Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1fF0__36EIu7L4fnPG6d1RCNOp8.cer
File: 1fF0__36EIu7L4fnPG6d1RCNOp8.cer (raw, json)
Hash identifier: ikHQ8ooA9di6FMj5yJWUy1rzZTCKL7H4DaprBPLDePk=
Subject key identifier: D5:F1:74:FF:FD:FA:10:8B:BB:2F:87:E7:3C:6E:9D:D5:10:8D:3A:9F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4AAD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 May 2023 13:52:59 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 139.86.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19117 (0x4aad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 9 13:52:59 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A913A5BD/serialNumber=D5F174FFFDFA108BBB2F87E73C6E9DD5108D3A9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:43:4f:75:cf:ab:38:fd:e8:35:40:37:06:
b0:63:a5:a0:26:6e:bd:ed:fe:e7:59:62:7d:97:2b:
3f:64:ae:5b:de:1b:93:06:9e:1b:e4:ee:55:7b:2b:
c5:9d:d1:7f:67:3d:92:d0:fe:93:b3:28:76:27:93:
8c:8d:0a:1a:1e:e3:2a:16:8c:e8:27:ea:02:2b:53:
d1:68:3a:dc:9a:6d:68:ff:7b:0b:81:3a:8e:bf:15:
28:d9:56:7a:77:d0:e0:4b:a3:94:6d:b5:4a:fb:c6:
bc:b5:04:02:dc:0d:a8:16:19:69:b8:94:21:61:db:
9f:c9:7d:24:b3:ec:7b:a4:f4:53:0b:ad:a4:ff:ca:
2a:9f:66:ac:97:43:50:ed:7e:2e:85:da:3f:ed:6a:
fe:bd:4c:d0:ee:b1:f4:cb:f8:c6:22:07:54:a2:15:
14:64:e6:41:45:e2:a1:9c:8f:71:9c:7b:99:95:e6:
b3:76:3d:88:f9:e7:03:d1:13:8a:36:be:d1:7f:17:
c1:a3:ed:bb:c0:8a:31:50:c7:1f:2e:03:87:52:15:
6a:2d:b1:27:85:a9:ed:02:32:27:69:4c:eb:d0:fe:
8d:f3:a6:2b:ca:d3:a2:95:ad:4c:e0:6a:ac:25:0a:
95:5b:6e:2c:2c:23:9e:41:6d:16:ca:e1:61:d7:21:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F1:74:FF:FD:FA:10:8B:BB:2F:87:E7:3C:6E:9D:D5:10:8D:3A:9F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.86.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ac:54:82:3e:3a:8f:ed:43:51:2f:1f:b7:26:4d:08:2a:65:be:
d8:6e:0a:10:5c:b1:5a:3a:33:a8:31:1d:3c:c9:52:2f:85:c3:
44:7f:79:aa:04:97:69:ae:94:fc:80:ec:69:96:62:04:6f:92:
09:7a:be:bf:27:9d:b7:64:de:85:d4:52:48:a9:75:2a:6c:05:
5d:10:6e:eb:aa:f4:bb:28:9c:fa:49:db:e1:16:57:4a:36:b9:
c1:b0:02:fe:10:ea:58:04:b7:39:ca:8d:8b:e6:a2:9d:8d:34:
e2:7e:69:7f:69:26:e4:a4:92:ff:dd:41:32:03:a5:79:cf:90:
f3:6a:5b:ad:e8:fd:c8:74:29:15:34:64:e0:4e:2a:f6:7b:9b:
99:43:b9:9b:07:ab:f7:91:32:69:f3:a0:8f:72:30:a9:13:a2:
2e:c7:0a:9d:ff:61:dd:ff:12:d1:61:ba:19:74:54:75:9b:ac:
27:a6:7b:e1:1c:37:aa:9c:a8:47:3c:85:34:78:c4:85:ca:ba:
2a:b0:62:a0:48:c9:27:d6:16:8f:2f:2a:59:77:2d:ca:57:50:
b6:cd:84:fd:99:cc:75:5d:8e:2f:f5:b0:f2:bc:01:1b:29:3d:
39:98:de:21:ab:fa:bb:1b:1a:79:6d:28:63:09:b6:b5:5e:c4:
63:e6:9c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 05:36:35 2024 by rpki-client on console-ams.rpki-client.org