Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer
File: vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer (raw, json)
Hash identifier: fRckYxVJoftXHFCqpLWdbJ2HKe9VEjI/TVmDO+2gBu8=
Subject key identifier: BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5518
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 May 2024 20:43:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 147.76.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21784 (0x5518)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 1 20:43:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A918E6B7/serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:9c:98:db:b5:9e:db:a9:14:b9:36:d2:1f:
ce:a6:2c:c5:f8:a0:d2:b0:f5:37:95:13:c6:6b:e3:
b4:25:46:f3:54:d2:da:26:52:a0:82:3f:3c:43:b6:
4b:a8:1d:53:52:32:57:82:81:c5:3c:15:81:1a:d6:
ad:ba:c3:b7:12:5d:08:c2:28:5a:4d:1b:24:4c:57:
00:5c:83:8e:5d:4d:43:16:7e:90:12:20:51:d9:0f:
8e:47:ef:16:64:7b:6a:62:1c:a5:0e:c8:55:d2:58:
18:7a:a6:d5:b9:79:9c:95:be:f4:ee:1a:21:90:f8:
e6:80:03:00:d5:82:7f:d4:71:98:45:a6:dd:e0:60:
74:1c:f6:1a:ac:e4:99:6a:4e:19:00:57:5c:a3:03:
04:5b:e2:26:5b:15:ab:16:60:d5:54:11:6f:95:f9:
39:f1:a2:81:ae:75:de:53:c6:eb:39:f2:ab:ab:d0:
12:c8:92:9f:2b:50:58:d6:ad:31:3b:b9:b7:f2:30:
97:54:80:65:dd:17:c3:62:4f:fd:27:64:b4:73:83:
de:4c:42:b5:0c:e5:fb:8b:31:36:2a:ba:53:2e:92:
0f:e2:2a:51:3c:77:88:8f:7a:8f:d2:91:c4:76:ed:
4b:a6:9c:ef:73:ff:a2:67:fa:7d:7a:d3:70:4a:6f:
f1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
147.76.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:72:17:25:b8:06:e9:18:a6:7d:9a:f5:a6:a3:3a:b5:33:df:
d0:b2:79:9b:8f:07:ed:40:43:e5:f2:f4:6e:93:dd:92:21:ae:
63:f8:bc:ca:53:99:a7:77:87:8d:2a:ae:0a:b4:80:36:8c:98:
96:00:c3:7f:34:f2:14:fd:bf:4f:05:03:1c:fb:d6:1a:7e:0a:
d5:95:65:cf:b4:8d:c9:26:ee:b3:43:91:f4:78:6d:ee:86:9a:
fe:8b:b2:a0:7d:4d:17:b9:8d:2f:08:1a:60:fa:d4:d8:05:0a:
f7:3e:7d:9b:1c:e0:2b:54:88:5f:52:bf:4a:c7:60:d8:b0:2b:
9a:e9:39:c6:6e:60:e9:78:5c:78:eb:3d:e8:9e:e9:8b:17:80:
4b:bb:36:94:2c:2b:4c:55:1c:a6:bc:af:aa:7d:16:89:11:92:
c8:63:88:b6:5a:fa:a3:d1:a6:9d:6c:6d:60:1c:55:e1:aa:d6:
c0:7e:23:c0:28:99:65:a6:7e:9d:7e:60:c7:39:52:09:92:23:
a9:c4:bc:25:f9:c9:18:13:1b:a2:75:0a:8e:69:85:d4:f7:0f:
65:c1:ad:cc:5e:22:dd:d7:df:19:04:43:37:d7:5c:de:74:68:
7c:79:f0:d4:96:b0:9d:b4:be:a7:4e:1e:fd:7d:51:01:6f:51:
94:94:ec:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:11 2024 by rpki-client on console-ams.rpki-client.org