Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer
File: HT2u99J4g3Pt38sa1cTCNWxXre0.cer (raw, json)
Hash identifier: WGkE8yPk5NU7xT9/uGArQciFvyxZ1hL2Izfgh+C7YsQ=
Subject key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 60AE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 10 Jan 2025 10:24:02 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.154.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24750 (0x60ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 10 10:24:02 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91F0578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6c:87:09:b5:2a:83:30:92:cf:06:a4:db:68:
70:d1:23:c5:03:d5:4d:99:dc:4c:96:65:1a:35:99:
43:0c:26:7a:6f:47:67:ec:53:44:f3:20:42:9e:f6:
b5:a0:64:82:7a:68:35:98:b1:b1:b1:27:bf:9f:ab:
e0:18:04:cd:ca:8a:19:af:3e:db:42:7c:7d:c3:03:
68:7f:11:81:c5:66:58:97:87:32:42:5b:b4:df:0e:
ef:90:1f:16:33:13:9e:68:00:72:e9:0e:13:dc:bd:
e8:f8:76:17:1f:1f:bd:b7:fe:aa:bc:0c:24:74:a6:
91:58:a3:0e:88:c0:5c:53:f5:7b:c3:8b:7f:2f:04:
58:cc:d4:0d:61:bc:b1:71:87:69:26:1a:93:83:e7:
f9:e9:30:7c:c4:f2:9a:68:4d:9e:4a:33:76:ac:9c:
fd:cc:3f:9e:51:86:4e:64:54:27:2a:06:af:c8:e2:
3e:e2:4a:c0:64:fc:c0:b0:94:34:21:0a:0e:19:7d:
bd:99:90:4f:78:38:39:6b:ab:5d:e9:f5:ed:42:5f:
e8:1c:69:36:b6:bd:f0:d7:b0:74:7f:80:88:85:09:
e6:31:71:70:7d:8b:4b:c0:3e:5d:5c:b4:e8:c1:f5:
72:63:cc:3d:8b:43:ff:b2:5e:81:c9:2f:5a:5e:91:
80:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.154.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:fc:61:3c:98:fb:bb:81:a0:15:9b:e1:df:73:61:48:f6:8d:
eb:cd:f9:08:af:34:92:73:39:e0:23:f4:e6:e0:6b:22:a8:90:
a0:65:e5:b6:42:82:8d:e7:b8:10:ec:f8:39:92:a2:a7:3c:cb:
c9:2c:15:11:e8:83:f8:b4:e3:b4:fe:59:35:86:a4:53:32:b0:
c0:d5:7e:57:b6:f0:e1:54:cc:53:f8:98:bc:b8:cd:f3:79:22:
ca:6f:51:2a:0a:19:4b:e6:5d:9f:af:cd:92:57:c6:8a:76:a0:
f7:2c:1c:4f:59:f5:0c:90:96:20:81:f3:ee:24:2c:bd:3a:52:
7f:de:ef:93:b8:71:7c:bd:fa:73:6d:23:68:93:84:1f:aa:a0:
eb:6f:e2:76:ab:47:bf:3f:33:8c:7a:85:c8:ce:50:4c:a9:e2:
b0:d8:c1:78:dd:23:a3:c8:69:c7:c6:02:37:89:c7:b0:5c:e9:
5f:f0:07:da:9b:7d:50:05:63:7d:93:85:d7:3d:9e:b3:59:03:
08:b6:92:5e:ae:a6:4a:3a:28:fa:70:7a:ac:67:c9:8a:d8:e6:
ee:4f:03:3d:68:c2:51:76:ec:92:19:79:d8:08:54:d3:74:06:
ec:5a:2b:96:12:e7:1b:02:54:a7:7f:9e:e7:8a:3b:88:8d:7a:
37:16:17:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:49:51 2025 by rpki-client