Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer
File: Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer (raw, json)
Hash identifier: 9rinS44IkCXmkOhQmxN6zSqOvwTRu4Q9LCEqQrXg4X0=
Subject key identifier: 55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4DBB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Sep 2023 12:23:59 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 130.217.0.0/16
IP: 192.73.21.0/24
IP: 192.107.171.0 -- 192.107.172.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19899 (0x4dbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 28 12:23:59 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91127C1/serialNumber=55FB7BCCA740285FC81AA360F02CE32F95816DB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4f:ca:5b:c2:27:9c:46:1a:6a:06:c9:12:d5:
dd:13:ea:4c:d9:32:10:3d:be:2a:aa:a5:95:c7:aa:
e8:38:d0:38:8a:e1:4b:19:4b:1b:06:d6:41:68:56:
4a:04:6a:07:03:73:08:78:4e:7b:20:0a:55:b6:f8:
6c:66:b9:4a:82:c2:d4:37:8e:a8:be:cb:33:4a:ae:
97:f8:53:1c:88:75:84:03:31:9d:11:a7:ba:42:d3:
f7:3a:a0:cc:6c:f1:c7:3a:75:ee:01:a6:b4:2e:d6:
55:6e:36:28:c7:ca:c0:df:e9:a4:6b:9a:cd:33:ae:
dc:56:cd:75:de:18:c1:b4:f1:bb:1d:b1:53:f6:9d:
45:f4:52:4e:be:1a:4e:dd:01:66:2a:a7:74:b4:1a:
92:df:fe:99:4a:44:f1:ad:76:da:31:07:ac:f4:6d:
65:37:4b:2a:2c:0a:40:14:38:cc:bd:c7:98:3d:8f:
b1:f8:56:0d:d1:4e:97:f2:10:f0:0b:86:4b:df:f9:
02:b1:11:56:d0:89:4d:2e:02:01:2d:75:e5:8f:5a:
6b:81:51:42:57:1c:11:64:04:24:49:5f:ea:b1:81:
c3:e6:43:6e:01:81:bc:6c:41:a7:79:15:e3:22:a0:
ba:bc:9d:c9:87:bc:54:d8:e5:51:c7:77:8e:43:cb:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
130.217.0.0/16
192.73.21.0/24
192.107.171.0-192.107.172.255
Signature Algorithm: sha256WithRSAEncryption
c7:4e:7d:b7:64:33:9d:22:75:b1:2e:b1:5e:4d:10:81:a5:7b:
50:75:a3:6e:a5:e3:6d:5c:62:89:99:fd:f8:6e:f8:92:f4:5b:
72:60:24:81:59:d4:b1:2b:b1:b1:52:a4:7a:48:f7:4e:60:38:
34:ee:87:1c:cc:82:25:43:c5:5b:5d:54:43:b8:99:0b:8a:65:
7f:25:10:21:52:ff:89:c3:85:7e:75:f5:78:71:85:44:dc:73:
b6:94:7d:2d:52:1b:a7:56:1e:23:b3:4d:da:3f:73:92:ca:13:
2a:24:65:3c:5b:00:5a:4c:50:8a:d5:b1:5b:d4:c3:4b:76:bf:
df:84:cb:d3:16:31:69:a9:3d:db:49:0a:0d:c2:b6:a4:3a:fd:
38:b2:f9:a3:16:28:8d:3c:4c:7f:c1:be:4b:c1:a0:69:cc:b8:
37:e5:75:c9:7f:08:97:05:82:43:4f:d0:90:25:4d:13:b8:2b:
54:9d:11:0d:52:32:16:ac:98:79:c5:23:c1:7b:23:ea:a2:a6:
bb:03:d3:eb:ed:15:52:b7:b2:a0:ea:6d:1d:2b:09:46:e9:f3:
94:3e:8c:eb:59:bd:33:6b:88:0a:fe:37:25:f9:e8:14:27:25:
6e:6a:66:01:a1:d0:99:a4:69:f9:e1:54:ab:22:fc:6b:60:06:
ad:bc:4a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:11 2024 by rpki-client on console-ams.rpki-client.org