Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LSI7Vu1NF6gXj-n8Y-OAGpO1odM.cer
File: LSI7Vu1NF6gXj-n8Y-OAGpO1odM.cer (raw, json)
Hash identifier: nNRsGxlOeaMoo7Ts508J/WvPYjX5tosNvlE8t/3XxsQ=
Subject key identifier: 2D:22:3B:56:ED:4D:17:A8:17:8F:E9:FC:63:E3:80:1A:93:B5:A1:D3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5FCA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF207/ACB0685EC22811EF86E3484FC4F9AE02/LSI7Vu1NF6gXj-n8Y-OAGpO1odM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF207/ACB0685EC22811EF86E3484FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Dec 2024 18:55:46 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.16.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24522 (0x5fca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 24 18:55:46 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91AF207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5c:9c:d6:db:f7:0d:8e:96:ec:b8:fd:8a:44:
4b:0f:b2:86:17:86:f5:1d:51:d8:c4:3b:7d:d9:a1:
e5:0c:b1:4d:d7:e3:e2:d6:90:38:2b:d2:29:17:6c:
8b:25:37:87:58:64:45:6b:fe:94:f0:c4:71:97:f5:
08:92:56:b1:fc:8d:bc:a3:c5:56:af:43:29:f3:00:
8c:43:44:30:8e:33:9e:93:7f:ac:a1:eb:ff:47:96:
ac:87:2a:74:e3:0d:5a:23:b4:86:b5:ff:24:bd:6f:
18:25:6e:ec:94:4a:97:7f:9f:8f:3e:a2:32:5f:b3:
e7:a3:1a:98:16:0c:84:93:2f:c3:eb:b9:12:97:76:
cd:d3:85:f6:9c:19:20:fa:66:36:30:bd:15:8f:61:
f8:6b:df:70:fb:94:a1:49:f3:28:44:10:2e:f6:9e:
89:cc:a4:17:49:de:43:0a:77:2f:1a:c6:32:07:2f:
1f:c3:95:78:d9:8b:d5:79:18:d6:6c:b3:34:f4:fc:
fe:5e:dc:f5:b2:b6:cb:f6:4f:08:07:04:79:a9:ed:
77:a3:33:f0:ee:d1:7c:97:8d:66:6b:92:9c:f4:fe:
ed:7d:a2:92:ef:fc:44:1a:9f:1b:eb:93:92:2b:c9:
28:40:10:a7:fa:b1:da:03:d0:3f:fd:33:5e:e9:51:
b5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:22:3B:56:ED:4D:17:A8:17:8F:E9:FC:63:E3:80:1A:93:B5:A1:D3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF207/ACB0685EC22811EF86E3484FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF207/ACB0685EC22811EF86E3484FC4F9AE02/LSI7Vu1NF6gXj-n8Y-OAGpO1odM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.16.0/23
Signature Algorithm: sha256WithRSAEncryption
be:e5:9f:31:78:5c:89:7f:17:84:26:24:1f:75:64:f8:0c:85:
70:c1:d5:27:68:82:1a:91:fd:ee:25:2d:5e:95:c0:25:fe:23:
78:e4:25:61:7a:c8:c2:ce:08:b6:6f:a2:9f:d2:46:e8:62:e0:
49:50:f4:97:92:f3:a4:6f:cc:83:03:b8:db:4c:41:3c:d8:95:
41:02:67:73:67:d7:8d:60:4e:ba:47:9f:83:aa:67:26:07:25:
b5:d5:6e:35:59:5c:b8:6d:b2:93:88:97:7d:2b:53:2b:37:0e:
60:e0:5c:7f:32:48:ae:a2:88:bd:4f:5e:31:27:49:76:2d:55:
b8:81:b7:52:d7:a1:e3:3f:34:fb:46:a3:80:ba:32:e8:72:d2:
b3:f0:f8:cc:4b:f1:31:ac:3f:ae:82:f1:56:35:7c:7b:c5:8d:
2a:ac:4e:d2:2d:6e:34:f5:d7:88:6c:6e:e5:13:80:b3:f2:88:
50:3a:eb:61:8a:67:30:91:9e:e0:67:5f:18:03:22:29:fe:fd:
37:60:cf:b3:96:e1:cf:8e:1a:8e:5d:3d:ae:10:f2:7f:80:be:
62:c8:fa:ad:2d:f5:3c:f9:85:12:aa:4c:de:1f:33:bb:9c:aa:
c9:88:45:68:c9:61:b7:6a:af:8d:eb:c1:66:ef:cc:86:42:9a:
54:65:2d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:58:00 2025 by rpki-client