Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer
File: _Kk1XBq-QE8_PPUZL9NLEloAvxs.cer (raw, json)
Hash identifier: XyUtGILcLKvpra1XzJ1lUc7YzA4gLpIBk3JKMiMPq3M=
Subject key identifier: FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 55BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 16 May 2024 06:12:50 +0000
Certificate not after: Thu 30 Dec 2027 00:00:00 +0000
Subordinate resources: IP: 167.219.48.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 04 Oct 2024 14:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21950 (0x55be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 16 06:12:50 2024 GMT
Not After : Dec 30 00:00:00 2027 GMT
Subject: CN=A91ADD64/serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4e:0b:ae:4c:ba:43:98:ee:5a:97:d5:51:29:
16:9a:e5:55:30:20:e3:9f:a1:be:42:82:7c:91:0e:
5b:fb:14:50:87:95:53:b4:e6:cc:2f:d9:aa:30:5c:
2d:aa:d2:11:bd:e2:52:86:6b:59:72:dd:0b:f0:5b:
43:48:26:86:3c:9c:20:e1:c4:28:19:76:2a:a5:b8:
bd:d4:31:8c:e3:32:5a:b7:41:c7:5d:54:1f:52:df:
d1:f6:f7:2a:4f:ec:d4:99:8d:68:3f:18:4e:37:48:
11:e9:e6:d5:29:e3:46:b9:10:ae:09:d6:52:4f:2b:
d9:2d:14:16:ef:52:a1:59:1f:27:94:a2:68:ef:c5:
f0:ec:19:3a:fc:ef:05:ec:9f:99:d8:6b:2c:df:02:
6a:31:b2:53:42:82:4c:79:ae:63:a2:0d:28:60:69:
f1:49:88:8d:d8:47:cd:54:85:c3:05:41:3e:01:68:
49:78:8b:25:43:0c:9c:25:c3:8f:8d:a0:bc:17:3c:
14:02:3b:12:c0:2c:4b:09:b8:16:ba:3a:7f:5b:d4:
3e:10:f6:92:96:5e:1a:11:08:af:ab:df:39:3a:3d:
3e:e8:1e:86:3c:e0:f0:dc:c4:64:7f:bf:1b:c9:91:
f7:a7:42:9d:93:53:3a:9b:8e:cd:6e:82:34:a6:2c:
1e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.219.48.0/20
Signature Algorithm: sha256WithRSAEncryption
00:da:69:6d:e1:a1:96:cd:87:b5:82:64:31:c6:58:76:98:a2:
b4:f9:a9:2d:85:d5:76:40:c1:78:08:f2:83:84:f9:57:7e:b2:
27:f8:f5:82:29:cc:57:f5:e0:13:44:02:e1:fd:7e:eb:e5:d1:
b3:80:70:88:b9:37:af:d2:99:76:53:89:89:b2:fa:fa:d1:20:
bf:43:77:23:4b:9e:a1:33:ba:ec:04:7a:7a:e7:70:81:02:c1:
7a:05:f7:4c:20:ca:e4:e7:fd:74:87:24:bd:a8:1b:cf:e7:93:
27:54:13:ec:09:5e:cd:fe:90:84:c2:d7:d1:84:d6:fc:96:e3:
0d:4a:6f:5c:24:b9:2f:12:0c:b5:72:90:42:86:c4:17:80:1b:
c6:eb:6f:9b:75:a4:4a:97:c1:33:1e:5c:39:ca:2e:b0:5b:31:
32:05:44:30:a5:d0:88:66:ce:28:69:1c:e4:1c:d2:bf:08:fa:
88:c9:19:53:73:51:5c:b7:98:0c:4c:ef:56:ef:45:9b:65:2d:
a3:3c:80:8a:5d:9f:17:94:91:62:21:db:54:e8:84:bf:1e:cc:
40:69:c2:b8:de:82:fd:60:76:72:8e:58:62:82:fa:b3:9b:07:
1a:4e:17:3a:35:ea:82:a7:ae:9a:85:a7:c6:76:51:ba:06:26:
6f:40:15:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 15:53:42 2024 by rpki-client on console-ams.rpki-client.org