Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vBeIK_xKhjChu_avBlGLkLpNFoo.cer
File: vBeIK_xKhjChu_avBlGLkLpNFoo.cer (raw, json)
Hash identifier: tHrNeSB+clWdrjozwJzCjwUPftMp6oCgtqk1uQgw/Fg=
Subject key identifier: BC:17:88:2B:FC:4A:86:30:A1:BB:F6:AF:06:51:8B:90:BA:4D:16:8A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 602A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/vBeIK_xKhjChu_avBlGLkLpNFoo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Jan 2025 14:29:29 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 192.156.225.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24618 (0x602a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 2 14:29:29 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A912FDDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:eb:0e:10:1c:d3:93:ed:29:4f:3f:c8:a5:95:
c0:80:87:e8:3a:71:bd:b4:ca:ad:76:9d:07:2d:48:
ba:70:d8:d4:80:b1:9e:98:90:32:e4:b2:c4:35:b5:
0e:9e:4f:50:23:f0:4c:ff:7e:38:ae:7e:a5:01:1d:
c4:5d:86:c3:88:cf:ed:67:48:e6:68:6f:b2:7c:60:
63:8c:a7:81:61:4b:38:36:c2:82:f8:0a:6f:3b:dc:
da:d5:20:af:91:5c:47:79:2e:12:b8:72:ac:11:e9:
0f:5d:34:a2:97:36:7b:0c:d7:f9:27:05:d3:e2:95:
92:ad:38:e8:75:c0:b9:53:d2:b0:82:fc:21:27:10:
4e:a5:81:61:2d:d3:f7:f6:2d:42:82:e3:3e:bb:cd:
be:46:08:22:e0:68:ee:6e:da:c7:dc:f2:06:73:01:
54:2d:df:bd:76:b9:64:b7:18:88:b4:10:31:d6:60:
73:c7:da:18:3a:b6:8e:8c:a4:52:bc:3f:ec:1b:f4:
f9:b0:92:64:6b:38:cc:f8:79:20:68:c6:32:f4:31:
96:48:dc:d5:04:6a:37:57:bd:9d:be:2f:b7:6f:df:
c2:0d:4d:51:8e:e8:ca:07:0a:4e:dc:ef:5b:28:c0:
a8:80:9f:67:70:9f:0c:30:f6:0d:36:dd:25:33:2b:
ec:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:17:88:2B:FC:4A:86:30:A1:BB:F6:AF:06:51:8B:90:BA:4D:16:8A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/vBeIK_xKhjChu_avBlGLkLpNFoo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.156.225.0/24
Signature Algorithm: sha256WithRSAEncryption
51:f9:91:32:c8:8b:7f:4d:ab:05:7d:f0:62:52:41:21:45:a6:
7e:82:8a:21:04:4e:21:12:15:f5:14:c3:db:93:7b:76:1b:da:
5c:d3:b6:b3:d2:42:8d:d4:99:75:a5:7d:0f:80:23:9a:7e:f2:
3c:42:a3:92:56:95:1a:d3:16:f5:70:cd:d4:33:91:31:a7:92:
0e:38:5c:3c:59:9d:3f:d8:4b:dd:04:9a:3e:31:38:69:e5:83:
44:56:c2:a3:75:f8:68:61:37:a6:47:6b:e7:c9:af:d8:e2:6f:
41:7d:e6:19:30:19:e6:ec:be:2b:dc:59:a3:4b:34:b0:66:23:
31:6c:b6:9a:f5:d7:15:80:0c:5b:f5:bb:96:e0:a9:74:ff:3e:
79:d0:fd:db:06:ac:40:17:c4:50:fa:ee:cd:b3:ee:21:d6:73:
97:f5:f7:01:73:75:f8:5d:fc:3c:f1:2e:15:c8:9f:aa:a7:27:
16:da:cd:81:04:2e:ac:8d:6a:8c:60:d1:89:24:1a:0e:77:56:
c5:57:26:a6:a4:e9:39:0f:65:99:ee:17:54:cf:f2:69:36:df:
b8:dd:c9:30:16:a6:e6:f4:99:d3:e6:9f:da:be:c2:25:6e:25:
1b:d1:82:9f:57:40:83:7f:eb:d1:1e:cb:eb:00:f5:1b:20:d2:
fb:ed:9b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:36:07 2025 by rpki-client