Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer
File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.cer (raw, json)
Hash identifier: V0WuGl+1+EddQ2DWFoIsdsl+Ef4JDEaiZgkSaKyJB/0=
Subject key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5E55
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Nov 2024 04:55:29 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.70.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24149 (0x5e55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 25 04:55:29 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9187325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:6f:68:e0:11:3f:56:c7:16:39:38:2b:c0:e0:
33:ac:db:d1:1d:d6:62:6f:61:a4:34:e6:13:5c:9d:
34:5a:54:4e:e0:9d:08:c4:15:0a:c5:91:0e:12:7b:
30:d7:ba:99:b4:c6:4d:d7:58:ea:56:cf:7d:43:f2:
98:87:04:cd:fe:02:18:a2:6e:1c:61:5a:d1:61:03:
8d:56:07:1b:17:74:60:c4:5c:48:7f:1a:a2:50:41:
53:b1:da:2e:be:4a:8f:e9:8f:fc:45:80:a8:c4:12:
6b:26:05:d9:0a:72:7b:24:98:87:fe:3c:9f:4f:76:
9b:2c:ee:e7:69:1f:0f:16:db:26:a5:b8:8a:03:69:
1f:03:95:4a:b6:f9:50:c4:ce:94:b4:77:ee:50:9d:
89:0f:ad:94:9c:94:03:f8:e4:48:69:19:1b:be:08:
9c:82:44:a8:40:cd:7a:4c:6c:27:3d:7d:5c:2a:2d:
da:95:ae:f1:cb:64:7d:68:ff:00:ad:77:9a:b2:f2:
77:34:f2:b5:42:a9:73:ee:19:22:f1:99:65:13:55:
5c:68:7e:f9:78:26:b8:00:f9:97:40:14:67:a8:a5:
3b:48:e3:56:0d:e5:7e:53:8a:1b:5b:90:29:0f:e6:
6d:7b:76:9b:2c:08:09:6e:45:c8:27:e8:88:9c:cf:
06:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.70.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:ee:e9:f3:61:97:9d:0b:69:f8:80:3d:5e:f6:84:a4:b0:ef:
7c:3e:56:4c:64:ef:7e:3a:bd:15:39:10:71:8d:a6:06:ee:d3:
f4:7a:6d:11:b4:42:ed:ad:f2:d6:27:ca:40:08:b3:4a:c8:51:
43:b3:a7:95:f6:a8:08:a3:7c:09:70:a8:26:53:77:49:d4:ca:
42:12:77:fa:49:7e:8d:90:8a:a5:fa:e3:75:43:03:04:f1:ac:
b9:38:4a:6e:e2:10:2c:51:b5:ee:2e:1b:d3:d2:d4:03:f9:54:
70:28:7d:bc:7e:bc:6f:4c:ae:c7:b5:71:03:a6:81:48:ab:7c:
b6:25:b2:54:b5:08:a3:d1:8b:d4:7e:41:e2:4f:d4:73:ca:03:
84:fb:b4:a6:91:ae:cb:de:da:bb:7c:c9:29:ff:7a:a5:ee:58:
30:39:a9:a3:13:51:9c:de:6b:0d:3c:e9:a6:50:b3:05:93:51:
5d:f7:5b:e0:fb:c6:15:05:44:a5:64:99:a1:21:2b:53:15:4a:
8c:c1:b9:af:13:12:30:ab:e7:15:87:30:9a:fd:23:c6:0c:1d:
ad:81:27:7f:87:d7:f3:e3:cf:18:d3:11:27:b6:28:9d:82:50:
3f:25:b9:8d:55:00:74:d0:24:bc:1e:d8:b3:75:6b:c2:9a:04:
1a:51:38:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 17:00:28 2025 by rpki-client