Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer
File: F2vOFchi1HunYKH2ZTj4HVxJO4E.cer (raw, json)
Hash identifier: QTSx7RPlVFp7h3uRpsGW7DXDxZaXAKdomBmjJHisCA8=
Subject key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5E19
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Nov 2024 14:40:23 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.228.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24089 (0x5e19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 19 14:40:23 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8b:51:82:c1:a9:ad:ec:ff:ef:36:67:91:4a:
b8:ff:c8:5b:b6:eb:32:96:ea:8a:4c:b2:4f:51:07:
12:99:ae:db:a7:a7:40:d7:a3:f0:a6:49:a0:60:1a:
e0:4f:1f:5c:70:4b:ac:cf:7d:76:c7:7d:f7:80:a3:
74:75:ee:29:f2:39:ed:77:a9:08:4e:15:43:60:fc:
e9:b1:20:f6:42:1f:51:c9:e6:c9:c4:ca:e3:47:94:
ea:e5:8c:12:a0:2e:28:d8:d9:9c:a3:11:69:b9:00:
ed:93:8b:61:bf:d3:06:eb:15:6c:83:da:dc:0d:5a:
61:f7:32:02:f0:ab:b3:78:5e:b8:fe:ce:88:ba:e7:
3f:6f:63:cf:39:10:f7:c7:a8:eb:96:41:0c:3a:e3:
70:55:6a:8f:71:f5:c9:56:20:11:6e:48:13:cd:5e:
cd:6c:49:f7:c4:a2:bb:7d:fb:88:7e:88:84:75:e9:
0f:12:92:92:02:02:d0:bc:e4:b8:60:8a:cd:ed:eb:
f6:81:10:84:cc:f4:5f:56:ea:0d:39:b7:82:d4:a8:
b7:b9:85:15:99:4f:6f:6f:4c:e9:34:09:df:9f:35:
87:c0:f9:90:9f:3e:ad:8b:6f:3a:b2:5b:b5:74:5b:
d1:c1:e0:4c:15:80:c1:5b:2d:96:80:d3:e4:76:6c:
a5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.228.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:0b:86:93:60:0f:62:34:bd:3f:8e:e2:af:25:6d:00:4b:e0:
21:51:e1:97:7d:a1:c6:1e:c8:c7:19:0c:d3:dc:de:db:95:4b:
70:34:e6:ea:01:b7:ad:58:23:b3:43:72:ef:9f:60:57:b1:bf:
3e:0e:6a:fa:7e:59:40:f0:ab:7c:62:bc:d5:4d:83:8b:f2:66:
3d:8e:0e:dd:51:e7:74:6c:28:8f:ab:b1:72:7f:5e:c5:4d:17:
78:ed:21:44:82:45:f0:3f:51:3a:3a:1d:6b:25:de:9b:bd:3e:
69:28:26:79:50:e0:a9:7c:e4:78:39:58:75:1f:24:be:c0:44:
67:92:ad:c8:e2:c7:e4:76:3a:95:1b:40:43:6b:29:ee:9b:ab:
e7:24:72:b0:38:c9:4c:21:18:38:07:ab:64:08:21:f5:11:33:
b7:2b:4f:d0:1b:9b:38:bb:20:4f:79:94:5d:5a:de:9e:af:44:
72:fb:06:7c:ab:01:28:c5:b8:dc:6a:ed:01:0c:b7:d1:9a:e1:
fa:58:71:d2:50:8d:74:bf:54:e1:18:65:2f:32:04:3e:fa:f9:
9d:fe:e4:39:3b:e8:95:11:86:a0:4f:77:33:6c:ef:c8:f3:d6:
51:32:ab:1c:14:22:6a:01:b0:36:51:cf:38:ea:f5:be:35:57:
ff:4c:48:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org