Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PcKYLLOQv9qGmu23U1P-S7lwobw.cer
File: PcKYLLOQv9qGmu23U1P-S7lwobw.cer (raw, json)
Hash identifier: gE4hZROTi7nva+wYt29GmtANX0cRisS2s596t+EuApw=
Subject key identifier: 3D:C2:98:2C:B3:90:BF:DA:86:9A:ED:B7:53:53:FE:4B:B9:70:A1:BC
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4F41
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/PcKYLLOQv9qGmu23U1P-S7lwobw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Dec 2023 14:39:43 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 192.245.196.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 16:49:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20289 (0x4f41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 6 14:39:43 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9156D54/serialNumber=3DC2982CB390BFDA869AEDB75353FE4BB970A1BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:f8:ab:2c:80:a0:d4:3c:30:9d:59:94:b1:
e0:dd:17:4c:1b:82:84:ae:3f:80:25:25:1e:04:fd:
4a:b8:93:9a:4f:b4:27:83:0d:be:5b:22:0a:3f:b8:
ac:92:7e:b7:70:2f:45:80:59:08:6c:da:df:84:4b:
17:41:ce:e4:58:6a:29:66:bc:e6:e1:3f:5e:06:e8:
bc:82:12:8e:fa:0f:d5:fd:56:ab:52:8f:04:32:ea:
fb:7a:cc:68:dc:82:97:ca:c9:6e:a5:19:35:81:12:
10:d5:7a:45:29:21:95:a0:6b:f9:72:7a:ca:8f:4d:
c1:91:4a:5f:82:f7:2a:e0:27:0b:38:9d:40:7a:8e:
9a:43:5c:ab:b3:09:98:b3:ad:2a:cb:d0:e8:ec:49:
1b:4a:d5:34:77:2b:88:a7:57:7c:61:a6:fb:5b:04:
64:85:a4:b5:b9:1f:31:89:80:15:0c:5c:62:ef:1a:
18:71:bd:ff:c2:55:ea:75:21:0f:2b:8a:33:64:a5:
07:75:5d:b5:8f:08:b7:3f:f4:5e:81:55:09:df:bc:
fa:2f:0f:d1:cb:26:41:f9:7c:a7:47:d1:49:16:0d:
17:be:19:dc:ef:cb:e1:94:d3:6a:b6:b3:f0:7e:97:
8b:4a:5e:2b:10:69:f1:d6:50:44:8b:17:89:6c:13:
b1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C2:98:2C:B3:90:BF:DA:86:9A:ED:B7:53:53:FE:4B:B9:70:A1:BC
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156D54/7B92EF9A0C9411EDB71BC02FC4F9AE02/PcKYLLOQv9qGmu23U1P-S7lwobw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.245.196.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:44:12:7f:8b:d8:26:5d:19:93:35:5c:85:40:9b:e3:3a:4a:
1c:a1:5d:e3:ce:91:b5:1e:fc:89:e6:5f:d4:61:24:48:81:6c:
69:bc:45:6e:9d:a5:0d:65:e7:c3:8f:ba:5a:5c:79:ef:bf:1b:
ca:c9:18:6c:a2:c3:d3:79:56:38:b1:e7:f1:90:f2:74:45:f9:
7e:e2:71:84:f5:f9:ff:17:24:a5:3e:d9:fa:de:d1:ec:69:b5:
03:0c:a5:ba:b4:74:ff:be:55:07:ac:4a:b4:56:f2:47:2c:b6:
56:e9:3b:48:ac:35:d9:7b:62:74:87:09:72:01:c6:b3:c7:ea:
8f:0b:80:a9:a8:7d:5d:36:70:09:11:4a:f6:19:82:be:57:ba:
d5:ba:79:bd:ca:92:39:b0:1c:94:1d:61:fc:5f:3d:67:43:7a:
94:fa:a8:5e:25:b3:0b:7a:4d:40:41:a9:ac:e0:7c:07:03:e0:
65:83:a2:5c:db:dc:56:b8:ed:c1:d8:42:a8:2c:3d:ad:f4:95:
86:2f:11:99:52:fc:42:83:9b:a5:53:2e:0a:76:52:70:42:bf:
6f:79:2c:8d:b7:a7:a5:2e:98:45:d2:0b:68:15:42:ba:46:05:
ca:b8:a1:b2:ab:1c:94:b4:91:52:52:56:1e:5c:23:a5:2e:93:
f9:9a:07:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 20:21:14 2024 by rpki-client on console-fra.rpki-client.org