Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer
File: U2uRsXtuG7FjjINYoPpepdDr77c.cer (raw, json)
Hash identifier: j4vnySJglFo1Te0Vf2mY+WFYvybZ0lCz2/itfNANLWM=
Subject key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 639E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 14:00:22 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 167.179.2.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25502 (0x639e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 1 14:00:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A9125C3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:12:bf:e9:0c:b4:97:15:f8:7b:01:97:88:
af:45:fa:eb:97:8e:f5:28:94:14:08:60:69:f8:36:
08:48:f3:37:d2:45:13:c0:4c:4c:19:77:e1:6e:7a:
1f:14:ca:7f:a7:c6:bf:5d:59:01:ce:3c:dd:af:e1:
4b:28:80:02:b2:3c:22:a9:ae:5a:c3:69:c1:83:8e:
38:90:dc:ce:a1:2c:ce:64:85:84:5b:ff:ca:43:c7:
5b:fc:90:5f:57:b1:bf:f1:65:28:95:c7:85:e9:ba:
b4:5e:8f:90:94:80:5b:50:f2:d6:d4:fc:9e:6c:87:
ff:23:e3:d3:bc:78:a5:ca:9f:14:30:d9:28:f0:e2:
32:55:c7:d0:bf:e1:40:a0:56:4c:62:66:4f:1e:de:
09:b3:da:8c:05:21:64:6f:97:6c:44:c7:19:8f:bc:
98:e9:e8:b1:ef:a6:7b:fc:02:1f:2c:58:9f:66:28:
79:30:e6:13:9f:55:ef:fb:73:14:f3:ce:2d:d2:38:
af:fc:dc:fb:b9:00:28:ae:40:91:f7:ee:41:c1:45:
c6:d0:7d:9a:d6:00:c3:6b:91:2d:c7:25:bf:d0:a3:
df:13:a6:ed:37:71:7c:33:12:c4:34:9b:2d:04:44:
4b:3f:42:bb:51:66:d3:ff:94:f9:f1:fa:af:34:90:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.179.2.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:9b:e7:94:5b:4f:ad:69:13:60:51:91:8c:d5:5d:51:0b:96:
77:5a:0c:e0:ae:d7:b4:0e:62:96:73:db:bc:a1:84:b6:ad:03:
09:c4:9f:0c:d7:8e:45:24:cf:22:90:94:c4:43:23:dc:42:aa:
f8:2a:04:95:10:30:e7:1a:07:69:e9:13:c2:14:82:70:74:d0:
c3:c6:12:2c:3a:f6:1d:45:c4:f4:fc:b4:f7:e7:48:cc:84:5e:
17:fc:44:c2:d1:5c:38:b7:b8:cc:4b:93:c1:2f:1e:e4:10:b3:
2d:e0:fa:31:d2:bb:76:da:94:40:c2:d7:a4:32:ab:17:d0:e7:
3d:af:f8:84:83:41:f7:8d:90:ef:6f:59:5a:5c:bb:70:af:72:
2f:7f:93:09:63:0f:c6:43:34:b9:6a:01:76:10:5c:e9:91:05:
a1:15:0b:fa:94:ee:c8:37:27:ed:b9:57:b1:b2:50:24:95:ad:
3d:e5:04:18:af:83:58:b3:84:2b:5e:8d:48:7a:0f:c5:7e:20:
61:fc:70:56:41:10:ac:0b:52:9b:8b:29:57:70:0d:ae:e4:28:
ed:a6:24:2d:b3:82:29:68:a4:0b:60:88:77:6d:c8:ef:b1:7f:
13:79:43:c1:37:b8:39:2d:2a:75:91:f3:75:a0:d8:53:28:31:
f7:1d:65:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:42:24 2025 by rpki-client