Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4dsvyCXsO7vnKFenPsCGoIIeIP0.cer
File: 4dsvyCXsO7vnKFenPsCGoIIeIP0.cer (raw, json)
Hash identifier: Uu3I11bNLsHGW2tuFX6DWSCRW6F9hvdXRgYB/OgXMDg=
Subject key identifier: E1:DB:2F:C8:25:EC:3B:BB:E7:28:57:A7:3E:C0:86:A0:82:1E:20:FD
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4DBD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Sep 2023 13:41:02 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 143.92.110.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 09:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19901 (0x4dbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 28 13:41:02 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9131589/serialNumber=E1DB2FC825EC3BBBE72857A73EC086A0821E20FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:5b:74:72:14:cc:46:15:02:db:7d:6d:d0:
2f:d0:89:3f:d2:6d:b9:68:57:e5:dc:b3:91:56:f9:
32:34:5f:06:68:ed:c3:de:a9:e2:2b:b1:e1:3d:4e:
1d:a6:bb:d3:41:da:41:53:1a:05:c2:90:18:b5:9a:
ab:91:73:81:ad:60:b0:38:e0:6f:2e:b7:1d:55:c6:
3a:8a:01:50:c9:64:2b:6d:8b:ba:11:2b:fc:8b:d5:
6b:6f:25:46:4f:a8:2f:0f:26:86:1b:46:36:61:b1:
7c:ab:ed:be:7a:e9:13:57:a3:ff:3f:14:e8:3b:40:
d0:1b:06:29:2f:e8:84:d6:ac:5f:92:0f:57:d5:8f:
ab:5c:83:f6:46:9d:4a:86:a5:99:a6:d4:43:56:1b:
57:0b:9c:e8:4f:f7:75:40:74:26:70:39:d3:8a:d8:
5b:20:90:10:ad:b6:bf:21:67:68:8d:8e:09:a3:61:
12:95:24:68:2b:3c:7f:f7:60:5a:3f:8e:74:a2:90:
5a:e8:bf:07:ca:12:52:2a:8f:57:58:a0:b5:3b:1c:
b3:75:28:2b:c6:49:bd:51:a6:d7:5e:46:a5:e6:b3:
98:4f:4b:84:26:3d:2a:ae:b7:0a:1c:cb:ef:f9:93:
96:47:b2:4d:4a:43:d0:f9:11:75:87:5d:09:ee:58:
cf:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:DB:2F:C8:25:EC:3B:BB:E7:28:57:A7:3E:C0:86:A0:82:1E:20:FD
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
143.92.110.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:24:35:02:5f:6a:4f:62:0c:a3:3b:0c:d8:2e:99:7b:92:b7:
62:8d:f5:b8:4d:f0:52:f5:0a:e6:43:41:11:51:de:9c:97:57:
15:1b:e4:cc:97:17:cc:68:f8:3b:4b:35:63:ab:c7:a0:33:96:
32:67:d6:17:37:bb:e5:5b:1c:24:bc:a1:a3:70:bf:de:66:95:
dd:36:fa:0a:44:00:64:37:3d:ef:cd:a3:09:81:82:5c:a9:74:
7d:7e:8b:e2:02:93:24:60:5e:f5:7c:8b:5e:80:60:c9:f0:95:
9e:fd:17:3e:a3:27:c5:03:f7:b5:5a:87:de:36:3f:af:19:e4:
3f:d3:06:bc:c6:aa:97:84:5c:d6:9d:90:93:9f:3c:56:e2:82:
21:81:25:cf:e0:cb:61:38:36:9a:79:e6:9f:55:82:15:fe:7f:
11:62:53:3a:dd:a9:1d:4d:cc:d0:ef:8b:58:c7:60:30:9f:03:
6e:e1:39:eb:33:67:65:24:6e:b7:7b:64:76:40:dc:25:cd:9d:
0f:d9:59:12:56:a4:9c:14:22:19:b0:92:e2:da:5a:9d:8f:ec:
b3:6d:b4:5c:11:8e:e5:90:2b:e6:1f:bf:01:bb:e7:5d:bb:16:
4a:8f:50:16:a8:31:77:05:51:8e:48:11:46:d9:9f:3e:e2:a4:
08:32:e3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 11:26:17 2024 by rpki-client on console-fra.rpki-client.org