Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer
File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.cer (raw, json)
Hash identifier: 7bXJUku1EpJVpSJiY83Sh/libq0VR5UP4+oJO/APhVs=
Subject key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 52F9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 12:30:34 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 64.246.80.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21241 (0x52f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 4 12:30:34 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c3:fc:e6:68:45:1f:47:b3:46:9b:06:ec:75:
e0:5f:d1:9c:b2:fd:04:c5:13:e8:d6:c4:ea:83:30:
1e:f7:78:4e:80:64:04:24:b1:45:f0:8f:34:7a:8f:
07:71:3c:94:87:9d:3c:cc:ca:2e:b7:b7:fb:44:72:
49:4d:66:e4:02:3a:81:f8:b5:70:8c:c5:0a:e6:1c:
c5:07:d1:ec:7a:d5:66:9d:2c:e0:3e:6e:6f:42:53:
f1:35:3e:23:2e:80:f4:8b:eb:56:94:a2:28:93:23:
a8:4d:99:73:c2:4b:d5:96:ff:5d:c4:36:db:4e:f7:
f1:ce:c8:43:79:fc:2b:6e:3a:08:32:bd:b5:78:cc:
ce:a1:eb:9e:11:ad:af:40:90:cd:20:9e:c8:32:6a:
a4:30:fa:a1:f3:58:22:f3:14:4e:ea:2e:ec:72:be:
69:bd:58:67:3b:29:67:ff:d8:a2:51:3b:c8:3c:03:
1a:ae:40:76:0c:75:be:2e:e4:30:a4:30:25:17:09:
3a:62:81:23:42:6d:f3:11:59:78:1f:d1:bf:c5:5d:
61:7f:d5:4e:db:a2:9d:da:46:0e:a4:38:17:84:1c:
e9:b6:95:d8:0f:c5:4f:81:6e:66:e8:22:6d:ea:bb:
51:60:92:f2:8e:48:18:83:3c:91:13:90:db:bc:85:
1b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
64.246.80.0/20
Signature Algorithm: sha256WithRSAEncryption
59:88:99:15:9d:b3:01:de:53:4e:5c:5e:d1:3e:31:b0:fe:ef:
3c:8f:aa:c1:85:92:ae:7e:96:de:17:13:b5:54:ae:3a:9a:5a:
81:31:46:24:e9:10:3e:79:9f:86:21:b5:9e:90:69:bc:d9:31:
08:ff:8a:61:f8:19:55:98:5d:2e:04:33:19:d3:53:2e:45:26:
52:1f:ab:fe:ba:2b:d4:42:d7:29:c6:e4:02:06:8c:ad:c5:2c:
29:52:88:0c:ce:82:de:d8:7b:49:3c:61:3d:55:b8:7f:88:82:
a9:4c:05:c4:cd:b9:11:6c:77:7a:61:2e:b3:c8:4f:dc:58:9e:
70:bb:12:d3:30:7e:e0:9c:a9:08:24:e1:98:c8:46:bc:5e:26:
0c:6f:bf:fe:a1:7d:eb:78:90:36:a4:be:a7:b6:8e:7a:ef:37:
67:b5:ba:2f:f0:62:4d:5e:88:2c:9a:1c:f7:d6:5f:66:f4:3b:
a2:2b:3a:47:f6:f1:81:51:73:99:8f:be:68:a9:83:71:35:b5:
96:c0:25:80:30:0c:4c:5c:27:72:c5:c2:13:78:92:37:92:8b:
71:84:7d:48:d6:da:9b:cc:71:1f:32:36:ec:57:21:4f:26:26:
ae:30:8d:22:81:a0:9a:53:6d:0f:b1:43:c8:d9:2f:a9:7c:44:
39:e6:5b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:38 2024 by rpki-client on console-ams.rpki-client.org