Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PcKYLLOQv9qGmu23U1P-S7lwobw.cer
File: PcKYLLOQv9qGmu23U1P-S7lwobw.cer (raw, json)
Hash identifier: kOOFWZUbkn+MNowBmnIMPHhorHmvLmWiTPYjFCKyVbE=
Subject key identifier: 3D:C2:98:2C:B3:90:BF:DA:86:9A:ED:B7:53:53:FE:4B:B9:70:A1:BC
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5DF7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/PcKYLLOQv9qGmu23U1P-S7lwobw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Nov 2024 14:29:18 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 192.245.196.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24055 (0x5df7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 15 14:29:18 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9156D54/serialNumber=3DC2982CB390BFDA869AEDB75353FE4BB970A1BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:f8:ab:2c:80:a0:d4:3c:30:9d:59:94:b1:
e0:dd:17:4c:1b:82:84:ae:3f:80:25:25:1e:04:fd:
4a:b8:93:9a:4f:b4:27:83:0d:be:5b:22:0a:3f:b8:
ac:92:7e:b7:70:2f:45:80:59:08:6c:da:df:84:4b:
17:41:ce:e4:58:6a:29:66:bc:e6:e1:3f:5e:06:e8:
bc:82:12:8e:fa:0f:d5:fd:56:ab:52:8f:04:32:ea:
fb:7a:cc:68:dc:82:97:ca:c9:6e:a5:19:35:81:12:
10:d5:7a:45:29:21:95:a0:6b:f9:72:7a:ca:8f:4d:
c1:91:4a:5f:82:f7:2a:e0:27:0b:38:9d:40:7a:8e:
9a:43:5c:ab:b3:09:98:b3:ad:2a:cb:d0:e8:ec:49:
1b:4a:d5:34:77:2b:88:a7:57:7c:61:a6:fb:5b:04:
64:85:a4:b5:b9:1f:31:89:80:15:0c:5c:62:ef:1a:
18:71:bd:ff:c2:55:ea:75:21:0f:2b:8a:33:64:a5:
07:75:5d:b5:8f:08:b7:3f:f4:5e:81:55:09:df:bc:
fa:2f:0f:d1:cb:26:41:f9:7c:a7:47:d1:49:16:0d:
17:be:19:dc:ef:cb:e1:94:d3:6a:b6:b3:f0:7e:97:
8b:4a:5e:2b:10:69:f1:d6:50:44:8b:17:89:6c:13:
b1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C2:98:2C:B3:90:BF:DA:86:9A:ED:B7:53:53:FE:4B:B9:70:A1:BC
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/PcKYLLOQv9qGmu23U1P-S7lwobw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.245.196.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c8:2b:0a:af:07:88:37:80:bc:92:dd:df:18:56:0c:25:de:
8e:35:5b:06:aa:bf:d1:e5:88:e6:4f:c8:84:05:be:b2:b7:b3:
bb:00:32:ed:a1:de:60:a8:53:8b:6c:20:1e:1e:cb:fa:0f:da:
b8:e1:07:4e:94:69:35:27:ea:f9:33:dc:59:44:c5:49:79:73:
16:0a:a7:d4:d8:98:a0:fd:ae:51:f6:0c:43:c1:1f:c6:dd:12:
41:d1:7e:08:3f:47:c4:5e:d0:72:c1:bb:8f:38:d8:72:7f:4e:
73:e5:87:b0:9f:15:bb:c2:ae:9f:56:f1:64:f9:12:5e:88:6b:
0d:35:bc:16:c3:6b:57:63:87:d1:28:44:22:64:ec:45:c6:15:
36:8e:2c:8d:2d:2f:75:19:99:d6:66:47:6d:11:5c:1b:33:3c:
ea:25:a8:ec:73:8d:2b:11:e6:a8:f0:98:7f:8a:22:74:92:21:
55:70:6d:52:61:93:ec:d4:b3:f9:a6:dc:d8:96:f3:dc:85:24:
20:4c:af:04:1d:4a:72:8e:34:0c:60:ec:6a:5e:1f:8d:b5:21:
c6:90:0e:31:fb:58:38:b7:ec:c1:5b:11:42:62:23:b1:a7:b3:
cd:53:7c:d8:e8:76:d1:8c:c0:4a:b4:59:6d:9a:7b:9b:22:e7:
b3:cb:da:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org