Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer
File: -bspsKvoSef-GA4znkscKCNoxSE.cer (raw, json)
Hash identifier: thuyW724H5IJhldlgs4D8gxKtURu6o7RqrDwKCc0PBY=
Subject key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 52B8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Feb 2024 14:58:29 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 143.92.112.0/20
IP: 148.222.64.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21176 (0x52b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 27 14:58:29 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:be:05:7e:96:70:d8:83:fa:5b:a9:38:fe:9e:
98:dd:01:1b:e9:da:ab:52:2e:c3:1f:6c:56:75:af:
50:74:5a:86:5e:a4:60:c0:d6:73:ad:6a:80:16:2b:
af:04:bd:ff:b2:da:43:f7:fa:0e:1a:15:b9:d6:08:
84:79:f7:da:01:1f:37:9a:15:d4:1c:e8:dc:2f:05:
07:42:67:b6:02:e3:ba:3d:23:dd:1c:b9:b0:24:b5:
0d:d8:7d:7f:b6:8b:73:20:57:05:12:a9:94:f2:29:
0c:35:5b:2d:5b:ab:62:28:bf:42:5b:ea:d1:3f:6b:
a3:dd:2d:d4:ac:fc:6a:fd:d5:c4:30:0d:ac:e1:bf:
a5:a5:0d:32:75:94:9b:4e:3e:a4:f6:23:5c:7a:40:
01:78:80:b2:80:04:95:ab:31:63:59:3c:66:53:73:
4a:f6:eb:d0:2f:e9:47:f7:cd:02:45:e0:0c:50:24:
fc:21:64:36:97:a1:6a:d2:e5:ac:19:8d:f4:91:64:
aa:ed:db:99:ee:49:08:73:78:9b:67:83:4a:e6:6f:
f5:09:36:11:da:0b:f2:3a:e3:5d:80:3d:c6:9f:32:
c7:1e:5c:b2:09:2a:d0:e9:3a:6c:56:81:e9:d6:cd:
38:12:11:85:27:15:7f:a6:55:94:ab:8a:03:c8:29:
f1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
143.92.112.0/20
148.222.64.0/19
Signature Algorithm: sha256WithRSAEncryption
66:ea:22:8c:05:b7:dd:c7:2c:7f:a6:58:bb:74:13:e2:26:6e:
a5:b3:c4:3f:46:c3:29:e8:3c:31:49:c0:a3:50:f6:3d:56:59:
e4:01:01:02:0c:98:b8:e4:43:50:ec:4f:f5:63:e3:09:32:6d:
18:a1:50:bb:88:a8:75:db:49:14:ae:67:45:be:31:13:c4:1d:
56:76:a6:06:58:28:10:3f:39:17:53:ef:39:4d:fa:55:55:8f:
0d:5e:66:5b:d4:4d:ee:4d:a8:47:6c:d4:c1:10:4e:30:6d:a5:
8d:54:c1:a2:c1:09:b2:f5:e9:5a:da:56:ef:92:24:33:0d:83:
62:66:0c:be:26:5b:5f:06:4b:bf:65:9b:00:59:1b:ae:57:fc:
36:b1:46:2a:db:fa:81:d4:94:12:43:02:a7:3c:44:7f:b8:30:
47:a6:4d:c3:bb:ea:cd:1d:18:c9:f3:2c:c6:4d:01:5f:0b:fe:
02:cb:1b:59:76:9f:80:1d:f0:51:6d:ca:b7:95:5c:1c:ee:df:
8d:63:bd:00:a0:80:c4:0f:48:9d:c4:94:95:a3:17:6e:15:9c:
f3:dc:e0:8b:80:20:25:25:f0:de:2a:48:aa:a6:b5:ab:38:a1:
26:55:c8:d3:04:6a:0c:1d:94:65:90:26:72:56:0f:80:c1:b6:
98:da:8d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org