Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer
File: LYC7UpVYC-No2mj7jQPqtI16xss.cer (raw, json)
Hash identifier: CNZs98GlwdASMQS0it/YqySrtDFDqzDjfP97U3nmuys=
Subject key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5778
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 17:35:22 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.25.44.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22392 (0x5778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 1 17:35:22 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d6:6f:94:f9:88:fc:29:af:b5:fa:05:e5:14:
01:23:cd:ff:c8:ca:4e:0b:f1:2a:38:5f:b6:24:d9:
fb:0a:7a:d3:83:a2:2e:a1:a1:56:b6:d7:9e:bb:0e:
fb:67:4b:ec:48:86:22:d8:e6:2f:28:38:61:25:e5:
35:e9:21:24:e9:0f:05:5a:00:95:0a:94:0a:4b:77:
24:4e:f3:75:2e:26:75:d0:2f:cb:9f:fe:6d:8e:85:
be:6d:03:6e:f9:a8:07:b2:2d:cb:aa:ef:a1:43:6f:
a2:d8:e6:a8:59:ed:0d:38:7c:4b:db:b0:ba:75:f4:
bc:fa:96:e3:7c:c9:f7:da:95:d4:e1:5c:a7:01:17:
6e:fb:b7:b5:85:41:5f:fa:5f:bc:35:7a:ca:4f:b0:
b4:30:5a:6e:a0:28:a9:5d:9a:6a:6a:da:27:a1:f7:
15:3c:f4:af:42:e6:4b:f8:d8:b5:df:0e:ed:31:c2:
6d:0e:78:fb:f3:fe:a6:df:4e:dd:23:4a:a7:ad:55:
b0:39:32:a3:98:56:5e:14:27:81:7e:f0:f4:f3:7e:
7c:1a:87:d9:64:7e:d6:04:b0:90:09:f5:34:04:01:
10:1d:71:24:4a:5b:74:42:c3:26:7e:60:b4:ff:89:
40:cb:a8:c2:c7:4e:f0:0b:d9:4b:09:f3:b2:32:77:
aa:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.44.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:91:6b:f1:f5:c2:d1:20:97:10:d1:0d:92:d0:4d:1c:87:1c:
99:ea:9a:fa:05:35:52:98:92:8e:79:c3:28:8e:e5:f6:d6:86:
2b:ae:45:dc:70:48:e5:9a:af:af:7b:09:35:e0:be:bf:98:d8:
58:f7:b3:87:13:46:ce:16:fc:1d:e4:ae:ef:5d:b2:ea:6f:cc:
9b:ae:da:1e:e6:5f:0a:16:eb:78:74:64:ad:85:aa:3d:f5:4b:
48:03:fa:6c:b5:4b:b6:58:6b:99:ce:fc:ff:cf:2b:ae:1c:d2:
05:8a:f5:9d:b8:b4:2f:5c:70:82:c0:2c:3e:f3:c8:83:d0:5b:
50:0a:e3:81:9f:6c:22:fe:6d:a7:76:18:75:74:df:c7:33:9d:
f1:dd:59:78:8b:ef:01:b9:fe:b1:6b:f6:e0:95:4f:4d:d7:3f:
8f:98:16:3d:f4:44:56:42:0b:a6:fa:35:69:74:35:fa:39:32:
d6:c6:0d:12:1e:f6:e0:34:cc:82:d6:ef:83:5d:a1:e5:f3:10:
71:0d:e9:b4:32:0e:c4:14:db:10:f4:66:90:f5:4f:95:ff:ed:
1f:18:83:3e:fd:a7:e4:af:c5:5a:19:3b:37:52:aa:c8:49:ab:
ac:d0:4f:ae:6a:a6:58:27:75:b2:6e:18:9a:cb:b1:65:c9:e3:
aa:08:46:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org