Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.cer
File: 6TZ0sfO2kWsrY2O4Yda3ezkF3dg.cer (raw, json)
Hash identifier: PvQEKNimvnAaMLzI4YmHkiTBuwbuXzRYAcecc7Adm1g=
Subject key identifier: E9:36:74:B1:F3:B6:91:6B:2B:63:63:B8:61:D6:B7:7B:39:05:DD:D8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4E13
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Oct 2023 17:11:09 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 192.173.16.0 -- 192.173.24.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 28 Apr 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19987 (0x4e13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 11 17:11:09 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91889B6/serialNumber=E93674B1F3B6916B2B6363B861D6B77B3905DDD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:22:38:8d:20:d7:29:34:14:de:88:f9:69:d1:
ac:2f:f0:0b:2c:62:57:c0:35:b8:de:be:0c:e0:92:
c3:4e:9f:f9:5c:24:1b:bd:aa:3c:46:3a:49:59:02:
25:d1:4e:60:d6:09:d2:f9:4e:18:fd:9e:77:06:d2:
c7:b1:fe:33:c9:06:85:88:bc:92:ae:23:ef:3c:2a:
37:7b:2c:a9:50:af:b0:22:95:e9:7f:f5:ce:cf:ce:
c5:88:5c:2b:40:9f:04:1c:0d:d1:68:64:e1:bb:b2:
fc:2b:45:89:c6:33:49:cb:49:1b:44:56:07:da:00:
ec:b9:28:09:a8:61:4f:67:ad:5c:99:bc:3c:8d:a5:
b3:23:0d:44:33:6d:ae:fc:f7:15:98:a2:30:04:9a:
02:2c:c9:8c:15:4c:db:7c:9d:f1:06:31:ee:a6:ca:
88:bf:48:e1:65:eb:50:c3:f5:0f:63:4b:12:ae:5e:
09:8c:ee:ce:8c:c2:31:99:1f:71:a7:ce:c6:56:81:
d3:ca:f1:58:f1:86:fe:8b:74:9f:f9:f6:1e:bc:4a:
e7:67:40:61:77:c8:70:fb:5e:07:ba:a1:cf:66:2e:
51:2f:28:58:64:4e:c3:ef:52:19:b5:9c:d6:55:31:
2d:44:c4:66:81:f1:2a:30:8a:54:98:95:ae:5c:32:
45:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:36:74:B1:F3:B6:91:6B:2B:63:63:B8:61:D6:B7:7B:39:05:DD:D8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.173.16.0-192.173.24.255
Signature Algorithm: sha256WithRSAEncryption
ab:71:be:3e:be:0e:67:ce:ec:f1:ab:f1:db:16:b9:68:e1:c5:
2d:95:00:8c:e1:a0:43:8c:42:1f:3e:75:d7:5c:52:71:77:59:
b8:6c:3c:f7:12:8d:cf:45:ac:38:39:97:ad:6b:88:72:e2:d2:
06:df:5c:5f:bf:ad:a0:15:1a:06:05:7e:d9:f8:22:b0:03:64:
ec:cf:14:b8:99:51:22:d8:a6:ac:d8:4d:03:fe:60:08:98:61:
91:37:47:5e:8d:11:28:82:1f:1b:89:d7:df:7f:4a:34:51:29:
32:16:5c:46:17:8c:8d:31:57:56:5d:76:f3:e7:ea:f4:71:e4:
4e:1b:37:40:35:d6:a8:e4:af:ed:4c:51:4b:66:e2:f7:8b:4b:
7a:87:f9:1b:28:be:68:7f:bb:e0:01:82:d1:0e:6a:16:8f:a1:
7e:da:99:0d:50:91:8a:9a:ca:01:3b:dc:f8:e3:2f:fa:4e:f8:
e8:80:63:d8:2e:0c:37:71:87:18:7f:0d:1d:d5:a6:94:87:a2:
25:56:b6:97:63:a9:f6:6d:7b:b2:db:00:ac:de:af:b1:51:5a:
65:87:28:1f:eb:ab:be:b8:46:88:22:48:1a:29:df:b7:56:7f:
63:b8:bc:25:e1:95:b0:4b:70:50:e5:15:8a:ec:42:43:98:2d:
d9:7e:dc:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:05:41 2024 by rpki-client on console-ams.rpki-client.org