Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4dsvyCXsO7vnKFenPsCGoIIeIP0.cer
File: 4dsvyCXsO7vnKFenPsCGoIIeIP0.cer (raw, json)
Hash identifier: 9425B10HbXGgFaPhnhCe8tSWTw+mT2TLn9y6Rhn/nNw=
Subject key identifier: E1:DB:2F:C8:25:EC:3B:BB:E7:28:57:A7:3E:C0:86:A0:82:1E:20:FD
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B28
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Sep 2024 13:58:01 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 143.92.110.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23336 (0x5b28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 20 13:58:01 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9131589/serialNumber=E1DB2FC825EC3BBBE72857A73EC086A0821E20FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:5b:74:72:14:cc:46:15:02:db:7d:6d:d0:
2f:d0:89:3f:d2:6d:b9:68:57:e5:dc:b3:91:56:f9:
32:34:5f:06:68:ed:c3:de:a9:e2:2b:b1:e1:3d:4e:
1d:a6:bb:d3:41:da:41:53:1a:05:c2:90:18:b5:9a:
ab:91:73:81:ad:60:b0:38:e0:6f:2e:b7:1d:55:c6:
3a:8a:01:50:c9:64:2b:6d:8b:ba:11:2b:fc:8b:d5:
6b:6f:25:46:4f:a8:2f:0f:26:86:1b:46:36:61:b1:
7c:ab:ed:be:7a:e9:13:57:a3:ff:3f:14:e8:3b:40:
d0:1b:06:29:2f:e8:84:d6:ac:5f:92:0f:57:d5:8f:
ab:5c:83:f6:46:9d:4a:86:a5:99:a6:d4:43:56:1b:
57:0b:9c:e8:4f:f7:75:40:74:26:70:39:d3:8a:d8:
5b:20:90:10:ad:b6:bf:21:67:68:8d:8e:09:a3:61:
12:95:24:68:2b:3c:7f:f7:60:5a:3f:8e:74:a2:90:
5a:e8:bf:07:ca:12:52:2a:8f:57:58:a0:b5:3b:1c:
b3:75:28:2b:c6:49:bd:51:a6:d7:5e:46:a5:e6:b3:
98:4f:4b:84:26:3d:2a:ae:b7:0a:1c:cb:ef:f9:93:
96:47:b2:4d:4a:43:d0:f9:11:75:87:5d:09:ee:58:
cf:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:DB:2F:C8:25:EC:3B:BB:E7:28:57:A7:3E:C0:86:A0:82:1E:20:FD
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9131589/37E390A00CCC11EDB0993C15C4F9AE02/4dsvyCXsO7vnKFenPsCGoIIeIP0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
143.92.110.0/23
Signature Algorithm: sha256WithRSAEncryption
48:92:56:09:85:69:a9:95:55:77:8b:8c:31:7a:e6:fd:66:66:
ff:f5:23:cf:81:f2:73:dc:c1:6c:c0:e8:6c:29:ff:0d:1a:56:
30:d9:2b:19:75:81:45:c8:5c:ac:9e:b0:12:a3:8c:eb:4d:91:
5f:6c:c2:33:04:dd:0f:b9:46:64:54:45:1b:1d:71:ac:d6:28:
55:99:2d:42:f8:74:00:16:6e:1b:87:f6:dd:1a:e8:7c:d6:23:
1b:02:12:8e:9b:12:48:af:14:64:a1:a8:e1:58:e4:19:43:b6:
89:9a:f9:44:10:ae:16:80:e7:f9:f4:87:53:c9:96:67:06:be:
2c:e7:4c:10:b6:74:e9:34:12:cb:45:1f:ae:e8:54:6a:74:bf:
6a:39:f4:1b:b5:91:17:2f:b5:1b:61:6c:01:05:f6:b0:c4:d4:
76:ac:07:a7:af:78:3f:35:63:3a:d6:42:d8:10:9c:65:8f:95:
2a:3e:2c:ce:2e:10:dd:85:ec:db:c3:68:90:63:8e:42:8c:a7:
fe:e9:bd:ac:f1:d0:62:b5:b5:17:d5:c1:4b:78:7c:cf:08:30:
dd:5a:4a:8a:88:a8:dd:34:df:8b:e9:ce:87:93:c0:d6:b0:ff:
90:fe:19:89:e3:c8:c6:21:40:d5:12:98:f3:f9:3a:46:86:f4:
bb:b2:9f:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org