Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ii81OE7WK2pwdPiC574Cnw4E40M.cer
File: Ii81OE7WK2pwdPiC574Cnw4E40M.cer (raw, json)
Hash identifier: mt1xgxCW+HZ9zQ2j8KEzpl5JK52WC8mQ9Kn1Dv1LosA=
Subject key identifier: 22:2F:35:38:4E:D6:2B:6A:70:74:F8:82:E7:BE:02:9F:0E:04:E3:43
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 58B5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E5D61/EE67D8C01D7811E2879E38C508B02CD2/Ii81OE7WK2pwdPiC574Cnw4E40M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E5D61/EE67D8C01D7811E2879E38C508B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 20:21:37 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 162.105.0.0/16
IP: 166.111.0.0/16
IP: 192.124.154.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22709 (0x58b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 19 20:21:37 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E5D61/serialNumber=222F35384ED62B6A7074F882E7BE029F0E04E343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:45:b7:1a:10:79:98:37:f8:7e:c6:da:4a:96:
ec:1e:ba:25:e5:25:68:d2:20:f2:77:b0:9d:d9:25:
13:01:90:c9:fb:69:8d:b5:b7:4c:45:29:8c:69:37:
18:42:3d:28:bb:7d:62:13:10:ff:c5:2e:fe:1d:cc:
e8:b9:5c:a7:47:1e:59:df:c4:fc:ff:ed:e2:e0:82:
81:9c:2d:cf:0d:5f:b4:52:bd:51:d5:84:03:cb:70:
6f:1e:95:65:7d:c7:5c:89:08:50:be:13:13:9d:2d:
21:4a:9e:49:78:cb:4f:49:26:d1:08:3c:e5:dd:bd:
da:40:f5:d7:1e:2d:ba:e4:95:c1:cd:6f:2d:0c:be:
de:90:e3:02:9d:0d:48:ec:9c:f3:9f:d6:28:da:2b:
9d:b6:a2:fa:33:36:af:ab:d3:27:7d:f7:3e:c8:d0:
65:69:62:d9:ae:b7:0e:c2:64:bd:92:af:3b:09:09:
34:2b:e1:3a:c8:3b:ae:38:e4:f6:1b:19:33:ab:54:
e4:78:fb:0a:2b:fa:24:b1:ce:44:8c:90:d0:44:b7:
86:98:0b:6c:39:f7:ab:91:9a:9b:c4:34:df:1a:fe:
81:b2:fe:83:1a:c9:e5:21:e5:90:73:0a:48:ad:d3:
0d:59:a4:88:43:2b:e2:44:b8:76:51:e8:6a:0f:77:
a4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2F:35:38:4E:D6:2B:6A:70:74:F8:82:E7:BE:02:9F:0E:04:E3:43
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/EE67D8C01D7811E2879E38C508B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/EE67D8C01D7811E2879E38C508B02CD2/Ii81OE7WK2pwdPiC574Cnw4E40M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
162.105.0.0/16
166.111.0.0/16
192.124.154.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:33:7a:98:18:6c:6a:60:56:83:63:be:6b:74:98:6c:0d:b0:
2a:ff:fa:b5:9f:7c:90:c2:52:f4:33:b5:5d:e5:ac:be:d1:d8:
81:fa:fe:df:92:97:38:1c:22:e6:dd:fa:69:7a:8e:53:3b:a5:
ca:82:ce:54:9c:ce:90:6d:c5:83:56:73:0e:79:bd:5a:42:3f:
cd:80:1c:aa:6e:8f:db:b7:c2:af:93:da:b3:fd:e0:6c:6f:79:
a9:9c:25:ee:a3:70:95:7e:9e:d1:3e:a1:72:ce:ac:da:e0:29:
85:95:48:fd:ea:71:74:78:3b:e5:ae:83:ea:06:0b:dd:ed:9f:
20:97:cb:f3:4a:2b:22:13:95:f1:8e:f4:36:cc:2d:21:7c:5d:
4e:b1:bd:3d:8b:04:9e:f1:ee:e8:eb:9c:39:f4:0c:44:aa:81:
d5:9b:de:e8:43:03:5d:7b:b5:10:e4:db:d4:28:1f:ee:ec:04:
e6:be:37:cc:a5:a7:f2:2d:9e:18:3c:c2:53:e5:f9:ef:09:a3:
00:aa:7c:66:91:2c:93:75:dc:24:3f:ea:7b:68:31:cf:79:57:
63:5c:90:78:41:d5:47:60:37:dd:ce:a7:9f:6d:b0:4e:68:cb:
06:21:bc:2c:2f:5f:14:23:2e:4d:56:da:bb:7c:d7:a4:91:cf:
f6:51:1e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org