Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer
File: QSE7L18kKfwyjsP06V1YhkAv62k.cer (raw, json)
Hash identifier: XjsS5UTwpQ/+93gBGypYfVnKDdB9Ba4etSWAOiaz9Vg=
Subject key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A3A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Aug 2024 16:16:05 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 155.144.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23098 (0x5a3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 28 16:16:05 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5e:82:c8:af:63:f1:97:9e:7a:64:0a:63:f8:
54:2f:4b:d4:ef:c7:24:51:88:26:cc:49:bd:f8:74:
44:7b:05:b4:ab:a3:26:a5:5d:9e:6b:59:b2:f8:cb:
b4:23:5d:0e:50:33:26:19:01:da:4c:51:20:25:3d:
e8:bf:53:4a:bf:6a:b9:a9:68:47:ed:b4:53:67:39:
aa:89:16:0c:33:44:6b:a8:07:db:cd:3a:92:56:33:
c6:4b:fa:05:7e:4e:f9:a9:43:e5:de:b8:b7:3d:c8:
e5:4d:13:94:34:dc:30:61:68:85:c8:6f:0d:e7:46:
17:91:54:9a:34:53:11:de:e6:15:f2:a9:d2:8d:e3:
c0:e5:68:b0:d2:76:dc:7e:01:b7:9e:6b:fd:e0:dc:
3c:11:e3:22:c8:60:c5:4c:5b:84:8a:ab:74:08:e2:
80:79:81:48:48:c1:2c:0f:f1:9f:eb:df:d0:4f:8c:
c5:34:fa:aa:55:56:f0:8e:f7:6e:1c:df:0c:e8:d4:
fc:d8:9f:e4:5f:2b:95:76:b1:4b:2b:e2:4f:bb:b9:
db:47:5e:ef:e3:fa:a6:6f:b6:bb:ad:f7:f7:18:12:
c4:74:51:c2:24:3f:c3:51:b7:ff:08:26:19:21:17:
36:b2:99:bd:76:62:47:35:8b:da:11:6f:2c:c2:9f:
fe:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.144.0.0/16
Signature Algorithm: sha256WithRSAEncryption
68:f9:1c:3e:f5:bb:ba:07:5a:a7:a8:6d:d9:ed:82:b0:c5:3c:
0e:3e:4e:21:29:59:6f:e0:0b:0f:e0:08:ae:aa:be:78:8e:2e:
a4:21:4a:63:7d:37:5c:3f:e1:70:fe:6a:03:62:fd:95:75:ce:
d6:2e:89:f0:04:44:12:2d:ab:8e:ae:3c:82:19:c4:c9:80:21:
13:f1:77:b4:bc:0b:26:a0:21:16:ea:5d:df:54:b9:34:3e:e0:
56:b7:b4:e4:94:eb:78:65:64:b4:a1:5b:28:2b:87:8c:b8:51:
0c:22:9c:3b:b3:b1:dd:bd:8a:57:fd:6c:c3:b6:c3:fe:ce:2e:
18:ad:ae:45:1e:62:d8:11:3f:4b:e0:81:59:3b:fb:dc:94:71:
62:ad:c4:c5:7c:8b:d4:d0:6b:ba:83:7c:c0:e4:80:ab:16:5d:
88:03:6c:12:a3:60:86:ae:40:6a:df:34:6e:b0:ce:3f:89:47:
95:8d:ea:e8:f0:30:a1:a2:0e:54:1b:6c:65:0b:29:8a:c9:33:
32:ea:63:4b:5b:fc:10:b5:0a:cc:40:ff:45:16:b2:38:c6:22:
04:1d:d0:db:ca:f7:1b:01:f9:e7:25:7e:51:64:b6:4a:6c:f9:
8e:4f:59:bd:dd:a2:13:31:18:39:d6:8f:00:3e:25:d8:b8:a8:
f0:99:fc:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org