Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer
File: u8EDVhr9epMDbRxy3UwKfCpOKc4.cer (raw, json)
Hash identifier: /0vRM+LhNCB6SIzb5+xG23xwdnuQTCZgyMOveu5rJ3Q=
Subject key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5F0C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 20:45:07 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 139.163.0.0/16
IP: 168.134.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24332 (0x5f0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 6 20:45:07 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91F277D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a5:3e:ef:7f:6a:5a:a4:32:a3:b6:64:d6:14:
6d:b0:8b:ba:15:17:b3:48:1c:97:fc:53:f2:01:60:
de:40:85:29:03:b4:4d:db:8c:76:db:15:d7:37:26:
0d:1d:d5:13:4b:74:45:e5:62:f8:27:62:04:31:47:
f4:2b:43:75:2f:6b:12:15:a2:5c:64:f9:1b:e3:cd:
56:7e:06:e1:50:7d:1f:b9:92:98:e3:ce:44:b8:d3:
5a:57:0d:14:4b:4d:1a:07:79:b3:96:6e:4c:76:b9:
49:fc:42:8a:a9:ae:0e:d5:9f:44:45:18:77:6b:94:
59:a2:77:2a:0e:cb:a7:53:bf:1f:9b:5c:69:bb:ec:
dd:01:66:44:ad:dc:ec:12:41:50:45:1b:2e:7b:da:
f8:47:e7:61:66:6e:3c:e2:dc:93:eb:08:29:c7:db:
4f:a6:65:5a:0e:b8:12:37:41:e2:e6:b2:ec:4e:a0:
11:7f:b6:c2:4b:01:03:a3:e3:a2:0f:ad:de:59:bd:
4e:c8:20:c3:07:c0:5d:51:9c:52:fd:93:95:15:9d:
b5:b7:28:59:67:bc:90:48:0d:8a:61:9f:76:8f:a0:
d4:1d:4a:3a:02:e7:2a:4e:19:21:f1:ef:5a:77:11:
e2:cf:66:bf:27:8f:4e:72:96:e9:6d:d0:d2:eb:22:
88:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.163.0.0/16
168.134.0.0/16
Signature Algorithm: sha256WithRSAEncryption
09:13:17:aa:91:39:fc:f8:0c:3b:20:03:20:fc:2c:b3:36:60:
4d:22:33:ca:e8:41:4b:5a:ef:86:4a:3a:b7:9e:c9:27:91:a5:
74:e7:25:af:0c:1e:a8:25:74:4a:7d:ad:9e:54:8b:da:76:b5:
ae:06:2d:72:8d:d0:e9:a1:bc:67:28:e0:4f:63:64:f5:89:3d:
66:e5:84:4d:ee:b8:d1:4b:0d:7f:a9:35:15:62:85:d2:c1:fc:
d8:fd:1c:c4:a5:4a:01:1f:45:2d:03:1a:06:7f:05:3c:06:1d:
82:08:72:db:5b:80:65:93:e3:e8:0f:0b:1c:68:76:89:e5:3b:
3b:2d:24:3f:74:51:21:60:31:1d:56:ea:93:8e:04:ec:6d:8e:
ae:28:1e:57:71:93:fe:85:5e:f3:e3:d0:52:d4:7a:11:8e:0c:
1e:e9:c4:3f:02:8a:1d:4d:d6:08:9d:15:b6:95:3d:70:bc:a2:
9d:af:de:1f:cb:ea:51:e9:bf:28:ad:31:0a:cc:d2:c4:2a:ef:
a0:80:2f:4b:55:0c:0d:85:e1:35:8c:b1:d0:34:c9:ea:d8:f2:
fc:24:f8:1e:de:20:78:28:46:d2:92:93:dd:75:77:0f:21:95:
cb:3c:8b:3b:dc:45:9c:da:2b:0d:5c:50:28:b0:96:4f:81:49:
17:fe:11:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:52:14 2025 by rpki-client