Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer
File: QELCSQ19r-wzIDFu1ap04L7Kqak.cer (raw, json)
Hash identifier: F9SnUFJqv+0L00dtnLlKeY4bkzWqrCVVmdYpvfRmtJg=
Subject key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 53D2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Mar 2024 20:21:16 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 167.103.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 13:10:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21458 (0x53d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 26 20:21:16 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:90:ec:a2:dc:71:d7:71:2f:26:e4:52:b6:
17:13:58:3c:73:84:a9:3e:ec:d0:18:5d:fb:d8:a6:
90:02:d5:84:71:83:e4:41:a9:dd:aa:e9:1d:17:09:
16:37:0a:6a:3b:6a:9c:ee:a3:05:41:f9:b9:36:fa:
03:7c:50:a9:50:0d:70:0e:75:8f:5a:17:ef:8f:ea:
6c:5f:05:a9:98:cf:f9:fd:9c:50:1f:32:af:82:02:
90:c4:61:57:e3:2d:20:13:d3:ce:62:ad:4b:32:4e:
ac:16:c2:09:50:55:a6:d0:68:bf:41:e3:d7:db:06:
44:46:43:b7:97:71:b7:ab:e8:8a:89:bf:f3:08:05:
df:bf:23:75:69:2b:48:48:e6:d8:56:ba:c3:c3:fb:
92:16:de:80:22:01:19:f2:f9:99:c3:2c:19:f9:ae:
d6:57:06:9c:cf:4f:3b:8c:f6:44:46:30:d7:44:4f:
55:51:8e:67:c6:63:f3:2a:69:28:cf:9c:3b:69:eb:
72:bb:92:0a:dd:c5:57:9f:95:9a:ad:32:a2:bf:1d:
3b:1a:6f:2b:42:a8:e7:d4:42:6f:1a:57:52:fd:0e:
60:4e:13:79:84:38:59:e8:d9:f5:e4:2b:78:df:48:
61:93:db:c2:fb:cb:c7:df:e8:79:0b:49:57:3a:d9:
ce:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
17:ce:85:7d:ee:12:ad:8a:be:dc:ca:11:cf:28:93:39:49:c2:
d4:fa:56:c3:ff:ac:ad:68:11:2c:33:09:5f:ad:eb:77:82:70:
36:5a:08:a6:1a:27:63:51:eb:e2:04:58:6b:99:e5:8e:71:a5:
80:52:38:89:57:8d:8f:26:28:dc:7a:e2:f9:6b:5e:26:89:04:
f8:ff:f8:98:34:2b:d7:49:2f:21:a6:68:13:f9:f8:94:b0:a8:
5a:6a:c4:f7:d5:7a:99:3c:31:e6:2e:20:46:58:22:58:38:a8:
d2:34:d5:8d:86:28:d4:b0:79:49:dc:ac:5b:3d:3f:cb:68:75:
33:4e:62:d3:c1:9e:ca:03:84:78:1b:d1:4a:ff:71:43:46:c3:
3f:77:34:84:73:c7:b6:98:0c:de:30:b9:e0:12:80:5e:07:10:
e1:f7:56:7c:44:a0:9b:2a:55:96:cc:a5:d0:35:c9:26:2e:97:
5a:ed:e1:07:e0:8c:68:ce:da:01:26:bb:fa:26:bd:80:bc:a7:
b4:96:0c:b9:eb:89:18:5c:5c:e2:48:95:1e:ac:5a:e9:88:07:
8a:a0:f2:fc:c9:43:4c:18:d2:7b:f5:21:93:ab:87:81:ae:44:
ef:88:38:16:01:6d:ea:05:0e:10:56:87:5a:c4:1d:50:bf:cd:
c7:e0:81:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:52:46 2024 by rpki-client on console-fra.rpki-client.org