Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8keuvQdfyMvz2bgFVp6rvueXWws.cer
File: 8keuvQdfyMvz2bgFVp6rvueXWws.cer (raw, json)
Hash identifier: ewhPsvDKsju+1pLo2pRKMm+tlAgafWnV/6vQaTcNnvw=
Subject key identifier: F2:47:AE:BD:07:5F:C8:CB:F3:D9:B8:05:56:9E:AB:BE:E7:97:5B:0B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B6F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/8keuvQdfyMvz2bgFVp6rvueXWws.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Sep 2024 11:52:48 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.96.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23407 (0x5b6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 26 11:52:48 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9165A58/serialNumber=F247AEBD075FC8CBF3D9B805569EABBEE7975B0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e9:78:0a:e9:26:98:d2:a9:3e:ce:21:8b:cb:
7c:71:7e:c0:37:e3:d2:a0:b6:36:53:c1:32:f9:28:
ea:f7:4e:19:5c:0e:59:e7:7f:0c:c7:7e:6e:65:69:
16:f5:70:19:b1:88:9b:b5:18:59:be:4e:73:93:c6:
51:cc:2f:78:89:ab:52:16:8b:ef:eb:ca:e2:84:75:
ca:2a:98:c6:53:65:44:16:5e:9c:ae:bd:39:e7:66:
66:cc:92:a2:f3:00:73:b2:1f:f4:e6:67:c5:a3:fd:
0b:09:18:29:17:b9:ec:bf:b5:d3:b0:d1:13:8a:9f:
8a:df:7f:b8:dc:c7:00:51:3e:fc:bb:27:38:f9:df:
6b:b9:d9:65:d5:13:92:15:2d:f2:2f:f3:d6:6e:62:
2a:f4:0a:cb:94:29:d7:9b:6f:1b:ec:84:96:fe:2d:
dd:62:62:5c:55:11:e9:b3:6f:38:78:fd:3d:75:3d:
11:ba:ad:8a:40:84:19:8b:bb:67:5a:a9:e6:b1:83:
07:f5:99:5a:09:a2:c1:db:a2:8b:21:42:b3:23:59:
36:ed:b5:8e:3c:42:81:62:3b:22:50:37:2a:3a:8a:
71:ba:93:eb:28:25:82:3d:11:53:41:5d:05:05:4d:
52:e8:bd:ea:a2:36:ee:ac:b5:9c:14:0e:ae:c7:27:
ce:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:47:AE:BD:07:5F:C8:CB:F3:D9:B8:05:56:9E:AB:BE:E7:97:5B:0B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9165A58/D6F105227BFD11EFA7B8EB5CC4F9AE02/8keuvQdfyMvz2bgFVp6rvueXWws.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.96.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:dd:6b:31:9a:65:43:65:bf:12:92:33:22:c9:87:9f:d2:d6:
bd:ba:af:ae:08:e2:4c:e5:ca:a4:c6:ea:07:6b:d1:36:94:9f:
f6:6c:cc:bd:2a:2b:23:c7:b2:12:cd:34:a6:cc:0d:ab:44:48:
e4:dc:98:b8:57:53:f4:d8:8d:2b:46:e8:5b:f8:70:3d:aa:4d:
f1:60:9d:63:c2:10:f6:fe:a8:a7:a1:16:00:59:a9:5a:28:a9:
64:d8:07:04:4a:2e:7d:1d:00:74:e7:e8:36:2a:a6:a9:fb:4b:
a1:36:07:d4:2a:01:6d:15:a2:a1:18:42:0a:3a:18:87:54:f3:
9c:d4:d6:db:73:1d:4a:e0:c8:8a:b8:42:22:d3:25:46:77:9a:
dc:f9:a2:9c:6c:6e:22:0a:c0:cb:11:77:df:c9:f6:74:4c:3a:
8d:ba:93:cd:7c:1a:70:8f:a5:de:e9:ce:02:0c:fa:2e:ed:81:
fb:8d:6c:7a:02:22:64:f5:f8:14:37:3a:b0:68:8c:1a:f9:80:
1f:83:63:48:9a:d5:28:9f:46:3d:73:98:51:04:75:87:3a:f2:
4d:f9:06:a2:db:b0:f3:e9:b0:26:e3:01:1a:ee:fc:fd:cc:7a:
01:20:c0:2e:be:fc:9f:38:7a:9c:01:79:f8:09:f5:1b:77:74:
dd:20:ba:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:15 2024 by rpki-client on console-fra.rpki-client.org