Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3tdhLc0WClbGF4QCXEspBELPNb4.cer
File: 3tdhLc0WClbGF4QCXEspBELPNb4.cer (raw, json)
Hash identifier: Z5ONxuGdK499zWh5AZdXNaiETeFAROd3XURixAf+13k=
Subject key identifier: DE:D7:61:2D:CD:16:0A:56:C6:17:84:02:5C:4B:29:04:42:CF:35:BE
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5063
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 14 Jan 2024 06:23:51 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 157.10.176.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20579 (0x5063)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 14 06:23:51 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91EC8F7/serialNumber=DED7612DCD160A56C61784025C4B290442CF35BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a1:97:7a:e0:f2:f3:b8:14:ac:e3:a2:59:28:
c0:dc:b1:6d:bd:aa:24:1e:c2:cb:4d:43:59:98:35:
2d:b2:dd:14:13:30:a8:21:be:06:8a:2c:91:18:f6:
f8:6b:93:ed:7c:a6:13:86:ce:28:ec:4a:92:f1:5c:
6e:b8:f9:f0:19:b5:03:60:3f:40:ff:5d:98:b2:11:
4a:76:54:43:7d:9a:40:c5:4e:17:71:1c:8e:90:81:
8c:63:ac:91:75:87:99:6a:1d:25:51:c1:8a:44:05:
4d:83:8d:41:a8:1f:0c:d7:d1:e1:ba:30:a2:dd:c9:
e9:36:af:e8:84:2b:9c:9f:2b:7a:14:dd:3e:91:65:
c0:23:52:16:47:e2:ab:da:ed:d6:5c:97:b4:f2:84:
99:df:29:2b:33:67:68:4a:be:e2:b7:b3:3d:49:17:
6f:77:aa:1d:92:e4:4c:38:07:04:03:73:8f:3b:51:
c3:8b:77:1e:2f:92:2e:72:e7:ff:8a:28:ac:0c:9c:
64:a1:00:01:e3:a7:84:f8:51:2f:d2:fb:13:f2:c4:
97:96:08:03:98:3e:d3:86:69:bc:73:b7:6a:08:d8:
aa:7c:0c:86:6c:5a:05:65:c5:4f:e5:ce:e9:17:b7:
92:46:e2:68:dc:64:08:42:db:04:0b:aa:69:78:f9:
da:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D7:61:2D:CD:16:0A:56:C6:17:84:02:5C:4B:29:04:42:CF:35:BE
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EC8F7/7786E57EB2A511EE90DEA220C4F9AE02/3tdhLc0WClbGF4QCXEspBELPNb4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.176.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:ca:40:63:be:9d:78:c5:b9:47:4e:04:a8:07:fa:de:4a:d0:
28:94:e7:01:d7:c6:b2:65:3b:9b:d0:a7:78:9b:af:ab:26:9c:
aa:1f:d0:ee:99:ee:1d:93:0d:81:28:d3:26:60:a3:fa:eb:85:
9d:49:e7:ac:8f:0b:eb:1f:41:13:3b:74:3a:24:a2:0a:ba:2a:
91:b2:83:a6:89:e6:7f:88:b7:cb:98:60:2f:db:56:5c:e1:63:
73:60:33:83:2b:a3:69:12:8c:86:af:ef:0d:3d:ed:7d:40:b1:
51:d4:14:e1:d7:db:39:97:57:a0:d2:f5:a0:5e:dd:5d:f3:20:
83:2c:03:b6:4a:87:6a:36:16:5c:be:ff:d2:ab:54:35:7f:8c:
96:27:0e:69:9e:4a:43:b7:47:56:59:94:f5:e5:02:2a:17:ef:
9e:65:25:6c:a1:f5:99:7b:01:10:fc:a4:77:d2:e7:0c:00:c2:
0c:1c:61:de:e2:1f:c1:09:1d:ae:5a:e3:f7:eb:90:b9:ef:e4:
0a:e0:a0:db:0d:e4:d6:4d:16:41:cd:10:b1:8e:13:66:81:93:
93:38:8d:37:91:e0:30:d1:39:85:b7:b1:c3:02:2a:6a:53:2e:
ce:0f:34:b5:99:65:9a:78:e2:a4:5b:9a:d3:84:8e:35:29:37:
27:b5:cc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:32:39 2024 by rpki-client on console-ams.rpki-client.org