Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer
File: IHyMoVvzGwa9xuxD_3V51L-6TPY.cer (raw, json)
Hash identifier: hfpt+kYZh7vJR9nem/pOh/xIMaTLbvXkZ7NIqlV4avM=
Subject key identifier: 20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4AF9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 May 2023 15:58:08 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 192.82.52.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 18:19:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19193 (0x4af9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 25 15:58:08 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:15:3f:1b:22:f6:06:3f:8a:ac:72:63:16:57:
b7:b1:a1:8e:88:17:e1:4d:16:75:cd:ea:c6:77:8e:
9f:f7:b6:0c:8d:90:e9:ee:74:68:6a:a9:d0:84:bb:
ce:f3:8d:9f:1b:6d:a2:91:04:9d:ad:1a:75:c8:2b:
78:79:e1:94:d8:d9:20:70:fb:2a:42:04:da:90:ee:
1a:12:15:d7:11:0b:c1:e4:35:78:b7:9f:0f:76:51:
ed:39:14:f5:8f:d9:94:b4:ef:ec:83:8f:fa:32:d8:
82:53:41:03:67:20:95:91:63:b2:20:9b:00:e9:4d:
3b:5d:17:4e:11:e2:ac:37:6e:c0:46:4b:b2:e5:35:
ed:42:22:a1:7f:3a:3b:63:e5:27:06:a1:3e:79:5b:
41:8d:7d:0d:6f:4f:dc:55:19:bc:b3:91:8f:51:0e:
92:6d:f3:47:7f:a6:96:4b:cc:97:0e:a2:f6:d9:0c:
de:47:9a:53:b7:55:7a:2e:cb:17:c9:76:ba:54:31:
c4:e9:89:4a:ac:5b:cf:9e:77:0d:22:48:6c:8f:6e:
d5:60:d0:77:5f:83:4e:2f:5b:07:eb:6e:fd:26:47:
4f:58:6e:6b:e9:90:05:0e:b6:a1:e4:f4:d0:a3:84:
13:97:09:cd:4d:23:52:01:eb:b1:12:67:5b:69:d7:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.82.52.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:9e:69:d5:4e:a2:0a:32:94:55:93:1a:51:b6:3d:d8:9d:84:
9d:72:83:5c:8a:55:3c:bf:cf:98:05:6d:e7:47:0b:24:f9:8b:
d7:fe:67:67:df:f0:0c:93:38:73:98:76:d6:0e:e3:22:39:53:
2f:09:9c:00:25:13:b1:b5:35:88:a0:ef:86:f8:6c:b9:8c:c2:
0f:e6:60:f2:64:45:5e:b3:61:7c:22:e4:65:a1:b4:e2:62:e3:
20:87:7f:c4:eb:04:2f:a1:62:2a:57:13:54:4d:45:63:ae:9c:
3e:ab:fc:79:d8:ec:c6:53:65:76:a3:5f:05:38:c8:c1:de:be:
f6:82:01:50:6b:ca:5c:7b:25:da:63:ab:68:62:a9:cd:d9:d5:
ec:b9:b4:da:38:4b:c5:a6:5b:2a:7a:c7:5f:80:0f:b1:30:cd:
50:01:91:58:55:a0:8b:8c:bf:2d:8b:e5:fc:41:31:46:14:c0:
96:a0:b8:c6:9a:4a:a3:88:da:8c:8e:b0:1a:8c:22:13:6e:0d:
a2:23:14:79:5b:6b:31:92:37:68:77:13:b7:43:e4:46:bb:fa:
b9:86:07:30:53:46:cb:92:88:8c:73:e0:1d:50:2f:cd:81:48:
31:bc:f1:18:4d:3e:89:f2:fd:11:22:e7:83:3b:ed:61:dd:50:
31:72:ca:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 21:41:24 2024 by rpki-client on console-ams.rpki-client.org