Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer
File: EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer (raw, json)
Hash identifier: x88HjIoy8SZC7bBE/zJYql1A+1ElKfrrDRIt49hC/3Y=
Subject key identifier: 12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 512E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 05:33:40 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.52.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 May 2024 00:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20782 (0x512e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 29 05:33:40 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A913C07A/serialNumber=1218DE75B2588B6633A6BF88CD388F31C43AC9C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ce:5a:44:69:0a:0e:35:dc:bc:56:50:ed:1d:
5a:23:46:06:d0:37:7e:7f:d9:12:e9:d8:0d:72:cb:
4f:4e:04:ee:ae:2c:2b:f7:56:ce:5b:4b:a4:51:28:
c2:00:74:9a:58:36:d0:ad:df:94:52:48:77:1d:c1:
b6:38:1d:bc:db:90:b0:c8:c9:1a:7d:c3:09:c8:2e:
73:42:ec:a7:08:58:c1:c1:71:31:03:9d:b8:89:ab:
4c:be:25:aa:03:2e:65:e0:a3:5f:07:77:03:a0:2d:
31:16:33:2c:cb:85:13:68:a3:f8:a3:87:95:cf:8c:
0f:d2:14:40:fa:a3:3b:16:95:a8:f8:7c:ce:84:f4:
53:20:6e:6f:f1:a7:5a:cc:2b:df:30:70:9d:2e:9c:
94:01:bf:10:b3:e0:21:d0:da:fe:ce:26:be:45:48:
59:21:1e:a3:11:ab:c9:e5:ca:4a:90:55:9c:8f:de:
49:e7:b9:35:2d:fc:ee:e4:dc:da:7b:06:95:c9:29:
b5:ae:eb:a3:4c:ca:82:d0:8a:49:bd:0a:ec:b4:e5:
96:a8:b9:40:b7:47:b7:8b:d7:cc:c3:3b:93:57:08:
a5:ca:83:1a:bc:11:05:ba:bf:1f:23:ad:ca:c8:58:
fe:d5:f7:4a:b1:a5:09:42:dd:2b:cf:8b:dd:3b:60:
10:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.52.0/23
Signature Algorithm: sha256WithRSAEncryption
10:53:ad:2a:22:51:0a:4e:64:0b:54:b3:db:29:98:70:6b:e9:
ae:80:8e:81:02:e7:7d:4b:b6:e3:cd:6b:b1:4c:37:1c:79:9a:
4d:bc:81:a2:38:21:04:dd:5e:5e:a0:e9:cb:11:8c:fe:e7:50:
8b:26:71:54:e1:27:cd:4b:7b:28:6d:1a:3e:64:07:7d:14:bc:
fe:17:21:7f:4c:3c:fd:32:7c:a5:0a:3e:c8:e2:f1:14:df:cc:
81:8b:da:a2:5f:93:a7:02:26:88:ae:58:8b:5b:82:29:a9:85:
5f:70:75:c3:ce:0f:fb:a9:0c:b0:94:12:14:c3:0f:d6:40:97:
fc:ef:21:61:32:dd:74:81:9f:6f:33:7e:5c:5a:91:34:22:1c:
dd:11:08:e8:c1:69:83:01:2e:48:1f:90:20:d0:5e:45:3c:d5:
81:b4:19:d1:bc:30:46:32:db:85:1e:99:29:96:a3:77:b8:ee:
b0:64:32:19:63:57:3a:b1:ca:70:09:16:5e:5b:58:a5:63:49:
1e:4f:ad:92:b1:8a:6c:7a:63:bc:83:f9:75:14:fe:e4:6c:33:
94:88:dc:d8:b9:a6:e7:a3:cc:c2:2f:dc:d5:da:db:eb:05:a5:
30:fa:e8:d6:5c:04:f9:44:c1:ea:ef:32:f3:8a:f6:79:cf:b3:
e8:a0:59:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:38:03 2024 by rpki-client on console-fra.rpki-client.org