Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer
File: RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer (raw, json)
Hash identifier: VKXgJqagRjoH7fehz98BstkvFHljD2DqJPHb1crnTsM=
Subject key identifier: 45:7D:B7:66:E1:B0:D6:A4:DC:C7:F9:AE:CD:28:7D:4D:C3:E7:0C:9E
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5AF5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Sep 2024 09:07:22 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.56.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23285 (0x5af5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 16 09:07:22 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91EE92F/serialNumber=457DB766E1B0D6A4DCC7F9AECD287D4DC3E70C9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:62:37:87:6a:b4:1a:c7:1d:ad:c8:23:9b:22:
79:21:89:a1:19:eb:1e:1a:09:87:3a:38:ad:59:44:
9d:41:c0:e8:f5:12:b0:5b:16:89:e0:58:70:77:b8:
91:76:3f:b2:ca:44:c6:a7:a9:04:f7:7f:0e:01:9d:
bd:35:e7:12:37:84:90:d1:29:a6:ed:85:36:ff:6b:
27:69:73:f2:49:96:d3:36:75:e4:cf:87:1c:17:83:
5f:02:49:07:42:3f:00:74:1d:f2:86:ca:77:05:98:
50:6e:fa:db:38:fa:ca:46:d5:b6:76:3e:c9:c8:d9:
c9:64:8a:57:2b:1b:cd:2d:a4:41:df:af:8e:8d:2a:
fc:06:da:8b:18:b5:39:bc:a4:a3:09:47:dd:78:9c:
3e:9d:ae:db:5b:78:a3:85:40:45:2b:8c:a5:66:3a:
c9:6c:e1:c0:6b:43:9d:4e:0d:35:e4:53:e7:96:93:
7c:c5:1d:7a:48:74:48:89:bd:90:db:35:63:e8:0e:
b9:bf:2a:d0:2d:ae:6e:e9:e6:e5:4b:e8:8c:95:fd:
8f:81:a6:01:ad:95:4d:c0:b3:f4:75:e9:5e:4b:cb:
06:54:63:0d:95:45:98:c6:75:2c:f8:39:6a:3f:cf:
b0:41:52:c7:c9:cb:d0:5f:b3:2a:8b:23:17:4e:4d:
67:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:7D:B7:66:E1:B0:D6:A4:DC:C7:F9:AE:CD:28:7D:4D:C3:E7:0C:9E
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.56.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:cf:a5:8e:3f:d9:7e:b3:8a:35:80:48:cd:44:88:a4:c2:6e:
bf:02:4b:fb:52:e8:11:11:e9:a0:bd:70:9a:f1:07:36:76:cf:
a7:5e:3f:9d:9d:ba:7c:5e:bc:47:66:46:78:ed:49:4b:81:45:
61:aa:10:7f:51:88:a4:b8:cd:a1:91:89:61:5c:84:6e:55:28:
a0:74:80:68:8b:90:81:9b:8c:7d:4a:8d:74:cb:ef:50:ca:7e:
60:ad:72:8e:ff:4c:8a:c4:ab:49:23:4e:dd:d7:82:2a:10:c5:
e8:a5:79:dd:9f:5c:89:67:39:76:3c:44:8d:fc:cd:d4:41:bb:
f8:a6:b5:26:7d:a6:77:e1:b4:38:29:f8:34:c1:91:58:6f:ed:
8b:f2:f4:ca:ca:90:ba:7b:4a:f1:9a:b6:02:5d:12:e7:08:0d:
3f:d5:13:4d:84:09:ed:f5:6e:cd:55:d4:fc:48:ab:1f:67:89:
c4:23:3c:5f:aa:94:1a:ba:a6:e1:aa:88:ca:86:57:b5:08:17:
83:ff:93:3a:06:8b:bd:19:de:4d:a9:44:2e:56:2d:b0:ca:54:
dc:d9:de:74:eb:f7:81:a8:f4:b8:79:58:8a:42:a4:7c:0a:de:
8b:fc:2b:cf:14:c1:aa:29:ec:79:15:78:a5:4c:8e:4c:c7:fc:
f4:66:5e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org