Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
File: i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer (raw, json)
Hash identifier: F7/CTNd43tC4RNU2P5RUEzfIn6MLfCI9JmfJmZxfujQ=
Subject key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 505A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 Jan 2024 19:43:32 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 166.81.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20570 (0x505a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 12 19:43:32 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4b:46:ae:01:e4:90:46:7c:50:19:df:d3:af:
3e:8c:ba:36:c7:c6:ce:05:71:62:0d:a3:0e:de:95:
e1:c5:03:96:bc:16:ed:ed:98:d0:f1:0a:79:ef:9c:
0f:1e:8d:b2:52:21:46:2c:6e:03:c3:a8:9a:87:33:
83:96:ca:44:3d:f8:f8:51:7e:94:ba:01:db:4c:9d:
e8:08:40:02:bd:4a:b6:7d:41:32:fc:e2:2a:af:38:
6e:ad:98:68:ec:cc:23:c4:91:5d:de:b6:95:f1:ef:
f3:58:33:87:87:1e:f3:52:93:ee:59:fe:38:5f:93:
d3:ce:70:81:31:8f:71:ff:5e:6d:7b:af:71:50:dd:
c8:9d:db:58:13:19:74:1c:d4:9a:cb:e4:51:bb:f7:
00:89:12:5f:36:d8:a3:81:e2:47:10:21:0d:1e:89:
dc:66:07:36:19:d8:6e:84:99:ed:1a:91:99:a6:51:
31:2d:0b:41:7a:f2:82:26:45:f8:68:f3:33:ca:1f:
c7:13:4c:57:a3:58:91:26:8b:ff:65:26:08:cd:a4:
d4:9a:07:01:97:49:72:a1:96:34:7f:4d:85:b1:9f:
e9:0b:c5:af:a3:b2:51:54:90:67:27:1d:6f:06:e3:
fb:4a:9b:d0:5d:2c:be:50:42:80:f4:ad:d7:3a:87:
00:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
166.81.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7c:8e:5b:56:f4:a8:af:a6:49:12:75:c0:fe:db:30:7b:21:ea:
b3:f5:f9:6a:85:6e:61:11:df:48:d5:a4:e3:29:c1:1e:f0:63:
e7:02:ae:f5:24:14:7a:a6:14:ef:cb:24:8c:ee:bd:8c:12:26:
cb:c7:b8:bc:55:d1:75:1d:58:79:24:14:8d:d7:ca:80:1e:f6:
65:44:93:e1:41:c8:50:fc:f9:d6:f4:2d:3e:12:9e:fa:93:08:
36:b0:77:06:07:19:48:9f:3b:64:03:d1:2a:8d:ed:d0:85:79:
d7:53:b7:3e:13:d1:eb:28:58:b8:a0:85:3a:79:3a:ef:f9:e5:
9f:52:0b:4f:88:cc:f6:74:12:c9:ff:be:f7:de:5b:7d:a2:bb:
4e:2a:46:56:e4:88:bc:f6:47:9d:ed:0b:d2:b5:d4:f0:5e:fe:
46:24:06:8c:c9:66:5d:93:3b:b2:cb:d4:9b:3e:2f:a8:cd:1b:
bb:1c:c5:41:df:1a:8c:75:50:ab:b6:07:c7:ed:cb:e6:0a:8a:
c6:ca:0b:07:28:77:24:95:27:5c:db:a4:2b:69:35:e2:c2:00:
36:08:dd:06:b0:fc:30:56:48:8b:84:8c:44:bc:7a:e6:89:29:
7b:54:4a:2a:24:89:68:4b:c4:1b:38:ab:86:40:db:13:86:0c:
76:41:ab:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:11 2024 by rpki-client on console-ams.rpki-client.org