Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_YxfSHdCyyBRsoaXKbRmEkzfXms.cer
File: _YxfSHdCyyBRsoaXKbRmEkzfXms.cer (raw, json)
Hash identifier: egODjvKMimR6yegr7uUqmG9nqJD2BhT5i/JQUKnhkto=
Subject key identifier: FD:8C:5F:48:77:42:CB:20:51:B2:86:97:29:B4:66:12:4C:DF:5E:6B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D7E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/_YxfSHdCyyBRsoaXKbRmEkzfXms.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Nov 2024 10:49:49 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.190.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23934 (0x5d7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 7 10:49:49 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91EBA46/serialNumber=FD8C5F487742CB2051B2869729B466124CDF5E6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e4:01:80:74:ef:06:5d:21:07:0d:06:15:05:
1c:7d:a9:84:41:f1:26:90:e0:18:ba:7d:7c:63:55:
da:51:27:9b:c2:d4:f7:57:61:8a:fe:2e:55:28:28:
a5:80:4a:e9:36:21:fa:3e:13:ce:db:65:27:b2:f4:
10:0b:08:8b:19:9a:c6:ab:ac:4b:39:f1:53:3a:fc:
d1:4e:c0:c6:96:88:d4:fa:f4:f0:c0:a7:dc:c4:68:
a1:b4:d7:41:b7:9c:44:7e:06:99:96:ec:8c:56:ff:
0a:98:26:d3:d6:04:ff:29:ce:4e:70:40:5d:93:33:
ac:56:fd:61:f4:41:35:95:e4:86:af:c3:ff:b7:fa:
cd:53:58:c4:a0:ea:91:f8:24:f0:6d:6b:54:df:27:
42:3a:c9:d1:52:3d:ae:60:4b:bb:a8:4c:75:ab:91:
49:11:0a:37:ad:6b:05:b3:91:27:ab:98:b5:b9:84:
d7:86:ae:38:61:36:75:79:f2:af:fb:46:ca:bf:ae:
af:a8:cb:a4:20:7c:3a:68:5b:0e:61:ca:ed:d6:dd:
4f:02:03:2d:cc:c0:7a:18:1a:5c:b1:0d:4c:55:31:
58:67:ce:c4:83:3d:2d:cb:30:a1:97:f8:ec:01:a0:
0d:76:4f:a8:c7:e3:77:61:0f:2d:f2:5d:2e:0d:90:
d9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8C:5F:48:77:42:CB:20:51:B2:86:97:29:B4:66:12:4C:DF:5E:6B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EBA46/FF8AA24A9CF511EF8A6C8581C4F9AE02/_YxfSHdCyyBRsoaXKbRmEkzfXms.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.190.0/23
Signature Algorithm: sha256WithRSAEncryption
31:65:de:8b:43:27:98:1e:29:ab:62:d1:e4:88:49:7b:c6:83:
e4:4c:8d:7f:58:ea:9b:a0:e1:75:b1:d6:51:b8:4b:a2:b6:b4:
61:0e:c8:b6:3b:9f:af:6a:ed:06:d0:ec:0d:96:c9:ec:5a:e3:
f1:e6:af:26:cf:39:c4:23:c6:a9:2d:1e:60:c1:4e:35:ca:75:
71:49:68:cd:76:c6:6e:a9:85:4c:f3:f7:70:33:ae:e0:fd:16:
10:26:98:b5:80:a0:9b:fe:8b:f6:1e:9b:75:ba:81:6c:fc:a6:
0f:b1:f0:7e:b1:2f:8d:76:ec:d7:f6:c9:d9:a4:62:d1:46:3b:
9f:b8:32:91:63:b3:11:a5:d2:9a:fe:5a:43:9b:5a:80:d4:02:
a0:dc:f6:d6:b4:4e:82:21:1d:ae:d0:e4:97:62:90:e0:cd:29:
e7:dd:25:f0:fb:15:c0:a8:26:b6:77:b5:75:5f:2d:1d:e3:0b:
3b:3d:d9:36:ba:70:9e:fe:b8:4c:af:e1:68:8f:04:ae:be:fc:
b5:b2:ed:db:57:74:5d:e7:63:b5:79:dc:d4:ec:06:3f:06:86:
92:6d:69:68:47:a3:3c:c9:2a:a7:bf:47:24:a5:59:f9:d0:97:
3f:cc:47:c2:6b:cf:83:d4:19:01:1d:c4:dd:c0:a9:aa:d8:46:
18:4d:9f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org