Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QsLLpH-tOJ_Ri2HK4iRy1h4OqJY.cer
File: QsLLpH-tOJ_Ri2HK4iRy1h4OqJY.cer (raw, json)
Hash identifier: AjArY1Ul+XupZK4a/Z0qsksL2w4SQJvaY7PGrPiptYw=
Subject key identifier: 42:C2:CB:A4:7F:AD:38:9F:D1:8B:61:CA:E2:24:72:D6:1E:0E:A8:96
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9140436/1561BEDE765711EF8BFC7A11C4F9AE02/QsLLpH-tOJ_Ri2HK4iRy1h4OqJY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9140436/1561BEDE765711EF8BFC7A11C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Sep 2024 07:16:31 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.66.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23316 (0x5b14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 19 07:16:31 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9140436/serialNumber=42C2CBA47FAD389FD18B61CAE22472D61E0EA896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a7:0d:33:c3:e9:73:ef:87:45:76:70:92:f0:
30:0f:88:ee:97:4e:aa:8c:18:45:00:33:16:88:ba:
fb:d5:5e:f4:be:84:e5:c8:16:7b:a6:b2:4a:8e:fa:
ec:2c:df:69:fd:96:b2:26:bb:ca:84:e2:48:b4:f6:
e0:84:aa:09:c9:ad:6a:cf:b7:36:57:b6:1a:58:3d:
ea:73:98:ab:7c:5a:7e:65:2b:f2:a3:f0:c1:c1:d5:
13:3c:25:c7:af:93:97:1c:c1:10:27:0d:ba:24:ac:
55:de:42:74:26:df:c5:3b:13:ff:73:90:5b:89:b9:
13:14:19:3f:c0:89:e1:6e:cb:81:23:45:25:c2:fe:
a8:f7:d7:f9:7d:1d:06:3f:ab:94:1a:ae:91:f1:10:
54:df:ad:06:cb:fe:00:db:aa:00:2a:ac:82:ad:be:
81:80:ce:88:d0:97:ac:aa:ca:c8:f9:2d:8a:b2:92:
af:6c:a8:e0:57:58:43:b6:4b:7a:f2:65:73:c8:6c:
b9:9f:63:2c:d8:39:c2:20:84:8c:80:57:cd:db:ed:
1e:38:d5:29:6a:94:67:54:31:62:d4:bc:88:01:db:
81:4b:ef:46:cf:b0:d2:65:a3:12:fd:b8:5f:f4:7b:
59:ed:3d:35:ec:5e:ef:a3:13:97:61:00:ef:f3:b6:
3f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C2:CB:A4:7F:AD:38:9F:D1:8B:61:CA:E2:24:72:D6:1E:0E:A8:96
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9140436/1561BEDE765711EF8BFC7A11C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9140436/1561BEDE765711EF8BFC7A11C4F9AE02/QsLLpH-tOJ_Ri2HK4iRy1h4OqJY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.66.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:4f:ce:05:ba:6f:87:ac:f6:35:82:f5:3b:b1:cf:ed:fa:bc:
4b:b2:ea:64:2e:6b:32:c2:19:e8:a9:47:77:2e:e6:7c:d0:8a:
71:de:6d:4e:71:ef:26:c0:e6:67:c3:bb:1d:b0:ea:6e:b9:c0:
22:13:03:65:d2:98:c5:1e:6d:a7:19:0d:90:0c:78:6a:9a:88:
67:a2:3f:7f:6a:19:2c:5b:58:ff:9b:7f:07:07:22:1b:ba:a8:
2f:1f:16:ad:d2:d7:7c:3c:cd:c3:7c:20:f9:e7:73:ac:7e:c8:
6a:8b:2a:28:1a:a9:41:96:ad:5f:bd:e4:05:07:88:f7:41:37:
a7:2c:3d:94:13:c4:64:d5:5c:97:94:59:64:ee:1b:e3:35:15:
75:de:da:a3:77:83:b4:ba:f5:ec:1b:23:c9:e3:31:2b:16:e9:
32:b1:f5:86:92:bd:a4:27:6c:27:5b:fc:14:59:fc:bf:44:3f:
72:2a:be:34:b1:11:3a:65:eb:f4:30:2e:32:88:d1:b4:34:b1:
25:14:f3:77:cc:3f:89:ee:0a:89:e9:6c:06:c3:aa:a1:b3:5e:
b8:6a:ed:9b:1f:c1:ea:56:fd:ef:e5:6a:a6:90:cf:7d:cc:d9:
77:ac:c2:41:ed:f6:dc:05:24:da:ed:3f:c6:50:d9:31:ea:aa:
41:2e:fd:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org