Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ALcq1TM86q4aWFyCgInERVmZY_I.cer
File: ALcq1TM86q4aWFyCgInERVmZY_I.cer (raw, json)
Hash identifier: WZ7n33ij61AGCIoZ8QPm/OYterzWylbwRtRzokFWN60=
Subject key identifier: 00:B7:2A:D5:33:3C:EA:AE:1A:58:5C:82:80:89:C4:45:59:99:63:F2
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5E2D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/ALcq1TM86q4aWFyCgInERVmZY_I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Nov 2024 11:06:19 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.48.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24109 (0x5e2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 21 11:06:19 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91380F7/serialNumber=00B72AD5333CEAAE1A585C828089C445599963F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:54:cb:81:83:c2:43:34:2d:de:8c:18:d4:32:
80:3a:de:65:6b:41:c6:5c:f4:28:4a:ea:41:d1:11:
43:ea:4b:1a:cd:21:e0:74:43:9e:96:97:0c:e8:9f:
bd:90:34:37:bf:5b:5d:49:59:af:a9:73:b1:81:c5:
80:97:7e:b3:71:c5:48:78:92:77:1f:74:52:58:83:
4b:7f:9c:7e:18:2b:50:7c:50:8c:b0:ea:49:f1:e3:
47:f0:d8:df:9e:53:7f:9e:98:59:ef:4e:32:3c:ac:
b9:5a:8b:51:93:09:d7:03:58:29:91:1d:d0:76:4f:
96:9f:62:1c:b9:fc:64:67:79:51:6d:8a:c1:53:13:
76:2e:38:cd:fa:6b:72:62:14:fc:7b:87:3f:88:f3:
0e:ca:3b:c8:b1:4a:2c:de:6e:2b:3c:67:2d:a6:32:
2a:f5:0c:89:07:13:7c:cb:4b:cc:d2:fb:4d:b7:49:
ed:b2:18:ff:a9:5f:54:79:32:6d:ba:3f:63:d7:16:
d6:12:c8:df:00:d2:b6:f9:c7:4f:36:3d:fa:f7:db:
5c:45:d9:fa:fe:22:05:a8:1d:9d:db:ab:bd:81:45:
40:42:82:cc:16:76:90:64:db:c6:16:b1:3f:10:3d:
12:0c:23:ad:8f:bd:78:bc:6d:31:71:13:24:32:d5:
c7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B7:2A:D5:33:3C:EA:AE:1A:58:5C:82:80:89:C4:45:59:99:63:F2
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91380F7/9F768AFAA7F811EFBB44F371C4F9AE02/ALcq1TM86q4aWFyCgInERVmZY_I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.48.0/23
Signature Algorithm: sha256WithRSAEncryption
50:91:0c:d2:71:cc:50:be:9c:3e:6c:9c:ab:29:db:db:5b:79:
d7:09:ed:b1:be:17:fd:16:50:68:9c:82:be:ce:15:a8:d5:45:
24:53:6d:45:71:14:2b:7d:3e:83:83:2f:65:2f:66:16:e0:4c:
6b:93:41:fb:e8:3b:a2:0f:26:c2:4f:a1:6f:96:dd:e1:03:e1:
96:43:1c:fb:48:15:d8:fc:b9:23:2e:bf:d4:68:00:a3:80:3d:
9c:02:7e:77:91:5f:10:2f:93:19:e6:32:b6:fb:5d:0e:0f:37:
99:f7:86:c4:f2:46:33:92:4e:b4:1c:78:7f:15:7e:33:14:73:
56:53:f9:80:f6:b7:07:61:20:bc:d4:cb:38:e9:3f:f5:01:89:
d2:d4:84:8d:e0:da:2f:c1:cd:fd:35:d3:53:02:2a:b3:6d:9d:
af:d5:ab:3d:08:66:5f:a8:aa:3c:61:21:d9:18:97:26:8b:7e:
b6:60:67:68:51:7b:f3:41:0b:69:b2:e9:1c:9c:8b:c1:4d:a3:
5a:30:02:c3:07:d8:eb:d4:90:a6:b0:a7:d9:05:5c:cc:51:2c:
54:f4:7c:bf:b3:36:ed:03:a8:1a:32:99:0b:19:a8:d8:28:9b:
3c:7e:28:19:d2:68:db:d1:77:4a:45:f2:45:6d:e1:62:97:d3:
fa:7e:8f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org