Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer
File: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer (raw, json)
Hash identifier: ZB52l2A5KEqeIPaHIgaWhpx6ZT1jf9t8pJXsOgEfybU=
Subject key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5F8B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Dec 2024 09:12:04 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.222.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24459 (0x5f8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 19 09:12:04 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A9144F34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:86:f5:09:f7:fe:a1:f8:db:38:bb:99:24:24:
09:91:c3:dd:e0:10:1c:c1:f5:73:5d:d2:8c:19:19:
03:30:c8:70:e6:43:93:2a:1a:f2:da:41:75:31:39:
dc:61:8a:29:61:ee:b7:8b:03:f1:b5:b6:b3:34:b5:
61:40:2e:35:b7:51:1b:1f:8c:d5:90:8c:92:32:c3:
b0:7f:8b:0f:2d:d1:8b:f2:c3:74:f6:51:ae:70:b6:
31:fb:33:c7:6f:d9:56:33:1d:a8:73:b0:d5:0c:aa:
14:03:36:92:bb:c7:53:76:22:cc:31:83:9f:f3:3a:
0e:be:84:62:4d:dc:e2:6a:43:3f:fe:f5:48:60:ab:
14:be:d9:d4:3e:fd:09:d9:37:12:ab:88:6b:f9:a4:
11:f2:96:e9:47:91:af:81:c2:1b:bf:87:b8:79:e2:
2a:17:3e:d1:da:1c:45:70:a1:c8:d4:c9:67:e0:e6:
5b:a1:0d:7b:7b:1e:17:9c:40:5c:34:b2:bc:fc:28:
ac:de:58:40:df:64:b2:14:b8:99:18:0e:81:7d:ec:
8a:f3:8a:6a:d4:12:b6:a1:26:21:2a:18:44:c3:1f:
c6:42:4a:fe:4f:8c:8e:6e:6b:27:9e:7d:68:09:8a:
c0:e8:20:c7:c9:66:41:84:e5:8a:b5:e4:d6:1a:97:
33:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.222.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:26:cc:8a:6d:26:62:96:10:0e:3c:cf:46:b7:49:d7:01:6f:
49:91:ab:01:f6:1c:03:88:05:75:0f:bb:2a:c6:b6:67:29:4e:
d1:74:61:fa:f7:46:00:c4:34:ee:b1:8e:3d:e8:cc:e4:4d:63:
09:25:2e:dd:51:21:f6:ae:ee:71:b4:47:9e:de:a8:e5:29:36:
cf:76:ef:bc:14:97:8d:f4:a8:95:53:44:3b:7a:5e:82:e5:79:
ff:8d:ca:ff:fe:e4:5f:f5:ec:a1:e8:d5:95:4e:86:f1:f1:55:
39:3d:1e:3e:bd:5f:cd:50:08:3e:90:26:54:2d:1b:e3:de:25:
1e:33:3d:11:67:9d:29:a6:22:71:37:aa:af:5e:cb:39:10:02:
bd:e4:5c:9e:39:c8:d3:31:06:46:11:7e:7b:44:ac:5f:6f:5d:
0d:ef:f9:e2:6d:8c:e7:c1:d4:aa:2e:df:77:ce:2d:9c:8f:87:
0a:8f:ab:f9:9c:aa:56:78:41:35:fc:10:c8:eb:d4:af:3c:45:
f6:a4:ea:1b:89:14:cb:04:9a:e6:1e:b6:ee:92:12:4c:7c:03:
17:58:9f:80:d0:c3:57:fa:d2:8b:17:90:e0:b5:b5:35:61:bc:
7d:65:dd:ea:71:2e:31:f4:67:45:83:fc:13:d6:83:11:50:c4:
91:c0:27:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 17:08:50 2025 by rpki-client