Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer
File: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer (raw, json)
Hash identifier: ESPtNcEo1qPJzN947MoWlCb3n1YVrjEdauBSFrc0JWY=
Subject key identifier: 13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5C12
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Oct 2024 07:32:38 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.64.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23570 (0x5c12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 10 07:32:38 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A917B633/serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c4:36:7e:9d:7f:f8:dd:e1:34:fb:2c:25:27:
be:9d:93:ba:be:f4:b2:18:40:11:9b:ed:58:42:83:
a7:21:39:ea:ad:75:70:5e:f8:ea:98:9f:77:e5:bc:
b1:cf:9d:9e:25:a1:69:d0:62:17:a0:5e:28:f1:99:
5d:37:58:45:37:d0:ff:3a:e9:64:ea:dc:40:3d:dc:
88:72:4b:17:4d:e3:48:b8:f0:ea:c3:bf:5e:87:d4:
76:08:bc:76:22:7b:06:77:15:ca:67:8e:79:b1:8f:
53:d7:11:9b:fa:af:ca:0b:f8:0d:c9:af:6e:5f:37:
2d:f6:9a:f4:f2:39:2d:0d:d7:cb:fe:06:03:b3:99:
a8:2d:38:39:58:3c:69:3d:de:5e:40:43:94:43:06:
9f:d5:c6:06:c1:4e:19:c2:46:b7:17:98:6d:c4:1f:
d1:a1:9c:5d:89:35:78:a9:b5:1f:fa:58:63:1a:e8:
82:1d:89:43:a4:0b:6a:c5:a9:db:3c:71:da:b6:36:
c6:d0:fe:8a:88:fd:30:28:8b:0f:69:5d:bd:c7:c4:
2d:ef:95:1c:4a:5a:83:69:66:70:f0:2e:7c:d7:2b:
0a:c8:e4:4c:de:ea:6d:8d:17:e3:b3:92:a2:6e:63:
fc:ce:7d:45:2a:1c:c4:d1:27:c5:d4:b1:89:99:b4:
71:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.64.0/23
Signature Algorithm: sha256WithRSAEncryption
33:b0:8a:94:a5:20:69:fb:c7:b6:84:59:60:4d:d3:f5:e1:ff:
19:c7:02:84:19:8e:7b:03:79:a6:0e:fb:df:8c:06:14:af:66:
8b:b6:6e:d8:79:22:76:14:15:65:2c:56:42:4e:33:32:a1:19:
c4:33:cd:fe:92:85:1c:20:d4:ad:aa:f5:e1:1e:42:a4:36:9c:
9e:cd:d4:4b:db:8d:c3:3d:35:34:75:81:bb:e3:6d:70:7e:e2:
a0:74:92:38:64:d7:9d:b1:b6:ce:d9:ba:4c:c0:38:cb:3e:e1:
c2:7f:3a:ed:45:fc:7a:ce:d3:aa:6f:22:ad:5b:6f:22:24:05:
ac:06:3e:28:cb:71:7f:9a:7d:d5:84:aa:ab:b2:67:cb:aa:cb:
ac:69:f2:fb:10:9d:c5:2c:3a:5e:cf:36:41:06:ca:5e:a3:f5:
5e:6c:ee:23:56:ac:a0:9f:5f:7e:77:12:76:88:b4:2a:e9:2b:
68:5e:36:f1:f7:9f:eb:67:72:47:ec:a0:56:c4:7c:11:01:a1:
85:a2:aa:b4:96:b1:94:08:d2:9b:44:e7:a1:11:3a:c7:60:82:
8f:de:06:ab:01:14:db:27:63:2a:82:cd:0e:86:74:54:4a:f4:
74:25:6e:28:16:a9:c0:88:1b:33:43:c7:85:79:4a:0f:06:d3:
be:cf:43:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:15 2024 by rpki-client on console-fra.rpki-client.org