Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/K6Guk7v1am9sllCE8EiBe7epjw8.cer
File: K6Guk7v1am9sllCE8EiBe7epjw8.cer (raw, json)
Hash identifier: USsm7gEyvVj/M6RJiCibblX3hpNqNptBgSVtip+S6r4=
Subject key identifier: 2B:A1:AE:93:BB:F5:6A:6F:6C:96:50:84:F0:48:81:7B:B7:A9:8F:0F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 51A7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/K6Guk7v1am9sllCE8EiBe7epjw8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Feb 2024 05:10:40 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.121.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20903 (0x51a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 5 05:10:40 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91F65C7/serialNumber=2BA1AE93BBF56A6F6C965084F048817BB7A98F0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:02:b0:25:42:e6:6e:ee:d5:22:18:f9:4a:32:
33:6a:f9:36:5a:ee:35:02:a8:83:ef:1d:21:c6:5d:
94:ce:fb:c3:0c:3c:b8:a5:04:65:bd:cd:f6:77:d1:
7e:d3:2f:a8:2c:7e:15:d3:61:96:4b:81:fb:75:ce:
77:37:f3:46:e0:2d:c9:24:dd:82:93:d0:e2:56:fc:
f9:32:4b:c1:b0:c2:a0:53:0b:a4:8d:5a:56:8e:88:
a2:eb:14:d5:d9:10:b0:22:1c:f2:e1:7a:0b:d0:fc:
1f:7d:30:7a:8a:fd:e3:71:b0:7f:d5:37:41:b7:b1:
e1:11:f0:31:7e:26:0d:3f:8e:de:68:cf:84:2c:fe:
94:db:01:92:2d:8d:00:3a:2c:33:28:be:66:ea:78:
3e:aa:65:bc:63:3f:9a:ab:e0:41:0d:7d:96:42:18:
fb:33:bc:15:bb:cf:e1:2c:02:4d:59:ea:38:58:75:
a3:96:5d:c7:ff:44:d1:a8:ae:cc:92:e5:22:16:1c:
79:b7:b9:02:17:d9:f2:07:fd:45:32:8f:17:c7:cf:
76:80:80:35:82:6b:e2:4d:12:e1:96:10:ac:18:32:
9b:5f:20:e1:2c:46:b3:ec:cf:53:57:2a:da:1e:4a:
bb:23:42:07:e5:85:70:76:39:db:9b:50:35:5e:d3:
f4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A1:AE:93:BB:F5:6A:6F:6C:96:50:84:F0:48:81:7B:B7:A9:8F:0F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/K6Guk7v1am9sllCE8EiBe7epjw8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.121.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:94:4f:76:ae:2c:ea:34:8d:a4:2e:54:88:1b:01:26:3c:79:
68:e6:65:a5:19:09:5d:9e:47:73:43:bd:67:05:19:ee:ac:f1:
2a:83:2e:be:66:f4:9a:cb:86:ea:35:94:bd:8b:44:87:80:05:
87:d2:be:ea:db:ba:67:13:24:8d:80:02:80:81:18:ab:0c:95:
be:8f:81:c2:fe:64:93:6d:eb:db:98:a9:43:05:d7:10:49:26:
23:a6:19:1b:45:b5:d1:00:61:14:e0:e3:74:c0:70:83:41:6c:
e0:80:1e:5d:82:85:ba:58:a1:96:16:6e:c1:3d:f2:66:40:c9:
42:59:9e:fb:bb:0a:41:50:d9:38:fe:bb:fc:26:ed:15:9e:46:
99:57:2d:c4:fc:cf:28:ba:cc:f7:e7:17:1b:da:66:a7:ec:42:
46:9c:c2:5f:9f:7f:d6:c2:73:93:69:4a:a4:6b:04:2e:d2:81:
a9:3e:80:ef:90:4a:ca:b1:97:75:9e:93:d0:6a:0a:97:b5:ef:
dd:99:0b:5c:43:8b:27:22:a3:d5:51:60:0b:65:d3:c9:76:87:
fb:e6:82:40:5f:30:14:c7:f9:47:f3:bb:3f:21:4b:77:b1:d5:
e7:cd:8d:40:63:17:f9:23:07:46:bc:b7:95:04:b7:67:79:11:
35:39:45:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org