Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer
File: 36hgRQpvzrHG57jU_1SxVBobabM.cer (raw, json)
Hash identifier: 8+MUq1d0/wSgJ/WeIu7FYMmpbMUlwj2HHuw6l7fnEBM=
Subject key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B73
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Sep 2024 02:02:16 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 146.144.8.0/23
IP: 152.147.0.0/16
IP: 157.128.0.0/16
IP: 192.189.208.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23411 (0x5b73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 27 02:02:16 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9a:47:5f:13:57:bf:24:05:23:2f:29:3f:90:
af:91:bd:de:43:e0:02:38:68:7d:86:74:a0:10:1c:
03:bf:36:c2:8a:f4:d7:e5:bd:f3:23:8d:f1:d9:0e:
b5:53:2d:18:61:de:c0:8a:a6:77:da:57:73:04:5a:
f5:9a:59:a0:1d:0a:4b:6e:8b:c3:0d:f0:9c:0e:7b:
d4:6b:3c:b9:f9:7a:b3:a0:e0:a0:c0:cb:69:bf:18:
ae:3e:9e:4e:5b:14:df:3b:73:bf:5b:b0:25:8d:bd:
d4:8d:46:58:73:c8:4f:77:29:32:e8:fe:12:c2:e9:
8f:fd:43:89:60:d7:03:a6:f6:8b:e8:db:46:c5:4a:
36:4c:e4:b6:2f:10:7c:82:66:46:c9:9b:6b:ed:00:
b6:d0:43:64:d4:6c:19:48:15:b4:f7:80:cd:36:e4:
c8:7f:35:37:d3:4c:37:26:76:f4:35:9b:9b:72:99:
d3:be:14:a4:d0:df:7f:12:6e:ec:c4:bd:19:02:49:
a2:3d:f5:95:a1:66:72:dd:5f:14:d9:e7:e3:35:c2:
ba:97:0b:e8:f6:11:d2:8c:a0:17:bb:31:b4:12:fe:
54:b9:04:d0:9c:fa:29:8c:21:f8:80:25:88:95:b2:
1e:9f:ca:dd:42:76:30:2a:65:66:76:98:15:a4:ab:
2c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
146.144.8.0/23
152.147.0.0/16
157.128.0.0/16
192.189.208.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:47:b0:8d:48:1c:5f:9d:3c:d9:57:bf:18:5f:65:89:e7:0c:
c1:82:ca:1c:3e:74:18:11:77:b9:b3:8c:1f:ac:9e:04:70:cb:
55:13:25:55:31:ae:8f:94:65:0b:60:93:cb:53:40:85:a2:66:
90:a4:1d:f1:fb:aa:08:2a:dc:9a:33:53:71:bf:51:ad:7b:a9:
3c:da:bf:7e:21:72:f4:43:0e:c2:7e:1b:7e:c0:b3:95:19:3a:
4e:c4:d3:3b:30:64:28:e3:c6:27:51:bf:82:d1:5e:28:0d:8d:
6b:b7:fc:73:c3:af:e3:19:9b:07:45:9b:39:74:47:10:78:78:
55:bf:dc:c3:62:2b:e2:45:60:a5:11:e3:27:fd:ac:46:08:54:
96:54:ee:b9:09:67:01:9c:56:c9:41:f2:7d:08:c5:17:6d:bf:
42:67:34:34:90:48:bd:fc:ba:81:2f:b5:4f:1b:9f:78:ea:22:
d5:c4:9e:8e:9f:7e:c1:2e:e5:f6:b3:21:e7:23:82:19:4d:4a:
8e:6b:09:c3:f3:8b:23:7d:5b:29:5b:9b:db:fa:14:fa:46:b4:
bc:04:6c:d6:03:df:a3:81:a9:b2:05:29:18:84:d7:43:b6:6b:
c5:d4:f4:10:94:5f:ad:92:4d:d9:6f:0c:58:0d:47:90:c3:c1:
49:ef:c4:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org