5:d9:b6:fb:33:f3:1a:5c:
28:a4:2d:f2:24:6c:5a:bb:eb:97:60:37:6b:07:64:
76:cf:1c:26:dd:51:ce:9d:00:9d:8f:8b:59:28:c0:
ea:b8:61:4a:2f:0a:60:04:b3:1e:82:52:9a:36:43:
0f:79:fd:31:cf:4f:64:bd:40:f0:30:9a:04:03:13:
de:41:8e:ee:3b:96:1e:ef:b6:ab:a7:5f:7c:fa:98:
7a:da:df:bb:5b:d0:16:9c:e2:10:4d:45:9d:6e:3b:
d8:9f:a6:4a:04:e6:c5:fc:53:10:45:ef:f6:c4:9f:
21:77:9f:83:bf:b6:8b:8e:82:88:1e:b1:d5:bb:40:
67:18:e2:1a:c9:06:9a:5e:be:ce:94:70:be:00:05:
81:15:d4:69:13:da:76:d6:cb:c0:07:ef:0a:bc:99:
8b:e9:07:1c:e4:0d:db:69:94:b7:e0:de:48:8a:0c:
f9:84:f0:23:2a:3e:b2:14:88:1c:0a:ba:f5:2d:4f:
8f:3a:40:12:ab:33:2b:1b:1b:02:3f:00:9f:ca:f1:
36:e4:27:96:03:ef:3f:db:6e:5d:e2:05:46:8f:4a:
fe:32:59:dc:ff:0b:34:2a:b6:7d:a8:7d:ac:1e:cc:
38:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.152.0.0/16
192.112.215.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:f3:ce:48:ff:a7:7c:7a:97:88:e8:97:7c:f0:4b:a2:39:77:
79:3b:5c:14:9d:f9:ab:41:da:a0:f5:a2:91:69:1a:93:1b:72:
44:1a:e4:65:65:b0:07:9a:34:3e:96:8a:50:e5:e9:e0:83:94:
5c:f5:20:08:fb:42:b6:8c:6d:d4:1a:c1:65:33:c8:88:0d:5a:
2f:ad:82:db:32:79:8d:1d:af:14:2c:70:cb:3d:a9:2e:2a:62:
ff:b6:00:8a:79:35:49:ce:f8:a2:65:a8:16:2d:2c:36:a5:3f:
67:9c:51:2e:fe:43:8a:28:5e:19:42:d2:93:8f:94:c5:27:3a:
18:ee:67:b1:03:ee:5a:c1:d4:a3:9b:45:0f:96:b2:d3:76:47:
97:54:01:e0:29:3a:f6:6a:01:80:3a:f9:d3:66:28:cc:e6:7c:
17:a2:c0:e6:ed:dc:ec:f5:54:77:5f:b4:41:a1:d2:90:d8:c0:
81:ec:1b:ed:8d:74:c3:52:b8:f4:70:0a:32:f2:db:a6:66:d0:
44:cb:0f:08:fc:bb:29:dd:80:4a:36:d0:71:12:44:ca:d0:1c:
5b:c9:93:e8:d9:53:e2:9f:b8:21:2f:e4:53:4c:d5:9d:cf:61:
07:3f:76:88:f0:77:aa:d7:fa:ef:ca:84:d0:b9:30:16:cb:9d:
c4:b2:01:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:11 2024 by rpki-client on console-ams.rpki-client.org