Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer
File: 7w5JMvxot1LjQokiqT5mq-MfNDE.cer (raw, json)
Hash identifier: iSbek5MQq3Hltv53xcnwY07i5YdmUJnjb0A0ap1ncYc=
Subject key identifier: EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5662
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Jun 2024 02:57:03 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.20.102.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22114 (0x5662)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 4 02:57:03 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91B4B33/serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:10:74:a8:cc:06:55:25:45:a6:dd:e1:9e:f6:
d1:cd:fd:c5:54:1b:36:10:3c:d9:ab:1e:d8:f7:49:
6e:84:4b:29:c6:82:b7:db:d0:83:99:f9:f2:dd:52:
38:89:15:7b:02:b5:37:b9:a6:a0:8a:b4:99:d0:58:
72:06:38:aa:f1:73:38:73:b1:c4:7d:75:40:b7:77:
73:73:a8:3d:8f:e0:6d:a6:cb:cb:20:ab:7b:65:05:
5c:e3:a0:0e:8f:f4:df:87:59:28:81:b9:c5:89:59:
16:6c:b4:61:50:74:ed:c1:5c:35:34:30:f0:ff:9d:
1f:ac:02:7c:fc:f1:48:3a:1b:e2:ed:84:a9:f5:b7:
4e:3a:ee:03:ae:bc:d1:c0:0d:a4:d9:b0:88:66:d9:
45:7e:53:8e:81:71:97:95:95:74:35:4a:30:a8:12:
8d:40:81:ad:08:f6:5d:ae:78:c4:a7:88:57:17:6f:
b3:8f:30:db:aa:36:60:27:23:0b:a6:71:b5:ad:a1:
9f:2d:c4:57:70:c5:b8:88:d1:65:55:4a:5c:c1:53:
a8:4c:f1:00:b9:aa:f2:eb:99:8f:ae:16:88:20:22:
fc:6a:50:ad:6f:36:c7:02:7c:2b:f9:60:51:fc:3e:
0e:c5:9b:ba:1e:f0:91:f6:e7:a8:6c:92:11:4a:b5:
84:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.102.0/23
Signature Algorithm: sha256WithRSAEncryption
44:34:7d:94:cd:28:11:b2:be:3b:af:2e:17:9a:e4:52:2d:22:
27:8d:ab:f2:d2:a7:37:18:a3:d5:82:f6:2c:0c:3b:59:fa:4e:
df:e9:38:bc:6d:a6:3a:1c:db:e7:7a:9b:95:b1:f8:b8:1c:75:
02:34:0c:31:89:11:0b:86:ce:43:62:4b:6f:23:aa:4f:38:e2:
70:87:c5:8a:41:2e:99:68:b5:52:2d:d8:f9:23:3a:0a:d6:fb:
cc:35:e1:74:11:99:e3:f8:46:87:50:ac:f9:e8:7b:67:c8:b9:
5a:4d:dc:18:88:17:36:26:98:a8:5a:1b:ce:5e:e0:4a:c0:8c:
24:5f:35:1f:fa:45:68:43:e8:ab:0f:23:dd:b7:15:1f:48:84:
ee:c9:93:a3:98:1d:c6:1c:40:8f:ee:6e:6c:55:48:56:84:df:
20:5c:22:d9:2a:c5:2f:6d:25:41:8f:ce:b9:d2:72:16:7f:fe:
9b:f4:25:56:80:2a:8d:18:73:82:00:97:f5:ab:bd:32:16:ae:
4c:b1:f1:44:f5:e4:eb:66:8a:62:fd:92:55:f6:05:48:7b:5d:
c0:79:f5:fd:a3:0b:ee:67:e7:b3:5f:3b:ce:05:ab:13:fe:c5:
aa:da:19:1c:01:90:81:32:72:94:ac:2b:5e:07:58:5c:df:48:
d9:b1:5f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org