Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-T76pqbQVK6ZfIo8_yXxacNvigw.cer
File: -T76pqbQVK6ZfIo8_yXxacNvigw.cer (raw, json)
Hash identifier: Goux6ufQZd8wVM01W29B1xT1C4agvntWzbGMF0dfvyU=
Subject key identifier: F9:3E:FA:A6:A6:D0:54:AE:99:7C:8A:3C:FF:25:F1:69:C3:6F:8A:0C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 51D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/-T76pqbQVK6ZfIo8_yXxacNvigw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 Feb 2024 06:03:12 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.126.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20945 (0x51d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 8 06:03:12 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9178C1E/serialNumber=F93EFAA6A6D054AE997C8A3CFF25F169C36F8A0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:23:30:22:80:b7:72:a3:59:f0:7c:ef:d9:ec:
b0:de:e9:6a:69:21:8d:d8:d4:b7:22:bb:30:12:8c:
64:47:8a:00:0f:22:07:09:73:3c:25:d8:bd:d7:5d:
0e:82:61:77:70:c3:83:41:5a:35:67:3c:83:0c:80:
6d:ea:e1:a0:21:fe:9a:c1:78:04:56:83:51:61:d0:
c7:f5:09:e8:ca:41:9c:89:8c:e3:01:cb:41:02:2a:
b1:17:5f:09:98:96:b1:4b:df:e3:c5:90:92:fb:5f:
a9:8e:6d:a8:aa:91:a1:8c:86:44:51:98:7f:9a:2b:
ee:c8:b5:93:97:f0:e4:ef:44:a2:46:e2:5c:ee:a6:
13:f6:0c:ab:3d:f6:83:e6:c2:8a:73:4d:c1:7d:40:
e9:08:d1:a2:7d:0c:17:ec:07:21:4d:18:a3:85:aa:
fb:00:db:fe:52:b7:62:be:a4:1b:af:9d:70:64:30:
11:27:0d:99:5f:03:8b:0e:eb:7f:05:0a:bd:69:67:
ab:7c:4b:01:6d:40:91:e6:0a:37:63:fa:5c:b1:7f:
22:5e:67:71:b6:7e:23:d2:79:03:22:07:e9:b6:33:
b1:f9:e6:43:53:7f:77:58:09:7a:c3:1b:b1:f6:e9:
aa:c9:95:8d:b2:15:05:e9:72:91:7b:4e:8d:75:75:
34:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:3E:FA:A6:A6:D0:54:AE:99:7C:8A:3C:FF:25:F1:69:C3:6F:8A:0C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/-T76pqbQVK6ZfIo8_yXxacNvigw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.126.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:8b:78:b2:14:c2:40:eb:4f:d6:10:5a:f9:29:b9:ca:e9:fd:
66:42:e4:32:fe:86:11:9e:0e:a9:d7:3f:9f:83:7b:f2:60:3e:
60:6b:2d:24:4e:cd:7c:90:b9:d8:d6:45:cc:25:c6:0d:00:19:
4b:df:5f:d7:8e:45:f3:b6:60:3f:85:ce:5f:4f:4e:90:f3:e8:
6d:a7:5c:39:7d:65:bf:ba:58:e6:3d:50:e4:1d:e6:32:bc:cc:
1d:55:0c:fe:6f:68:a4:40:c7:3a:a5:d2:74:8f:4c:13:d9:ac:
cf:b5:41:9b:d5:77:f3:d1:c0:21:24:99:99:5f:8f:55:cb:7a:
82:38:40:32:a3:f7:a7:74:a3:13:b0:28:5d:f2:5f:a1:9e:e5:
6e:f9:b8:7e:3e:aa:a5:d6:6b:7f:02:74:60:a0:b0:b7:cd:40:
55:66:1c:dd:7d:0a:42:6b:17:0b:d4:3f:15:39:75:cb:41:c7:
98:cc:c5:d2:45:6f:da:98:bf:2a:18:18:87:03:a6:2b:3f:1d:
37:2f:1f:bb:87:b5:8d:b0:62:b2:6c:da:71:b7:9c:26:15:2f:
51:82:96:a6:8d:43:58:4e:9c:a8:dc:6d:44:0c:e9:c9:3c:f0:
56:7e:d8:d0:44:4a:0f:19:4b:67:5a:0f:27:f4:5a:35:69:55:
71:55:50:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:44:28 2024 by rpki-client on console-fra.rpki-client.org