Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LGuMf4thDokcucv2zb2ZmKqThgs.cer
File: LGuMf4thDokcucv2zb2ZmKqThgs.cer (raw, json)
Hash identifier: +Sk+ZjO8Y33OOn8aenUw4CD81806hQxYfKQqLTUTcgw=
Subject key identifier: 2C:6B:8C:7F:8B:61:0E:89:1C:B9:CB:F6:CD:BD:99:98:AA:93:86:0B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5170
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/LGuMf4thDokcucv2zb2ZmKqThgs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 31 Jan 2024 16:36:09 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.10.164.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20848 (0x5170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 31 16:36:09 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91EA742/serialNumber=2C6B8C7F8B610E891CB9CBF6CDBD9998AA93860B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:25:c6:03:c7:25:3d:2c:d1:43:0b:c1:72:cd:
34:d5:69:a2:0e:ff:1a:6e:02:4f:aa:64:4b:de:7c:
d2:c1:26:4c:e7:65:02:af:33:87:0f:b8:d0:4d:f8:
95:04:80:e4:f5:fa:97:ae:40:0e:5d:9d:4a:21:13:
99:c7:4b:0b:ab:5e:cf:9d:d3:e2:e9:ba:16:c4:18:
43:b7:43:b6:5f:d3:6e:67:f0:13:58:5a:bc:5a:44:
b7:03:1f:12:e7:78:21:ef:2a:cb:17:5b:10:98:cf:
eb:b4:b7:e6:b5:62:03:6c:b1:41:b5:d0:15:4c:0c:
16:da:d2:50:b1:73:8b:85:5a:27:c1:89:2d:32:f1:
5f:70:69:ef:ab:96:d6:c0:14:f5:ef:cc:40:d4:ac:
ae:42:e9:8f:a6:f7:77:58:f5:15:00:8e:a1:ae:50:
81:50:4a:d0:1c:47:4b:88:a6:ae:bb:72:ba:d3:ed:
d9:e8:db:cb:8a:92:05:68:65:75:85:83:d2:9e:34:
41:cd:ad:c1:90:67:30:68:db:79:41:4f:5c:da:70:
72:fb:61:b1:0c:3c:ea:6a:60:7f:2f:95:8a:61:fa:
4e:da:3c:07:bc:4c:89:5a:d6:80:22:39:db:22:b1:
89:ff:2b:34:1f:f9:a0:03:6b:0a:4f:9b:32:88:4b:
7b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:6B:8C:7F:8B:61:0E:89:1C:B9:CB:F6:CD:BD:99:98:AA:93:86:0B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/LGuMf4thDokcucv2zb2ZmKqThgs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.164.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:96:1d:82:bb:f3:fe:3f:45:97:1f:74:c3:ee:df:35:7b:3b:
69:8f:cd:b8:97:7d:34:c3:56:6b:91:62:00:43:ef:5d:fa:d4:
4b:57:0a:9b:8a:89:51:15:83:00:e2:e3:43:37:4e:92:e2:c9:
45:ec:40:82:a9:87:7f:40:fd:b5:48:51:2e:d5:09:03:6f:9c:
a1:dc:ee:dd:ec:c5:fe:06:5e:d2:2a:b1:b2:1e:44:05:91:ee:
11:15:ed:9a:ec:3d:fd:e0:5a:4f:06:dc:21:b5:4e:94:7c:3a:
8f:ae:12:83:99:75:5f:d2:0c:f7:e4:00:fc:fb:34:59:c6:7e:
f7:82:21:02:12:bc:e3:c6:2a:5b:ae:f0:51:6e:05:af:ce:53:
67:a6:ed:7d:39:27:2f:98:80:5f:93:d3:01:a0:ad:82:d2:0e:
a2:47:e7:d1:f3:a1:21:c0:7a:9e:9a:ea:7b:98:62:38:38:74:
70:1a:54:5b:f7:93:e0:2f:2e:03:ee:9f:5b:d5:e3:69:32:c3:
12:0f:1d:8d:1c:cb:7d:b0:b9:97:d6:83:0d:c2:bd:2f:7a:38:
2c:86:6c:d1:11:22:d3:f3:23:f4:dc:98:34:dc:93:e6:fc:25:
03:98:79:38:75:40:10:92:fc:29:50:ae:19:34:aa:f7:1f:00:
9c:2a:76:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:44:28 2024 by rpki-client on console-fra.rpki-client.org