Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer
File: XiM50eqvU0mhOKR5fagtDrTfqew.cer (raw, json)
Hash identifier: r4RXr33QM5ULjvBk2hWWsYNS8HQnWIVp1FVZtuqrtq8=
Subject key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 53BA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 24 Mar 2024 17:31:15 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.20.116.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21434 (0x53ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 24 17:31:15 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fe:06:3c:bb:e2:60:d8:45:ea:ec:c9:1f:04:
a5:07:b8:00:de:dc:e8:e0:f1:b9:54:d4:92:c9:f8:
6f:b0:69:41:7c:02:6e:e4:f2:b6:0d:13:ba:25:52:
b0:84:67:df:7c:a8:c2:c4:70:60:31:c2:32:ed:aa:
43:28:82:bf:d2:7a:16:0c:60:49:9a:af:86:b4:19:
6d:54:b0:17:0d:c5:9c:d9:62:0e:13:bf:bf:48:73:
fb:a3:37:42:61:76:5f:6f:36:dc:b8:19:7f:b8:a0:
cd:10:fe:0e:88:ba:d5:72:c9:0a:2c:40:9b:1b:be:
a1:a6:86:7c:ff:78:e3:a3:45:28:8c:5b:39:3d:cd:
ee:7d:b2:e6:7c:9a:d4:f3:91:47:27:f4:0d:3a:f1:
58:24:9b:eb:52:e4:9c:85:2f:f6:dd:46:b4:a2:21:
4e:81:4b:24:e8:7a:f7:45:5b:49:80:00:a3:02:7c:
d1:ff:9c:5d:98:bb:6f:fb:dc:e7:14:de:32:c5:a7:
25:70:dd:0f:ef:22:f5:1d:e0:31:14:cd:8c:21:19:
50:f6:0b:d6:e1:25:5e:8e:00:0f:57:09:b6:87:bc:
27:7a:f6:a4:70:9e:a5:81:96:73:ea:f4:d5:92:9b:
b1:98:f9:49:62:26:a8:0e:40:78:61:f6:df:e8:73:
bd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.116.0/23
Signature Algorithm: sha256WithRSAEncryption
21:0a:89:9d:e6:d4:17:9f:58:ff:79:42:77:04:fd:fe:59:c4:
2c:46:01:dc:61:70:7f:e5:66:a2:e5:4c:ba:25:0f:ed:25:71:
71:5f:11:df:00:ca:a5:bb:8b:0f:ea:b1:31:d9:c1:45:8f:61:
82:99:59:70:83:21:69:f8:69:23:35:df:ba:b0:9a:f3:c8:d1:
fc:9f:9a:21:e7:96:9c:84:af:7a:e6:f6:02:9e:1d:02:97:d8:
0e:13:a0:29:5b:02:f4:1e:6a:75:a2:cf:72:13:04:ea:45:49:
99:78:5f:96:05:b0:74:c8:27:11:92:14:a0:4d:3b:e5:f0:a8:
21:8e:b1:2c:68:38:05:7d:f0:5a:dd:64:7b:15:72:69:c0:99:
40:79:01:53:e1:cf:ce:04:e8:b1:d2:4a:bd:8d:c7:45:32:d5:
e7:c4:ec:c6:35:3e:c7:ce:c8:b3:27:78:a7:48:6c:d0:ed:39:
0f:96:dd:95:6c:3e:01:91:d1:b6:e4:8d:48:01:b0:c5:d0:03:
67:41:54:6a:88:d8:09:2a:be:2c:b9:5e:17:57:69:b7:bc:0b:
8b:31:f8:15:92:7c:35:9e:d6:5c:80:32:ce:1d:c2:a3:6e:e9:
cb:02:a1:ec:c7:a5:e9:ce:45:96:ab:ce:02:dd:cd:42:89:81:
c5:5f:83:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:44:28 2024 by rpki-client on console-fra.rpki-client.org