Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer
File: 3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer (raw, json)
Hash identifier: vuRnpmVTkVjGW+PVNwa9ZMgZPo6yY60NQF/C+eAkHkw=
Subject key identifier: DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4F1D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Dec 2023 13:08:01 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 45.89.176.0/22
IP: 45.157.88.0/22
IP: 134.236.0.0/16
IP: 147.78.152.0/22
IP: 159.192.0.0/16
IP: 192.145.20.0/22
IP: 209.15.96.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20253 (0x4f1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 2 13:08:01 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9125475/serialNumber=DE9D64016291EA2A16F3B7956A0F4035B709E547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:a1:2b:92:6c:2f:0e:78:d2:2a:fb:c9:ad:
b9:a4:79:5b:88:a5:29:ef:fe:e6:dc:c0:66:08:9f:
d9:aa:9d:a6:ae:70:06:06:64:96:72:d6:62:46:f8:
a4:e7:2e:b3:78:c3:b0:2e:8b:76:66:14:dd:97:53:
82:09:6a:5b:37:5b:aa:b5:81:e2:b2:49:34:ff:00:
5f:99:a1:11:7b:d0:ae:ef:45:55:92:f0:41:bc:46:
0d:4b:61:ef:3e:f1:ae:be:d0:cf:38:b2:63:27:5f:
10:d1:9c:8a:7a:4e:fa:23:c2:62:17:fe:e4:01:8f:
d2:52:1a:ec:dc:7e:f9:84:8d:bd:a6:ff:d0:66:c6:
03:fa:ec:b0:c0:dd:8e:10:63:bd:63:54:71:93:0d:
22:5a:fa:04:2e:6f:98:6a:e7:49:bb:80:02:93:de:
5f:9b:7c:75:8d:d0:cc:ae:a2:fa:d6:d0:2a:6d:e6:
d7:5f:89:c0:a8:af:d1:97:01:f3:72:f0:87:41:bb:
67:e0:8f:5e:62:1a:3d:2e:f3:61:46:c6:3b:1f:10:
a7:75:fb:53:ad:28:86:0f:41:a7:15:b9:d5:37:56:
f3:f2:13:e8:fc:32:1e:19:cd:b3:a4:e4:b6:6d:60:
03:68:7b:d0:44:b8:e2:67:8f:a7:85:c0:de:35:70:
b3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.89.176.0/22
45.157.88.0/22
134.236.0.0/16
147.78.152.0/22
159.192.0.0/16
192.145.20.0/22
209.15.96.0/19
Signature Algorithm: sha256WithRSAEncryption
8b:11:3b:4c:fe:76:b9:a8:08:f1:9b:d8:85:61:f3:35:73:dc:
60:9b:29:78:fa:49:3b:f2:bd:b0:46:16:9e:07:00:e9:75:52:
65:0c:db:7e:f2:73:1e:72:62:3b:61:0e:df:47:0a:be:a3:2f:
c0:66:2c:78:22:77:21:b4:9c:6c:e6:58:6c:38:62:2a:c7:63:
60:56:86:70:ba:ed:21:81:ec:47:d8:45:04:2a:e2:34:f8:f9:
df:09:ff:08:be:89:29:3d:3f:eb:64:c6:38:6c:60:a7:de:50:
7c:dd:94:65:dc:24:24:7e:dd:2b:28:96:18:4c:ab:0b:f4:38:
38:e0:ff:ba:ee:a2:95:84:32:f7:ba:ba:d1:6b:a7:db:6d:b9:
9a:74:64:61:d5:22:8a:a6:f6:5b:ef:0b:b9:e3:d8:e7:01:33:
05:ba:7d:2a:b3:34:fe:76:cd:fd:18:69:4a:10:c4:8d:38:cd:
43:bd:77:ee:b9:b9:90:9c:1a:fc:af:c1:44:f5:7f:d6:99:f3:
b6:c4:6a:dd:89:d8:aa:2c:ee:22:f5:8a:b0:30:e0:ea:09:76:
4f:1f:ff:e0:d8:de:45:75:b6:0a:47:9e:fe:c0:91:2f:3f:6d:
bf:d3:b0:42:21:cc:15:fe:05:5e:4d:b9:01:f7:a6:4d:72:2a:
3f:22:87:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org