Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J23PPyNBrcfQvEbzY0T3FWANmlg.cer
File: J23PPyNBrcfQvEbzY0T3FWANmlg.cer (raw, json)
Hash identifier: TjjbbYXOB3OOLxBQ9SwgMWDOu9rDL0Qbk6HERmvZxOA=
Subject key identifier: 27:6D:CF:3F:23:41:AD:C7:D0:BC:46:F3:63:44:F7:15:60:0D:9A:58
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 60DD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A04B9/CE840568D23511EF8FE29C5CC4F9AE02/J23PPyNBrcfQvEbzY0T3FWANmlg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A04B9/CE840568D23511EF8FE29C5CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Jan 2025 05:10:08 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.34.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24797 (0x60dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 14 05:10:08 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91A04B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8e:0f:d0:d6:17:ef:d3:c3:33:8e:2e:66:f2:
4e:a3:5a:00:52:ff:3a:ff:87:ad:0b:19:48:8c:1f:
00:6d:84:38:5c:a1:4e:e5:10:ff:63:0b:53:79:73:
ef:5e:ec:57:07:8a:09:ff:d4:9e:8d:0a:f4:f6:2e:
f7:4b:d5:5a:18:c8:33:e1:ed:ae:9f:f6:80:fa:d0:
fc:4d:b5:cf:2c:5f:24:b3:d9:f3:95:d8:70:b1:73:
ba:2c:a3:54:5a:7c:12:07:68:d4:9a:56:1b:19:7b:
c0:59:16:c7:9e:a5:15:e3:99:30:d7:74:2b:52:88:
4b:a5:65:a6:ae:33:61:61:c6:4b:e7:1c:61:80:d9:
45:e1:bb:ab:7d:d4:c4:96:17:49:fa:34:3f:da:a7:
05:a4:01:57:4b:59:7c:7a:7d:e9:ac:14:7c:33:72:
76:35:73:b1:e8:0a:af:35:00:f7:30:37:4c:85:00:
7d:f3:06:5c:ad:47:d7:d4:01:4c:44:36:09:e6:e6:
40:8e:fa:e9:3e:ea:a8:52:0e:d3:41:b4:b0:98:48:
d7:c4:39:a7:35:05:69:39:55:9c:f2:98:e0:ce:ae:
e1:72:38:5e:a4:36:e9:4d:4a:ca:51:09:c3:b9:6f:
71:d9:2e:15:6e:83:d0:82:ef:95:cc:ee:eb:f5:e1:
2b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:6D:CF:3F:23:41:AD:C7:D0:BC:46:F3:63:44:F7:15:60:0D:9A:58
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A04B9/CE840568D23511EF8FE29C5CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A04B9/CE840568D23511EF8FE29C5CC4F9AE02/J23PPyNBrcfQvEbzY0T3FWANmlg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.34.0/24
Signature Algorithm: sha256WithRSAEncryption
25:09:ed:d1:79:93:82:0b:41:58:74:f9:ca:78:03:07:59:53:
2b:05:00:a0:db:cd:c0:a5:bc:d3:ef:3f:d7:44:2d:94:ea:ee:
80:49:6a:38:03:98:37:12:e8:e7:db:46:de:33:07:5b:92:b1:
3b:45:4c:fc:e4:df:22:b8:c0:de:9e:8d:1c:1f:93:33:e0:ba:
fb:dc:c0:29:f4:7b:3d:a0:11:2d:7d:e2:c0:44:41:0c:4e:cb:
c4:88:c8:02:30:67:0b:ea:98:1c:2a:8d:9c:6d:44:e0:09:4e:
6b:79:69:7c:9e:5d:29:a4:f8:09:94:d9:09:56:33:fb:a7:de:
23:66:ee:d7:f2:54:fc:bd:ee:05:73:cc:ea:86:cc:40:7f:40:
36:10:c2:3b:e8:5c:a3:8c:d4:7b:59:31:b6:1e:21:cb:27:42:
3d:8c:50:32:c5:9c:d7:73:04:19:9e:b8:92:2e:a8:66:90:39:
76:72:c0:6e:ef:1a:cc:9b:cf:d4:6d:c0:d6:89:f2:8e:d6:d7:
ec:46:45:12:c6:6d:ac:7e:03:4c:20:6c:02:5a:b6:4f:00:57:
fb:33:51:91:8d:43:51:ed:cc:75:13:f0:c1:3c:60:f8:8c:d9:
b5:8a:2b:4d:e9:0f:cf:5f:ab:fd:64:f8:18:ce:80:4a:c5:8d:
f7:1d:5f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:56:45 2025 by rpki-client