Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer
File: WlbE3pQjueK4AKt-BA3KPgnyNHU.cer (raw, json)
Hash identifier: LD8pgA+UUtksHJkXO/mRZyjhi6Q+wwYQFzINgdAbQDY=
Subject key identifier: 5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5E03
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 17 Nov 2024 07:14:04 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.158.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24067 (0x5e03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 17 07:14:04 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91B165F/serialNumber=5A56C4DE9423B9E2B800AB7E040DCA3E09F23475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:83:dc:e4:ee:72:ee:5e:cb:c7:59:9f:df:e2:
ab:c0:73:bf:d3:97:e9:21:9f:d6:63:58:31:d5:39:
87:8e:01:33:81:b5:d6:34:5c:c2:14:91:56:75:cf:
c0:07:f8:b8:a2:4e:e7:15:ae:95:a4:02:94:63:0b:
79:75:f1:12:30:37:5c:df:ef:04:74:dd:58:21:51:
fc:65:9c:2b:fe:ab:7c:f4:36:e6:b2:46:ea:ad:77:
ce:e4:91:44:38:b8:f2:07:b2:36:67:f9:c0:48:41:
9f:94:87:5c:d7:c3:b9:ac:2f:ea:d0:b8:28:c4:9c:
85:07:53:e5:a4:63:b4:b4:2b:20:35:b1:af:b3:3c:
91:ca:c0:84:7c:10:35:fe:69:fa:92:30:5f:7d:af:
c0:5f:0a:f6:b2:6c:51:25:16:4d:d6:c6:d2:f4:13:
3b:f0:f2:c2:78:da:4b:bc:10:81:5c:fb:e4:b6:8f:
cc:da:71:cd:90:52:72:2c:b6:37:53:ad:1b:c0:de:
03:31:4c:ec:8c:7b:03:48:cf:6c:6a:bf:32:69:08:
4b:20:8d:cb:e3:fe:71:77:39:2c:3c:f1:b0:18:f3:
23:1f:1d:38:bc:42:83:7d:c2:b4:48:76:9d:74:d5:
79:8f:87:9f:4a:e4:a6:91:15:2f:34:0e:ed:50:b8:
29:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.158.0/23
Signature Algorithm: sha256WithRSAEncryption
40:f1:86:7f:80:3b:4e:97:76:93:99:c0:02:b2:85:28:29:88:
d6:61:62:30:1d:23:20:ca:ad:e8:7f:c2:8e:79:44:2b:95:b5:
58:ca:83:18:6c:1f:a1:59:4c:37:a8:6b:bc:25:6d:b7:80:57:
8e:4f:d3:f5:60:a5:15:a2:ce:e1:40:be:db:ed:00:24:0a:28:
29:1a:e8:3d:96:4d:16:45:80:ae:61:89:fc:12:79:b4:51:96:
11:b4:e3:41:ca:81:13:45:ae:55:a8:14:67:f9:91:9c:bd:76:
c2:9c:5f:dd:a6:2a:a8:14:01:41:28:d6:ee:9a:12:04:f2:9f:
eb:86:a3:cc:3d:bf:15:6a:db:eb:11:7b:2d:9d:b9:1a:2a:08:
37:ab:05:fe:53:25:ef:a1:f0:28:e6:94:95:37:2f:5b:de:71:
37:5f:37:f1:cf:fe:a8:f9:75:c4:61:cf:f6:ff:d2:a8:99:00:
0f:e0:27:a2:ec:f2:ec:ce:3e:12:f2:d0:9a:b0:95:c7:3c:e7:
14:e4:16:47:2f:46:92:37:c9:2f:1a:37:30:49:fa:4c:af:09:
84:34:8b:24:f6:42:70:4c:30:5d:fb:e8:9b:80:00:40:71:06:
81:d7:b8:ec:56:56:2d:16:da:37:89:83:f0:3f:51:2e:19:7e:
37:a9:b9:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org