Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer
File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer (raw, json)
Hash identifier: 9L0xZwiFaxnJh07jOJbZPbRUQPVb+GBVBecj2HIebaQ=
Subject key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 537F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Mar 2024 23:09:16 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.138.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21375 (0x537f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 18 23:09:16 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b3:ee:46:8c:3f:68:0d:1f:83:c3:e0:4e:42:
eb:f4:4f:19:47:e0:00:ff:20:81:ba:8b:75:0f:72:
cb:c1:58:60:35:ff:ef:8d:c1:dc:08:a9:cd:e8:8c:
98:11:bb:a2:07:ca:ae:83:8e:e0:82:18:a1:3d:6a:
29:e6:be:75:57:ca:8f:13:8c:08:33:dc:11:04:4f:
32:bc:3a:85:83:c1:27:83:b9:3d:5a:38:38:8d:0f:
79:85:aa:65:63:0c:8c:11:ac:55:ad:7e:21:5c:89:
b9:31:fd:f4:d5:fb:5f:1d:ac:58:95:e5:66:e4:4e:
9e:0a:53:b3:3b:a7:b3:48:ea:8d:a0:c4:70:ef:59:
ce:8d:a7:2f:36:de:48:bb:11:1b:6d:d3:62:f7:5c:
b5:41:c0:01:19:9a:da:00:81:ef:5e:fd:dc:0f:06:
36:00:49:32:b8:e2:10:2d:7a:24:68:d6:15:eb:33:
a8:77:44:49:a6:3a:4e:16:e4:70:7e:95:b7:f5:1f:
5e:56:83:00:f6:b4:59:a9:0c:0c:92:61:e2:21:4e:
cc:67:ed:ec:94:c0:48:21:97:25:30:21:61:4a:53:
c5:c2:a1:12:3c:3d:83:16:6e:74:b9:bd:64:de:59:
e5:40:8d:e8:a9:33:53:27:e5:8f:ae:44:c0:75:e9:
9b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.138.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f8:dc:34:30:b7:02:3f:fd:f7:8a:ab:38:7f:16:1c:56:1a:
e6:1c:c6:81:c3:35:24:0e:3e:07:11:3c:48:6e:16:15:73:ef:
07:c9:95:b3:7e:a1:d9:65:7a:9f:14:cf:06:6d:b5:60:8f:20:
52:52:7c:47:d5:d8:9b:66:54:19:9c:e5:2f:5d:14:21:96:55:
9f:55:53:cf:47:a9:c0:9d:3b:a1:8f:ca:0b:86:7c:26:80:f5:
43:8f:22:eb:cd:be:02:27:07:6a:45:ca:6b:56:a9:d8:df:be:
83:4a:9f:e0:00:6a:02:f8:30:a3:ed:64:5d:2c:00:dd:93:f4:
40:f0:b3:93:b2:e4:0f:1b:f7:45:62:61:48:65:8c:a9:33:4c:
a9:6c:f8:2e:b9:9a:28:9b:d8:0c:b7:db:ed:4a:4a:38:24:fa:
62:2e:3c:13:c2:2e:3e:29:80:07:b1:20:56:38:6f:a2:88:e2:
d7:9b:64:68:47:8f:47:5a:ac:d6:be:59:d4:90:2a:32:97:76:
1b:b8:62:ea:1a:e7:9e:ec:58:37:0d:e2:2b:c5:97:84:83:28:
f4:13:1c:52:9a:03:1b:02:e1:00:9d:90:95:b3:af:6e:91:4c:
f6:57:44:49:c9:9c:52:8f:22:4f:51:ed:21:0b:14:70:b5:b7:
3c:a0:cd:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:44:28 2024 by rpki-client on console-fra.rpki-client.org