Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer
File: Swkt8QQoD0W8PyeW9AHMK0xhROk.cer (raw, json)
Hash identifier: Iuh+U6GUOalnUPqjYHM/MLp9fQbjBo+LE+dspkWtHus=
Subject key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5F9D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Dec 2024 12:23:13 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.6.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24477 (0x5f9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 20 12:23:13 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91C8307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:0d:e8:59:7f:fa:c8:c2:1a:0a:71:e2:df:da:
ec:fb:72:41:4b:f8:0e:77:fc:d8:4c:84:78:dd:27:
22:44:4e:c1:16:8a:6f:28:1b:ff:26:d8:98:2e:69:
8f:54:bc:89:2f:57:18:63:15:c8:c6:89:8a:5d:a5:
a2:3c:5a:ef:3e:a9:70:cd:08:e9:96:6e:32:68:fd:
75:08:a1:ea:81:bf:61:b9:2b:88:ac:76:8c:2f:81:
c8:77:38:e0:83:2f:25:2a:f7:6a:86:bf:f1:63:8c:
3c:49:1b:c7:68:57:ce:28:f6:46:72:c0:43:48:6a:
b4:88:ab:01:80:58:8e:2f:fa:9a:6f:95:3f:eb:83:
4b:9d:e4:7c:46:02:35:eb:1b:1e:0f:51:63:3b:36:
94:70:cd:a9:83:59:2e:d9:0f:c3:01:e4:80:6b:09:
74:15:b2:cd:38:1e:29:22:02:bd:bf:c2:ac:f0:b3:
9b:50:9f:07:95:a2:53:9e:3e:6b:02:60:82:76:fe:
28:a3:76:47:8f:68:06:cf:36:47:b4:2a:91:00:3d:
23:0f:67:36:f2:13:f4:36:08:98:1e:d9:ca:5c:30:
ea:e6:db:f6:fd:df:1e:11:e4:4b:87:ee:3c:2a:b5:
fb:0b:bf:c2:b8:24:cb:9d:85:bb:65:85:27:29:8b:
53:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.6.0/23
Signature Algorithm: sha256WithRSAEncryption
81:24:22:f1:95:55:75:47:64:1a:4f:21:2f:74:3d:4f:a1:51:
84:0c:0a:cd:39:51:8f:13:c1:06:9d:83:01:66:b4:46:a7:92:
33:77:4e:40:1f:77:34:f0:af:bc:06:c9:01:32:ad:8c:d9:71:
23:36:76:12:6d:0b:55:13:c2:06:52:ec:94:ca:d0:10:4f:53:
a8:b0:5f:ef:d2:5c:1d:0f:d0:7c:33:f7:bc:ea:d7:d6:00:6a:
83:c5:79:c4:e2:ad:97:6d:b5:99:b1:8c:3e:06:d5:30:64:69:
0b:3f:ff:33:38:6c:3c:21:9e:1f:0e:66:0f:de:25:7c:23:fe:
4c:5c:37:11:84:10:3a:91:ef:50:49:cc:56:63:6b:28:70:c5:
33:5f:14:57:70:b4:d0:66:67:5a:16:a5:a9:0f:50:db:eb:7a:
b5:a2:4d:bd:8a:f6:ff:3b:1a:c6:f6:19:7c:15:c1:7b:c2:b5:
cd:f5:02:ad:ea:bc:57:d4:d6:43:6d:89:26:7f:03:1e:be:a4:
78:a4:7a:1e:9e:b5:df:ad:1e:4c:5c:fa:73:ac:cd:23:ed:37:
49:f0:1f:f5:c5:ca:06:d8:40:ba:a7:5f:5e:1f:bd:16:b5:ca:
eb:5e:0f:57:a2:77:be:02:1a:75:0e:74:69:53:fe:0c:50:4f:
6f:ef:c0:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:54:09 2025 by rpki-client