Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.cer
File: 9tN5MCd1HGL4q7kIhuqT9Jsz9kw.cer (raw, json)
Hash identifier: gNIMFuCYThkQRWTF/RdcOGzhDtFf6kXFImHTKu065NA=
Subject key identifier: F6:D3:79:30:27:75:1C:62:F8:AB:B9:08:86:EA:93:F4:9B:33:F6:4C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5E7B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 03:55:26 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.94.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24187 (0x5e7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 03:55:26 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91921AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fd:ee:f2:d6:9c:0f:f0:97:28:1a:bc:6e:e6:
03:5e:43:d4:b6:a4:53:7d:77:ad:cc:55:fa:09:0f:
18:e3:03:6d:7d:e6:83:b4:07:c8:c1:cc:96:39:93:
a3:12:70:0c:9d:c2:47:d7:e7:9b:63:ea:fb:44:7f:
11:6e:a9:7f:f2:66:c1:f6:d0:b9:69:e3:c4:97:83:
f3:c0:6c:80:c2:b1:0d:57:4c:40:04:86:ac:3a:06:
e7:b2:1c:26:f2:9d:82:bf:a8:6f:83:5b:c9:e2:fd:
2d:4b:53:81:cd:bb:97:4c:f3:fb:a5:4b:4b:43:d9:
e7:84:92:07:1e:16:9f:22:55:fc:26:51:f7:f2:0f:
f1:70:18:14:7d:45:37:70:38:b8:0f:e7:6a:bd:81:
10:9d:2d:25:95:ff:7e:01:c0:5c:8b:84:68:40:89:
e7:3e:88:3d:fe:01:90:3d:6f:73:44:bb:29:08:f3:
93:8f:e2:57:d8:e9:d1:11:67:e0:28:2d:4c:d5:ef:
eb:aa:c5:2d:5e:17:12:9b:ec:40:5f:9e:bc:92:65:
af:94:b2:ee:30:57:4e:9b:08:fa:0b:6e:13:b9:6a:
cd:5b:d3:9e:f0:d2:e3:af:13:18:7d:10:19:14:51:
99:9b:ef:2a:5d:7d:0e:bd:15:d3:d5:76:ae:16:ea:
d4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D3:79:30:27:75:1C:62:F8:AB:B9:08:86:EA:93:F4:9B:33:F6:4C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.94.0/23
Signature Algorithm: sha256WithRSAEncryption
70:91:77:41:29:cb:78:fd:29:94:17:38:b4:7f:25:09:a6:61:
3a:2f:ee:a7:f8:ad:86:58:56:c7:d0:4b:b0:9e:5a:66:eb:59:
e9:46:3a:44:4c:46:a6:b7:02:d6:d8:88:b2:32:39:43:18:ce:
73:7e:18:86:c6:27:b4:2a:3c:43:1e:63:d5:2a:4c:64:c6:43:
35:d5:4a:bd:e7:c0:2b:49:89:2c:aa:d7:2e:d8:eb:3f:6d:7c:
b6:59:45:98:c0:98:2e:65:7b:d8:8e:bb:22:74:f3:62:44:42:
62:e7:44:ae:8d:4e:24:08:ae:67:76:bc:29:91:95:c9:5a:6a:
e6:d8:12:fa:b6:45:4d:f1:77:12:95:e0:3b:1f:e9:ca:7b:93:
a4:b4:7b:30:d9:52:c2:d6:1c:43:76:c6:17:17:5b:ac:f2:4a:
58:94:e7:fe:09:f0:cb:bb:c9:3e:9f:c1:9b:f6:ec:d0:f2:8b:
50:4a:aa:fe:50:68:73:e4:4a:28:16:54:21:9c:ba:cf:d6:10:
fa:2e:84:12:02:7d:6f:f8:be:40:a1:5b:56:83:de:29:be:65:
c9:f9:03:54:30:ef:f8:16:88:ac:79:8a:00:70:b1:0a:35:dd:
a1:58:28:35:f9:01:dc:1b:f9:c8:d2:99:37:11:a1:d0:ea:26:
6f:11:35:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 17:01:09 2025 by rpki-client