Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer
File: OoeHHjuuZe3i8xuxrVxZu3p0q90.cer (raw, json)
Hash identifier: QMyAK81tcL6/wqZctIGb7nRlbkf/AuHuLpCvpb19VrY=
Subject key identifier: 3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5C18
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Oct 2024 08:25:41 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.108.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23576 (0x5c18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 10 08:25:41 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91B87FC/serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0b:e4:21:55:17:8b:45:c8:e0:45:88:b4:bb:
c8:b4:62:ad:9f:32:09:ce:8f:c8:0f:72:09:42:37:
b9:a3:15:02:c3:7e:ff:f0:48:3b:6a:5e:31:0c:7c:
b5:a2:34:58:73:9c:47:bc:8f:8e:74:98:8e:4f:cb:
51:ec:74:aa:6a:28:87:3b:79:6c:01:61:a7:85:7e:
54:f5:6c:b4:ab:38:84:26:b6:ca:df:6a:19:a8:c2:
3e:b9:da:2f:0a:87:fc:f1:c5:7f:36:1e:d8:68:cf:
19:ec:d1:53:ca:8a:3a:3d:10:c0:73:17:40:af:c7:
82:15:a9:29:5d:40:e6:4f:d4:91:30:1f:62:f2:8d:
72:3e:d6:e2:22:56:23:1d:fc:63:82:2c:06:a9:08:
1d:89:a5:ab:27:61:26:03:b2:3f:99:a9:c6:73:e8:
21:bb:75:96:5a:40:80:cf:46:10:05:1f:c1:65:08:
e2:63:9e:fe:ed:4e:33:3f:c4:09:fa:fa:cd:76:d6:
8d:2f:ff:0b:5b:41:1e:27:ac:4f:62:2a:96:16:ee:
57:da:cc:82:85:e4:25:b8:82:ef:4b:4d:58:62:54:
38:23:16:b8:5c:d9:c0:91:68:d5:a6:b3:2d:87:4c:
e0:74:85:01:85:d4:52:35:4a:57:1a:72:89:b3:04:
02:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.108.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:3b:6d:f8:43:89:65:ed:66:d4:b4:b3:91:50:ca:c0:a5:b5:
08:2d:3d:52:ef:ef:a8:f9:f3:f5:9f:20:c7:cb:3b:7b:17:0a:
85:eb:84:31:a1:40:4e:00:86:8e:48:ec:af:19:a6:3f:b0:77:
b6:cd:ca:79:e3:73:ed:e8:3c:71:24:f4:f3:bf:27:9d:3b:34:
4d:d1:f3:2a:f7:ba:29:3f:3c:7a:ac:9e:a1:49:85:62:74:94:
5c:3e:7d:43:93:a2:63:05:2c:91:85:dc:ec:25:34:fd:fc:a1:
a1:19:19:2d:99:c2:ec:99:1a:52:38:32:e3:2c:db:c3:a5:7a:
f4:ea:8e:ed:86:92:c5:c9:65:dc:ae:69:44:c6:09:c3:13:fd:
02:34:04:b4:ad:1a:55:b4:aa:48:c7:d2:68:f3:e4:c8:0d:f1:
3c:0c:ae:b2:38:60:36:5f:10:57:7a:9e:3e:7b:cd:cc:fc:2f:
30:9b:68:41:19:b5:62:1b:47:1f:1d:2e:0d:c7:57:62:e5:5d:
8a:50:be:02:c2:eb:8a:26:9b:f7:2a:c5:04:a9:0a:93:38:98:
55:96:5b:37:a1:14:ed:ff:98:70:a3:71:8b:c2:32:d0:4b:a1:
be:c6:ac:b4:6f:45:75:6d:aa:8f:80:d6:b3:69:47:04:77:54:
a8:d5:e1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:40 2024 by rpki-client on console-ams.rpki-client.org