Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer
File: 18ttHdz5NKH1nk_-SYLwtMUsNfU.cer (raw, json)
Hash identifier: ctt6WXYoTMHz1MBa31lkMrJjCjx8XIv1bDYYIAoYMMg=
Subject key identifier: D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A12
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Aug 2024 15:42:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 64.119.16.0/20
IP: 66.181.160.0/19
IP: 192.82.64.0 -- 192.82.87.255
IP: 192.82.92.0/22
IP: 192.82.100.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23058 (0x5a12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 26 15:42:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A914DA2D/serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:2f:f0:f5:0f:22:45:50:29:45:c6:bd:19:
ab:c1:1f:be:c1:15:0a:d9:eb:19:95:89:92:dc:9a:
70:3f:f0:63:6b:dd:48:e6:4c:6c:79:82:6b:a2:dc:
d6:ff:26:12:2a:fa:dc:8a:63:d3:d9:4b:0d:a0:24:
8e:e2:62:c6:27:79:66:d2:a3:e5:16:d2:18:5e:56:
30:87:28:1f:af:25:6d:db:12:d1:8c:07:fe:b9:93:
e6:d4:d6:42:af:4f:df:f6:43:cd:2a:f0:48:df:1a:
0f:29:5f:6c:07:a7:ea:4e:9d:d7:96:de:61:c6:d8:
eb:54:f8:cf:35:2c:83:e8:d0:b7:e4:1e:6a:b2:61:
97:a8:8a:2e:63:97:68:97:21:28:a7:74:50:4f:3c:
65:e4:aa:85:75:76:a7:b6:9b:dc:b4:ad:26:f7:df:
47:d6:14:4c:5f:5a:f9:f8:32:68:0b:9b:0c:6d:3e:
42:ec:17:79:81:03:08:53:83:09:c2:14:8f:4e:08:
64:11:a1:9b:bb:4d:01:4d:a8:65:a3:1f:0e:6e:79:
d9:1e:ff:4d:7d:f6:8c:2d:bd:9b:7c:00:26:06:c2:
7b:0e:18:f0:df:2e:99:74:93:79:c3:13:b7:62:8a:
f6:b3:ad:30:a6:0f:3e:d6:71:f6:ed:42:f0:85:e1:
81:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
64.119.16.0/20
66.181.160.0/19
192.82.64.0-192.82.87.255
192.82.92.0/22
192.82.100.0/24
Signature Algorithm: sha256WithRSAEncryption
31:d1:70:56:42:ae:5e:94:ff:dc:37:cc:81:ff:06:55:97:c4:
5f:18:9a:41:59:0f:5c:f9:0e:d2:2f:b7:3d:43:94:71:9d:9f:
87:6b:e7:24:9b:da:a1:4f:3b:1a:d4:9c:66:ec:fa:7a:2e:e3:
1a:77:00:d2:fa:38:1d:09:88:64:d3:8e:5c:92:ac:6f:df:dd:
71:6d:67:dd:4c:f9:67:50:a0:3b:71:43:e1:c8:be:bd:b6:8b:
12:5f:93:2a:07:79:37:ef:93:c0:b9:69:ad:4c:54:41:d2:ae:
f6:f7:86:60:c3:c3:80:78:d4:94:91:01:15:34:fe:0d:c7:d5:
f0:f8:12:80:83:a9:b5:5f:99:f8:0e:e6:91:0b:78:ff:60:f8:
5d:d9:12:ad:64:9f:e4:77:fb:ef:5e:8d:b6:30:cd:c4:79:a6:
94:28:8d:b3:6c:be:76:1d:56:d4:1c:d3:eb:53:bb:66:59:b5:
76:63:c5:b2:16:d2:bd:36:2d:cc:e0:c9:90:a2:0c:f5:56:51:
84:35:86:a4:44:19:bf:91:45:90:ed:40:55:7e:63:6d:f0:a6:
aa:f0:8a:e4:a7:a5:b2:4e:bd:4f:e4:06:10:bd:a8:b6:5b:36:
61:d6:f9:8d:55:f2:17:93:5e:57:cb:8c:a9:d9:79:7a:e4:94:
79:7d:cd:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org