Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer
File: OZp7H8QgfroHB6hRUZXMaOg2q_g.cer (raw, json)
Hash identifier: jw4ZMTtUtRYvw9gHUHbGsQD7PWysGf6GPcD3tZcssvI=
Subject key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D88
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 03:50:15 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 160.25.210.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23944 (0x5d88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 8 03:50:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ad:68:9d:7d:ec:e3:98:39:83:21:94:5b:79:
95:85:62:27:b5:09:c5:77:f4:b5:56:2a:bf:84:b1:
3e:35:c1:6b:aa:4a:79:9e:63:25:dc:e4:1d:ee:85:
bd:4f:6f:5b:56:76:7f:03:63:57:c8:e4:68:4c:4a:
ec:49:61:14:ac:a7:c9:6b:f4:41:74:fc:44:5c:8d:
52:96:34:cf:59:72:ca:66:7b:08:86:44:23:f7:76:
c8:9a:c0:83:9b:4a:42:19:71:0e:83:c6:93:db:a3:
e8:2e:45:bd:74:07:8a:df:8c:4c:e7:ed:7b:fb:13:
04:53:ad:91:b3:48:ea:8a:17:96:b4:87:a2:88:9c:
0f:8c:b1:51:cd:12:5a:3a:a6:46:04:b9:4d:b2:e2:
69:45:cd:b2:95:e7:57:09:55:65:90:fc:80:e3:83:
b8:15:5d:24:f4:b9:7a:f3:39:ef:07:b6:9c:26:42:
d9:fc:64:48:f4:25:74:80:39:8c:5d:3a:63:f3:32:
1b:ee:f4:34:a0:55:58:2a:ff:74:66:86:dc:67:a3:
87:ea:5c:ad:49:7b:3f:f2:e0:11:df:27:91:96:88:
25:b5:f8:ea:61:81:63:b0:b0:e9:9b:61:05:48:4e:
cb:ee:79:cb:9c:c1:09:0c:e6:a2:4e:ec:59:16:72:
43:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.210.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:f7:04:50:fa:ad:27:28:66:90:a0:a5:bd:b8:06:2c:62:f9:
d4:ae:e0:87:47:a9:45:e9:47:35:70:e1:c1:81:6f:4a:77:c2:
df:74:2a:46:73:e5:e3:3a:e2:f7:79:31:1a:c3:03:a6:c7:1d:
07:72:ff:11:d6:8f:bd:7f:0f:37:d9:9a:30:67:60:64:3e:ff:
58:cf:07:59:58:e4:8c:10:e1:3a:8f:83:90:de:ce:e4:20:9b:
c8:53:ce:f2:2f:c5:c1:c2:c7:1c:e5:4b:1e:b0:55:5a:f3:45:
72:ca:d0:71:fc:b9:65:0f:fe:85:dc:12:72:df:8a:ea:a7:e0:
6b:c6:a5:6e:4e:ee:41:ba:d6:d2:83:49:ad:47:e0:9e:f5:f8:
f4:6e:f3:1f:9a:c2:b9:3d:8e:69:c9:f9:59:7f:53:9e:7f:f2:
47:db:b2:65:3d:54:8b:74:00:73:35:d3:51:60:d1:5f:cd:02:
03:cc:e9:36:e6:22:8a:5f:18:6c:87:49:fd:3d:c1:9e:08:c3:
33:e8:ae:00:b2:05:d0:5a:75:a8:c7:3f:3a:bc:d0:a2:13:12:
8a:04:c0:d9:dd:bf:27:20:ca:38:32:b8:82:64:e4:f7:6d:a0:
37:fc:50:ee:6f:59:0e:c3:58:73:5a:da:e7:52:47:14:e2:e3:
11:a5:93:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org