Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Abso_b4VWoZixe5oDP3wyY1OvR0.cer
File: Abso_b4VWoZixe5oDP3wyY1OvR0.cer (raw, json)
Hash identifier: b3O0N5qC9WvFgHZVEABmSLF2MJqh0NHk3+nwiZL7uuU=
Subject key identifier: 01:BB:28:FD:BE:15:5A:86:62:C5:EE:68:0C:FD:F0:C9:8D:4E:BD:1D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 58A4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DACA7/517E6E4C45B211EFA5DF6D19C4F9AE02/Abso_b4VWoZixe5oDP3wyY1OvR0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DACA7/517E6E4C45B211EFA5DF6D19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 09:36:10 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 157.10.128.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Sep 2024 21:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22692 (0x58a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 19 09:36:10 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91DACA7/serialNumber=01BB28FDBE155A8662C5EE680CFDF0C98D4EBD1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d6:1f:3f:1f:2f:dd:f9:0d:c3:37:1a:0a:a1:
20:78:3f:44:49:08:ba:4f:bf:6c:86:cf:f1:b0:10:
56:04:fb:29:59:fb:26:7b:3f:a6:9e:35:11:e2:4d:
01:bb:91:2b:40:67:fe:71:ab:be:3e:f9:a4:aa:97:
76:d8:dd:c0:1e:bd:97:fb:45:00:70:a9:e8:9f:8f:
f2:86:85:2a:a0:e7:2c:7f:24:e7:4b:2d:cc:0c:48:
35:6c:2f:d8:7d:71:81:79:5c:01:0f:ea:99:05:ff:
c0:d8:39:29:7c:7c:0e:94:e5:35:e4:45:b2:dd:e8:
27:3b:26:02:cf:30:09:1e:3c:7a:6c:3b:ce:b8:ef:
69:83:8d:31:b3:df:f6:85:11:49:c0:1d:d9:4b:12:
03:05:b6:0f:8b:1b:fe:29:52:75:50:e7:f7:14:cf:
dc:d3:d4:b8:b2:a8:e4:29:71:be:2b:ca:88:4c:79:
1d:85:50:5d:8c:e6:cc:e0:86:d6:6c:f2:0f:6f:1a:
f1:ad:ae:7c:f7:79:d6:40:6d:bd:cd:af:28:60:42:
6a:9f:4a:8a:4a:8a:97:7a:44:f0:87:fe:5e:55:b1:
fb:8b:c0:c3:2f:83:5a:89:f3:29:9b:74:16:4b:d0:
9d:76:f8:6a:66:a7:e6:fa:b6:44:55:53:62:fb:fd:
16:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BB:28:FD:BE:15:5A:86:62:C5:EE:68:0C:FD:F0:C9:8D:4E:BD:1D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DACA7/517E6E4C45B211EFA5DF6D19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DACA7/517E6E4C45B211EFA5DF6D19C4F9AE02/Abso_b4VWoZixe5oDP3wyY1OvR0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.128.0/23
Signature Algorithm: sha256WithRSAEncryption
83:58:a9:5a:75:1f:b1:2a:d7:c3:17:6f:1c:f7:6f:2d:46:2c:
fe:0c:ac:80:13:7e:c3:e4:07:56:16:c8:be:e4:3f:34:4b:00:
61:d0:83:35:b3:2b:a1:ba:5e:02:d8:7c:f1:cc:4d:a5:1a:5c:
fa:d5:09:e7:bb:f1:e5:e7:17:41:9c:31:3a:20:a3:0e:3b:c5:
ac:fc:0c:ae:fd:29:d2:71:0f:70:72:3c:5b:9e:b8:4f:37:c7:
67:af:58:c9:64:ab:5c:f3:36:6d:62:99:39:f6:a1:8b:9f:f8:
ef:38:7f:06:f7:d6:18:61:2e:44:4c:76:eb:37:2f:51:22:6b:
63:c9:7a:2c:8e:f7:f1:46:f4:37:9b:20:52:b8:a1:fe:e7:b6:
06:c2:62:cd:ac:5c:8a:47:9b:08:07:f8:ef:34:14:b0:e9:28:
66:53:d6:0d:d3:bc:be:b0:26:4f:33:27:4e:db:f2:22:57:08:
07:ea:38:80:70:d5:15:78:89:4b:ad:39:95:2e:af:a6:4c:48:
60:cf:8e:0f:7c:e0:70:9b:f6:e2:27:fa:57:cc:37:ad:25:03:
43:22:d2:63:9c:79:ef:b8:1e:4a:ac:91:78:c0:a8:c7:f0:75:
de:2c:5c:61:24:64:ff:7b:3b:75:d0:7f:7c:88:92:a6:32:bf:
21:ac:ac:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 22:41:12 2024 by rpki-client on console-fra.rpki-client.org