Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer
File: QOWCY5crniQUK6qbWvoFNIGjcZ4.cer (raw, json)
Hash identifier: Vt5856jtSmoRFIuRUjQHc0Xtf9oUTESuaDDyiXsgDKA=
Subject key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4FB5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Dec 2023 20:08:14 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 164.52.0.0/17
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 17:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20405 (0x4fb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 29 20:08:14 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:47:3d:c7:68:57:ac:01:2e:41:b6:bb:44:54:
91:2b:9a:c7:ca:f3:ea:2f:ee:2a:73:04:74:93:42:
38:ed:b1:94:b6:40:81:0b:d0:e3:3b:d5:7b:50:06:
88:1a:64:94:6f:3a:db:ba:f0:89:23:ba:56:07:aa:
00:f8:cc:4d:1f:9b:6f:f1:27:66:c9:df:e7:25:c7:
d5:b1:05:12:9d:44:eb:55:e3:6f:70:ac:b6:bc:d5:
e4:67:e5:17:b3:6e:ef:74:60:28:d8:06:8f:4c:be:
fb:fc:f8:f1:8e:7b:b5:08:49:ab:eb:e6:d8:7d:19:
41:95:d6:a1:b0:41:41:d7:3c:c4:cf:7d:55:f1:85:
44:00:b7:40:5d:db:dd:5d:cc:58:5b:e2:18:4a:33:
21:72:f4:4a:5b:56:bb:20:bb:41:9c:5f:a4:ba:c2:
cd:10:f0:b9:50:2c:b6:cd:d4:64:db:87:21:db:b6:
6f:64:eb:e1:a7:71:d1:7b:09:43:ac:aa:71:eb:1f:
81:8e:4a:db:af:2b:a9:f1:d7:41:26:9a:58:0a:90:
df:a3:c0:08:d0:7f:d7:6f:bf:be:56:ff:6d:77:de:
4c:ec:f9:83:d4:13:a0:08:30:4f:0c:2f:62:d5:5d:
54:01:33:f9:8a:79:4e:4c:58:64:13:82:43:42:33:
62:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.52.0.0/17
Signature Algorithm: sha256WithRSAEncryption
62:10:d3:f5:db:10:f7:19:3f:c6:67:a7:c6:26:1d:7b:24:87:
6f:e3:e0:31:46:26:2d:65:2c:d1:38:c9:1c:89:5f:48:39:a5:
92:ed:ad:72:e1:4f:cc:7e:55:e1:a2:84:13:f2:23:f9:c7:79:
ba:e2:d4:a5:f9:c2:a7:a6:25:0a:ab:06:8d:1a:68:a5:2a:c5:
46:ff:1f:fe:29:58:0f:00:66:0c:f4:2d:e3:57:a9:92:eb:16:
be:e3:be:78:ad:83:a6:f9:44:57:e7:d7:b7:bf:86:40:6b:24:
1a:e8:10:4f:52:1a:bf:28:db:40:df:1b:0f:84:ff:f4:2e:82:
19:19:57:0e:4c:8d:ee:6d:1f:f0:0d:82:4c:cb:6e:fb:c7:b7:
22:c5:88:09:a2:42:8b:60:a8:80:b4:bd:77:8c:1e:b6:f1:a9:
15:32:73:eb:ee:aa:60:61:55:cc:12:83:46:7d:50:cf:29:a8:
a9:6c:c3:a1:78:c2:a9:c4:6d:94:36:2b:34:ff:82:ca:ab:61:
53:b3:28:53:83:4d:92:ee:6f:b8:34:86:9b:54:b2:e0:1b:64:
3f:3d:7f:35:4b:5b:02:cb:05:f3:ae:47:4b:cf:e7:39:33:9b:
0b:96:89:56:01:84:33:4e:b6:c8:ae:c3:7c:02:d7:9a:74:41:
29:f2:c9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:08 2024 by rpki-client on console-fra.rpki-client.org