Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YWOpVUwzBnn36hZnixCNlk7ByAI.cer
File: YWOpVUwzBnn36hZnixCNlk7ByAI.cer (raw, json)
Hash identifier: h0lhUcZcSGp5MKXyqDxypmMhP738RaPhWNsVGK5OY98=
Subject key identifier: 61:63:A9:55:4C:33:06:79:F7:EA:16:67:8B:10:8D:96:4E:C1:C8:02
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 52F7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/YWOpVUwzBnn36hZnixCNlk7ByAI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 07:32:36 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.20.150.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21239 (0x52f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 4 07:32:36 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91364F5/serialNumber=6163A9554C330679F7EA16678B108D964EC1C802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b4:72:6f:1a:cb:53:57:62:bc:9f:15:31:0e:
c0:7b:5d:84:10:e7:04:22:c0:90:f1:04:ec:e7:ce:
81:40:cc:52:01:9e:1a:81:a6:d6:46:57:22:17:77:
74:85:bc:de:37:fe:5b:9f:65:2e:b3:14:17:60:c3:
24:d9:1b:e5:82:7a:77:24:0d:2c:25:c1:a7:9f:88:
67:64:3d:06:c2:d3:b5:f6:26:24:f2:41:4a:55:91:
d1:14:c2:fe:51:5b:d4:39:a6:87:fa:8a:1c:7d:43:
00:a8:5b:84:2b:3b:fc:90:30:08:eb:2b:4e:fe:52:
cd:f3:1b:20:a9:30:26:15:4a:c3:ba:52:41:fd:27:
21:0d:44:1f:9a:b8:6a:aa:74:ae:3b:34:18:27:a2:
8f:10:81:95:68:f0:88:c9:0a:82:f4:95:ee:2f:d5:
10:39:02:89:07:98:d4:e6:e1:7a:67:9f:b0:7c:85:
bd:42:c9:c0:77:0d:be:32:2c:47:e6:39:3a:1a:e5:
2f:7b:53:ae:ee:ce:0c:79:82:5e:e1:f1:51:5c:cf:
5d:fb:d6:1c:10:6e:e6:04:95:22:f0:cc:d8:45:d5:
1b:7e:7c:5c:42:ef:06:35:1d:87:a0:62:c0:7f:30:
b5:da:a3:04:91:78:f4:9a:80:99:ee:26:fa:bf:61:
0b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:63:A9:55:4C:33:06:79:F7:EA:16:67:8B:10:8D:96:4E:C1:C8:02
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/YWOpVUwzBnn36hZnixCNlk7ByAI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.150.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:20:93:ac:77:4a:41:44:5c:60:74:5c:2d:07:95:7d:b6:32:
d6:0d:4a:7f:74:45:17:9c:2d:21:1c:c5:e7:41:59:1b:ce:ce:
04:65:fd:05:88:cd:ee:4e:e2:f2:19:d6:83:e8:58:10:82:f4:
87:8e:96:d4:b9:a5:02:30:60:94:f9:a2:0b:04:ad:59:d5:a6:
03:22:0b:5d:f8:83:64:cc:b2:9c:b9:da:fe:c7:13:6f:e2:79:
44:1a:42:e1:a6:7d:5f:1b:f8:ad:72:50:b1:b4:31:ad:73:25:
53:db:29:2a:ca:ba:a8:b2:0f:8b:c0:c9:ee:e1:70:56:58:6c:
8e:83:17:12:2f:6c:bc:26:81:91:43:cb:8b:5f:63:41:a6:7a:
54:7c:da:c1:00:7a:e1:08:c3:60:e5:97:9a:9e:b6:18:ed:0c:
00:18:b8:41:10:4a:8f:19:de:14:1a:1e:42:6f:f7:41:87:f2:
e1:d4:dc:33:a8:23:de:26:a0:0c:d0:7a:bf:40:b5:e2:06:49:
a2:56:e2:5a:47:2e:68:e3:64:e0:d8:50:4f:ae:03:76:06:5b:
eb:0b:3c:50:0b:2a:18:02:b2:cb:98:cb:d9:fa:49:50:b5:87:
5e:20:fe:02:60:ad:81:5a:a5:6c:6c:7b:c5:d3:18:d5:40:6f:
49:1a:68:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:32:45 2024 by rpki-client on console-ams.rpki-client.org