Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer
File: Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer (raw, json)
Hash identifier: Ir99eUW+zbeOfloxUab3cWM7JcEkQgqRDOt3JANdvvU=
Subject key identifier: 55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 594B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Aug 2024 12:24:49 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 130.217.0.0/16
IP: 192.73.21.0/24
IP: 192.107.171.0 -- 192.107.172.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22859 (0x594b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 6 12:24:49 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91127C1/serialNumber=55FB7BCCA740285FC81AA360F02CE32F95816DB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4f:ca:5b:c2:27:9c:46:1a:6a:06:c9:12:d5:
dd:13:ea:4c:d9:32:10:3d:be:2a:aa:a5:95:c7:aa:
e8:38:d0:38:8a:e1:4b:19:4b:1b:06:d6:41:68:56:
4a:04:6a:07:03:73:08:78:4e:7b:20:0a:55:b6:f8:
6c:66:b9:4a:82:c2:d4:37:8e:a8:be:cb:33:4a:ae:
97:f8:53:1c:88:75:84:03:31:9d:11:a7:ba:42:d3:
f7:3a:a0:cc:6c:f1:c7:3a:75:ee:01:a6:b4:2e:d6:
55:6e:36:28:c7:ca:c0:df:e9:a4:6b:9a:cd:33:ae:
dc:56:cd:75:de:18:c1:b4:f1:bb:1d:b1:53:f6:9d:
45:f4:52:4e:be:1a:4e:dd:01:66:2a:a7:74:b4:1a:
92:df:fe:99:4a:44:f1:ad:76:da:31:07:ac:f4:6d:
65:37:4b:2a:2c:0a:40:14:38:cc:bd:c7:98:3d:8f:
b1:f8:56:0d:d1:4e:97:f2:10:f0:0b:86:4b:df:f9:
02:b1:11:56:d0:89:4d:2e:02:01:2d:75:e5:8f:5a:
6b:81:51:42:57:1c:11:64:04:24:49:5f:ea:b1:81:
c3:e6:43:6e:01:81:bc:6c:41:a7:79:15:e3:22:a0:
ba:bc:9d:c9:87:bc:54:d8:e5:51:c7:77:8e:43:cb:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
130.217.0.0/16
192.73.21.0/24
192.107.171.0-192.107.172.255
Signature Algorithm: sha256WithRSAEncryption
00:1e:c2:b2:33:0f:07:3a:e0:e4:0f:71:fc:30:6d:7a:34:a2:
85:1d:cb:47:23:ba:a0:ab:0f:33:12:e0:ea:75:ad:2a:52:96:
a3:29:03:01:62:c7:ab:4c:17:c1:af:79:1e:cb:4a:aa:ef:2e:
11:48:a9:70:94:61:9e:7f:d3:ad:c7:43:ed:65:16:45:4b:74:
0f:af:ed:24:3d:3f:62:89:34:7e:d0:0b:18:68:13:ff:49:9f:
2e:3c:6a:d3:4a:76:40:98:54:5c:e0:db:e6:08:c1:66:9c:53:
65:c8:d1:d0:72:d1:4f:7d:05:96:94:7d:26:0c:c0:9e:56:77:
6f:d7:b2:90:9a:b1:52:02:69:dd:2b:44:8d:2d:60:ec:72:c8:
19:6e:2e:b1:7c:41:06:fb:51:50:15:d2:ee:b9:6f:aa:de:1c:
e1:d9:f3:a1:63:8c:e5:a5:38:fd:5d:64:1e:8c:a9:fc:68:a0:
77:b7:21:32:68:6a:b3:02:6c:ba:f5:88:2b:70:0f:c2:2d:bb:
1b:59:d1:1d:fb:e3:08:58:14:33:29:f6:bd:b2:19:08:a6:b0:
cf:30:79:63:a0:8f:f9:d5:93:77:e1:59:44:5e:33:b4:fa:43:
e4:97:6d:b5:ae:76:fe:5d:e0:39:f8:8c:41:ee:15:24:74:50:
fb:f3:25:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org