Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer
File: 9HpCypKdg34XkyvKB9ZfgiyWRMs.cer (raw, json)
Hash identifier: l4N3hsapwwBKEdFrDUfsvk2N1g/UCwMFQ5hHIcJFsb4=
Subject key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5121
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Jan 2024 10:48:36 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.50.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20769 (0x5121)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 26 10:48:36 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c1:da:08:03:d8:45:ff:d8:8b:cb:45:d9:c3:
eb:25:42:90:a0:12:0a:d3:ef:3d:07:e9:0f:34:dd:
65:9a:4a:55:52:6f:63:d6:1f:c2:23:51:12:8f:22:
94:79:84:8c:c0:82:4b:1d:36:5f:4e:f5:31:8e:22:
cb:8b:24:92:98:77:92:6a:ea:d1:ce:4d:84:eb:a1:
fa:1f:fd:36:d2:35:b3:68:7f:9a:b6:21:c1:8c:62:
f5:7d:0c:a8:a7:12:9a:19:7d:21:9a:7a:e5:d1:2b:
63:d6:31:19:5b:2e:49:e3:ed:bf:69:a4:6c:a9:e9:
0b:2c:c6:93:37:5a:72:55:e5:23:91:39:53:2b:8a:
0f:cb:8b:91:d1:ec:1a:9b:7f:de:ae:c7:e6:ad:be:
53:a6:8a:68:13:37:0d:29:9b:ae:d0:44:8a:fe:cb:
45:0f:95:a0:4d:48:40:5d:22:e0:dc:b0:85:36:ec:
47:3c:50:dc:b9:e0:74:fc:cd:ba:53:98:53:bd:13:
10:6f:e7:1a:51:f8:22:c0:66:85:68:ea:c8:91:90:
60:7a:4d:1b:47:53:62:28:88:94:a7:e1:ac:0f:18:
39:ef:36:f8:75:5b:d4:5f:91:80:e8:b9:83:f3:1f:
66:4d:16:0c:19:38:98:53:6a:06:b4:84:64:02:27:
39:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.50.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:ca:c4:86:0e:f3:5d:e3:29:88:4b:4c:d9:b3:d4:d2:72:84:
9c:35:77:2a:48:e5:1c:57:d0:74:a0:94:4e:ac:6d:c7:c9:f3:
6f:aa:41:06:8c:64:5a:45:33:a4:d3:0d:71:d1:19:98:d4:2e:
1c:5c:dc:92:fe:1f:13:25:82:1c:95:97:3c:b4:bd:28:58:77:
cc:ea:57:a8:bc:97:0c:87:4e:7d:7f:cd:8c:2f:8d:c9:d0:bb:
30:44:5b:99:c2:0f:79:6f:40:76:8e:ee:f0:be:21:2e:01:f1:
a4:02:1f:70:6b:82:f6:b5:b7:28:42:71:90:98:73:0e:69:27:
75:15:81:b3:83:62:8e:76:17:30:7c:84:31:c1:85:fe:ac:42:
cf:c9:b6:11:cb:06:62:de:2a:e2:58:e2:cf:f1:2e:48:a8:be:
4c:4c:38:5d:c7:15:86:a2:b9:5b:75:cd:c2:b2:70:78:59:0f:
3f:bd:69:1f:66:53:0b:5d:db:02:c1:84:86:0c:9f:74:f4:6e:
58:f3:dd:91:c5:ae:86:c3:86:a3:5a:07:ed:5a:fc:cd:96:05:
cb:a5:b0:08:b4:91:f0:2e:bc:e1:1e:1e:89:f4:0b:26:8e:53:
d1:f6:9d:8b:1a:8f:ad:1c:21:c5:6e:8f:16:e6:f9:4c:5a:ae:
f1:a2:86:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org