Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_J3Ma6xPPZvsntHpBk2bytz5o6k.cer
File: _J3Ma6xPPZvsntHpBk2bytz5o6k.cer (raw, json)
Hash identifier: kSzcdWUsm+MPOnJq75nb9QR35RhslaCTQq4hdrkktGo=
Subject key identifier: FC:9D:CC:6B:AC:4F:3D:9B:EC:9E:D1:E9:06:4D:9B:CA:DC:F9:A3:A9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 59C6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B673B/794630CC5DFE11EF8C7E817BC4F9AE02/_J3Ma6xPPZvsntHpBk2bytz5o6k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B673B/794630CC5DFE11EF8C7E817BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 Aug 2024 07:41:46 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 160.25.186.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22982 (0x59c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 19 07:41:46 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91B673B/serialNumber=FC9DCC6BAC4F3D9BEC9ED1E9064D9BCADCF9A3A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ed:6c:cd:11:a5:8e:6a:b6:18:b5:76:05:68:
f3:ae:fe:35:22:9d:88:68:95:7e:6c:24:4f:52:f3:
fc:b3:c1:88:ca:1a:69:c9:ee:60:50:f1:84:c9:32:
34:52:ac:a9:b8:a6:6a:a7:4f:0d:dd:a4:81:f8:b5:
f0:4c:cc:4f:5c:ef:05:64:b3:ec:82:f8:b8:97:c1:
dc:91:f2:f3:e8:b0:d3:c4:6c:0e:83:8b:ef:72:bd:
f7:a8:62:b2:6c:9d:5d:5f:06:41:51:ce:45:cf:88:
95:ae:82:50:55:ae:7f:3a:f9:1d:28:fb:47:69:89:
62:bc:29:1a:04:68:55:08:d2:b9:7b:b6:af:c5:48:
60:2e:5c:25:80:b2:fc:5c:be:83:9d:07:2b:2a:14:
db:c5:9d:2c:05:94:43:b5:62:04:07:c5:38:92:45:
46:c4:83:f5:70:b9:e0:4c:75:82:a8:65:2e:b0:73:
6c:95:8f:0f:9b:5e:0f:f9:23:b4:74:ef:3b:9f:e2:
e5:8a:c0:78:cf:11:fc:a3:ad:e9:51:74:35:0d:35:
d8:32:a5:3d:61:73:e2:2e:00:79:81:26:88:cb:93:
b3:73:a0:59:d0:fc:f0:bc:ed:03:79:64:c3:43:24:
24:c6:fa:16:cc:1c:83:f9:1c:73:0b:16:d7:4e:4f:
6d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:9D:CC:6B:AC:4F:3D:9B:EC:9E:D1:E9:06:4D:9B:CA:DC:F9:A3:A9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B673B/794630CC5DFE11EF8C7E817BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B673B/794630CC5DFE11EF8C7E817BC4F9AE02/_J3Ma6xPPZvsntHpBk2bytz5o6k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.186.0/23
Signature Algorithm: sha256WithRSAEncryption
52:17:2d:08:b9:1a:25:72:a3:d1:bc:b5:84:ef:81:1b:79:e7:
48:1e:b4:15:63:d9:a2:72:c9:64:3e:10:50:a0:70:b6:99:0f:
26:c8:2b:c6:61:41:69:fa:ad:86:1a:09:02:c6:f9:31:5b:79:
77:a2:10:3d:70:69:90:d5:0e:fd:92:61:f4:67:1f:05:a1:ce:
5f:c9:d8:4a:fd:6d:9e:4d:6f:b2:c2:bf:af:bb:d7:64:f6:3e:
0c:df:7a:28:d3:65:25:9b:dc:fa:ee:6a:d9:1d:42:f1:4e:00:
aa:74:5e:3f:b2:a8:99:f9:e2:5e:aa:1d:fe:7e:f2:32:94:da:
86:fd:f8:ba:f1:72:c4:a1:00:52:88:68:1a:aa:7f:1a:b4:11:
cf:a9:25:57:91:31:f9:03:53:24:4e:2d:05:9e:6e:57:e3:96:
7b:71:cc:40:87:e7:78:f7:7e:69:3e:f0:d8:a9:2a:20:5f:dd:
8a:84:5d:31:e1:88:7d:74:56:48:41:8b:12:dc:e2:3c:ca:83:
43:66:a8:3d:0b:08:3f:26:14:00:c8:cb:22:71:9d:b7:96:17:
1d:e4:0b:ce:90:6b:f9:f5:de:0b:14:35:b0:ea:58:3c:b3:0c:
03:bc:9e:96:f3:34:8c:9b:fc:d7:d8:2d:a2:a6:9b:5e:7f:ae:
3f:5b:32:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 20:55:01 2024 by rpki-client on console-ams.rpki-client.org