Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer
File: dOW7m208x_jCmoO9yEkrllnw7hc.cer (raw, json)
Hash identifier: 3LpsRedSV83yTJ7JVBTThYv/EXWTH5p4MR0xun04N7o=
Subject key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5FB0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 22 Dec 2024 15:21:56 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 47.8.0.0/15
IP: 47.11.0.0/16
IP: 47.15.0.0/16
IP: 47.29.0.0 -- 47.31.255.255
IP: 47.247.0.0/16
IP: 130.26.0.0/16
IP: 132.154.0.0/16
IP: 136.232.0.0/15
IP: 137.97.0.0/16
IP: 139.167.0.0/16
IP: 152.56.0.0/14
IP: 157.32.0.0 -- 157.51.255.255
IP: 169.149.0.0/16
IP: 205.253.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24496 (0x5fb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 22 15:21:56 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91620E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:5e:6b:9c:d4:c7:61:15:fe:70:01:0a:ca:e2:
0b:05:dc:7a:84:01:33:d7:60:70:e1:23:29:0f:fb:
6e:d3:7c:d6:9f:ff:dd:64:92:52:11:7e:ae:6b:e1:
3f:5d:70:f9:3a:fb:85:60:8a:52:84:f1:ce:db:d9:
43:e7:bc:99:5d:16:98:1f:5e:5e:36:d3:23:fe:37:
fd:e7:76:d1:14:95:ca:87:eb:45:34:0d:3f:80:9a:
ce:32:8d:23:49:2e:ea:8e:7d:56:52:7b:30:dd:a9:
fa:4a:21:1d:5f:65:00:a7:c6:14:11:16:29:d7:f4:
50:eb:83:0a:0f:e4:d7:e5:a1:72:00:5b:f9:16:5f:
e7:f7:34:ce:23:5c:72:42:66:ae:60:be:0e:2f:34:
b3:f3:5d:20:47:95:2d:6f:7c:e5:0a:e1:c8:15:32:
17:5d:5e:5b:a0:cb:91:28:d6:62:d5:40:c8:6a:fd:
dd:27:4d:db:36:5c:09:08:87:b3:70:48:e7:cc:0a:
63:d1:86:d1:56:14:a1:0b:fa:5a:83:b7:87:8b:ff:
28:3d:68:1b:e5:8a:9b:69:e0:dc:71:49:d7:29:0d:
6c:db:95:40:3c:cc:2e:5d:b5:a1:99:b5:56:37:d5:
dc:7d:e4:31:34:af:ea:f5:50:46:25:69:04:d2:3b:
39:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
47.8.0.0/15
47.11.0.0/16
47.15.0.0/16
47.29.0.0-47.31.255.255
47.247.0.0/16
130.26.0.0/16
132.154.0.0/16
136.232.0.0/15
137.97.0.0/16
139.167.0.0/16
152.56.0.0/14
157.32.0.0-157.51.255.255
169.149.0.0/16
205.253.0.0/16
Signature Algorithm: sha256WithRSAEncryption
72:d8:32:10:10:12:19:a7:cf:f1:c8:bb:5a:ec:20:a7:d7:d0:
fe:84:b3:0d:a2:9e:e9:9e:e0:e4:ee:2f:3a:86:b1:73:c7:d4:
99:cd:43:4b:8c:2d:0e:7f:65:b0:b7:82:42:e7:46:85:d4:13:
1a:d3:7e:1a:1c:20:98:36:14:21:f2:c1:92:6b:a9:c6:5c:75:
3f:9a:6e:14:87:15:fe:e7:60:2e:f8:09:eb:31:f2:73:1d:09:
da:b8:14:74:69:2d:c8:98:30:fd:75:5d:08:9d:d5:fd:45:66:
1f:e9:13:70:e1:13:d6:ab:82:f1:03:c7:20:0e:46:27:f1:be:
35:ca:ee:1e:c1:53:8b:53:25:1b:35:83:25:c2:e0:63:9b:db:
50:29:3a:3b:07:57:20:5c:00:2d:90:ba:d0:ed:6a:66:81:ba:
e8:69:94:4b:2c:ee:92:7f:66:12:89:1f:3d:05:1b:7a:67:e8:
ad:3e:66:3e:52:c4:a5:15:fd:fb:04:05:2c:33:95:fc:41:cf:
1a:3e:2e:99:33:4b:81:f2:9d:93:7b:f5:70:dc:73:a1:36:15:
19:93:63:e0:e0:81:13:33:3b:ba:85:f2:04:0a:5c:e8:aa:2d:
2a:10:ae:31:da:6a:be:74:cc:63:26:0a:51:f5:d9:9c:92:8e:
f3:b7:8d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:38:49 2025 by rpki-client