Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/480mJgfLdDTJiY967Pbnw2o09pM.cer
File: 480mJgfLdDTJiY967Pbnw2o09pM.cer (raw, json)
Hash identifier: +PcADmlt7O67wjapkoeRtFpFyKgPbjSRzEyj0b8poBY=
Subject key identifier: E3:CD:26:26:07:CB:74:34:C9:89:8F:7A:EC:F6:E7:C3:6A:34:F6:93
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5461
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/480mJgfLdDTJiY967Pbnw2o09pM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 07 Apr 2024 16:39:45 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 192.69.116.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21601 (0x5461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 7 16:39:45 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9183B33/serialNumber=E3CD262607CB7434C9898F7AECF6E7C36A34F693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:46:90:83:ca:70:b6:06:96:21:4a:9f:a2:58:
03:af:72:68:6e:ba:5c:ff:9b:b1:5e:b0:b6:f3:8f:
16:a4:ab:5c:1a:e3:97:a6:83:5f:95:37:3e:0d:55:
f5:c3:7b:9d:4c:52:66:b6:e4:e5:ba:6b:01:7c:e6:
77:07:4a:dd:63:ec:ab:d0:06:de:83:04:ea:40:8c:
d5:7d:d5:22:b8:90:a2:a1:c4:9a:3e:ef:e0:75:8c:
94:19:69:96:9d:fe:0c:cd:63:9e:c2:08:eb:a1:47:
33:b3:45:38:51:ca:4f:18:5c:96:9a:bf:7b:ec:d9:
c5:81:e1:70:be:d2:2c:cc:27:5b:91:3b:12:40:09:
cc:f3:66:77:34:7c:17:16:0e:8b:1e:6a:a4:86:31:
2a:5c:dd:c4:1c:52:a9:d6:5d:ac:7f:e3:4c:31:54:
c7:fd:2d:39:cc:80:3c:7e:19:bd:bc:da:c3:5f:1f:
c2:bb:4f:3f:98:5b:f8:89:ca:a6:b1:79:62:32:3f:
4a:f3:a1:ca:c6:cf:5b:e2:08:6c:ed:23:29:f1:3d:
5b:26:58:cf:ff:38:86:9b:4d:1f:0d:b8:23:5e:32:
88:4a:00:9f:df:01:e0:67:c3:b8:1b:11:07:25:42:
61:96:83:31:7b:6a:44:37:ad:49:3f:79:67:84:33:
29:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CD:26:26:07:CB:74:34:C9:89:8F:7A:EC:F6:E7:C3:6A:34:F6:93
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/480mJgfLdDTJiY967Pbnw2o09pM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.69.116.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:a3:04:7b:df:cf:48:6f:8a:e6:d4:60:03:09:4b:e2:2a:04:
03:38:31:ae:a7:14:61:29:af:9f:7a:76:06:0d:d9:2b:4a:98:
a4:61:61:50:24:6d:f3:42:ae:79:34:67:91:49:09:e9:39:12:
f8:73:a7:da:83:71:83:8f:9f:88:d1:cf:bf:35:86:53:f9:1f:
fb:69:2b:94:e1:e1:48:e7:4d:0f:31:82:1a:3c:1e:24:d6:9d:
df:0c:c3:31:56:c7:5e:53:ed:83:da:f2:f4:a3:fd:49:f0:4a:
6b:f7:33:1e:45:59:91:b3:77:0b:ae:93:07:16:00:1c:ab:91:
af:e9:a3:ac:a5:ab:4e:00:54:64:41:f3:b3:b5:5f:bd:de:ac:
f0:64:9f:02:be:0e:0f:69:24:f2:8b:ef:76:2c:1e:d8:ae:b8:
10:43:fe:97:ff:3a:6c:68:fd:d4:1e:7d:0f:a9:6c:93:a4:08:
2c:25:2e:26:ce:c6:21:57:50:17:46:5d:d0:a7:e5:1f:1c:7f:
e3:23:8b:f3:c3:a4:ef:1a:40:aa:6b:b0:17:42:cf:23:72:da:
4d:9e:33:16:74:5d:3a:34:4a:86:09:4b:1b:00:a0:5f:0a:a4:
47:45:39:d7:c4:7b:cd:92:74:cd:1c:95:ad:72:ed:e0:aa:8b:
6a:99:43:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org