Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer
File: QSE7L18kKfwyjsP06V1YhkAv62k.cer (raw, json)
Hash identifier: P1rPmqwRECe7LhuHmxTr5cgYiZo6zSefAa+C2zDcjn8=
Subject key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5449
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Apr 2024 02:57:49 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 155.144.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21577 (0x5449)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 5 02:57:49 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5e:82:c8:af:63:f1:97:9e:7a:64:0a:63:f8:
54:2f:4b:d4:ef:c7:24:51:88:26:cc:49:bd:f8:74:
44:7b:05:b4:ab:a3:26:a5:5d:9e:6b:59:b2:f8:cb:
b4:23:5d:0e:50:33:26:19:01:da:4c:51:20:25:3d:
e8:bf:53:4a:bf:6a:b9:a9:68:47:ed:b4:53:67:39:
aa:89:16:0c:33:44:6b:a8:07:db:cd:3a:92:56:33:
c6:4b:fa:05:7e:4e:f9:a9:43:e5:de:b8:b7:3d:c8:
e5:4d:13:94:34:dc:30:61:68:85:c8:6f:0d:e7:46:
17:91:54:9a:34:53:11:de:e6:15:f2:a9:d2:8d:e3:
c0:e5:68:b0:d2:76:dc:7e:01:b7:9e:6b:fd:e0:dc:
3c:11:e3:22:c8:60:c5:4c:5b:84:8a:ab:74:08:e2:
80:79:81:48:48:c1:2c:0f:f1:9f:eb:df:d0:4f:8c:
c5:34:fa:aa:55:56:f0:8e:f7:6e:1c:df:0c:e8:d4:
fc:d8:9f:e4:5f:2b:95:76:b1:4b:2b:e2:4f:bb:b9:
db:47:5e:ef:e3:fa:a6:6f:b6:bb:ad:f7:f7:18:12:
c4:74:51:c2:24:3f:c3:51:b7:ff:08:26:19:21:17:
36:b2:99:bd:76:62:47:35:8b:da:11:6f:2c:c2:9f:
fe:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.144.0.0/16
Signature Algorithm: sha256WithRSAEncryption
89:ad:bd:5e:ea:0d:0b:03:b2:d5:64:78:23:05:b6:1d:5c:74:
8a:4f:83:83:a6:27:e3:31:5d:22:ac:85:b9:0c:48:85:f4:9f:
a4:3d:85:cf:03:db:b2:e7:72:95:b3:70:73:6f:c2:67:90:d6:
6c:85:a5:3e:96:b8:3d:9e:f0:2a:c4:ef:d3:f8:bb:c0:ef:dd:
08:8e:3b:36:87:dc:25:96:1a:ef:fe:b7:05:fa:ef:13:2c:c0:
64:4f:cf:db:47:44:db:fb:8a:73:2d:04:9c:5d:a8:ff:b1:e3:
09:2a:a2:f1:0c:2f:95:3a:4e:e1:76:d0:5c:c4:60:eb:1b:05:
5f:b3:14:8d:ee:a9:2a:90:51:da:1e:e6:90:e0:9d:66:d3:e1:
59:b7:d6:8a:4e:8d:79:5f:eb:6b:32:46:a4:ec:d6:31:fa:17:
2d:20:01:f4:1b:29:29:74:af:0c:bb:37:ff:cb:5b:c5:7f:f0:
46:2c:c0:11:18:41:eb:5e:a4:77:95:48:5b:40:6d:43:16:9a:
e0:73:66:04:9d:5e:da:bc:60:73:44:a4:af:c5:d2:9a:b7:6a:
51:a8:4e:dd:6f:3a:17:11:fc:28:b1:fc:80:44:a0:c5:5b:2c:
cc:38:52:2a:8a:6f:a5:d0:78:aa:cb:b2:d3:21:0d:e6:97:d1:
21:ef:84:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:44:28 2024 by rpki-client on console-fra.rpki-client.org