Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b-azPqhzkGYLRrER2tV9YG8v7iQ.cer
File: b-azPqhzkGYLRrER2tV9YG8v7iQ.cer (raw, json)
Hash identifier: YwzjTdiZxg+dwC9wD1k8AGQ3c65rBadd0mf7MSwAcyc=
Subject key identifier: 6F:E6:B3:3E:A8:73:90:66:0B:46:B1:11:DA:D5:7D:60:6F:2F:EE:24
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5C33
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9145519/A2FC3264E45C11E68CEDFA3EC4F9AE02/b-azPqhzkGYLRrER2tV9YG8v7iQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9145519/A2FC3264E45C11E68CEDFA3EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Oct 2024 13:40:39 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 69.160.0.0/19
IP: 74.50.208.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23603 (0x5c33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 11 13:40:39 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9145519/serialNumber=6FE6B33EA87390660B46B111DAD57D606F2FEE24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:03:69:56:a2:e2:ea:93:fb:eb:a1:71:03:36:
3d:f9:87:40:15:fc:ae:ab:d1:95:15:59:7d:1d:41:
bb:53:7a:97:7f:ff:67:33:2b:89:a8:43:6a:93:ac:
45:85:c6:54:63:0b:45:27:8c:f0:ae:d2:bb:8e:6d:
fa:c9:c6:e2:84:09:21:6b:81:a8:14:11:c1:c4:31:
f4:8e:88:2e:6a:04:a8:b2:45:5b:c2:a0:b9:de:dc:
d8:fc:fe:2b:59:ae:b1:82:93:06:09:bc:90:9f:ef:
44:8d:fc:51:a8:fb:15:f5:9a:a9:08:3b:01:a0:ee:
52:80:ef:2e:4b:7c:53:cd:99:88:da:42:1a:2d:14:
90:8b:3c:74:06:99:1f:11:be:e3:a1:04:5c:95:48:
51:49:ce:6a:d3:81:dd:5d:bc:24:f3:93:77:6a:e2:
d4:ab:ff:3a:5e:ec:91:ca:8b:b5:bd:a8:11:50:34:
84:b9:31:9a:0a:5a:63:ec:6c:30:ec:5c:58:ce:59:
db:f4:e6:1f:39:b6:15:38:dc:14:17:37:4e:d3:00:
5e:0c:d7:cc:f7:c3:f3:ca:3b:e1:c0:af:7e:e8:07:
9f:87:2f:d0:ca:28:6b:7c:6b:21:26:7b:22:b1:3e:
7b:3b:d8:a9:93:7a:c5:ec:e0:5c:0b:f8:aa:e7:b7:
1f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E6:B3:3E:A8:73:90:66:0B:46:B1:11:DA:D5:7D:60:6F:2F:EE:24
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9145519/A2FC3264E45C11E68CEDFA3EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9145519/A2FC3264E45C11E68CEDFA3EC4F9AE02/b-azPqhzkGYLRrER2tV9YG8v7iQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
69.160.0.0/19
74.50.208.0/21
Signature Algorithm: sha256WithRSAEncryption
51:3c:41:c2:e1:1a:8e:26:8e:68:95:02:97:71:93:48:b2:b8:
cb:63:3a:f0:22:04:91:00:96:4c:28:66:a5:e5:a8:8a:de:c0:
7e:62:82:c0:2e:50:87:7b:42:4b:a6:5d:41:99:b2:04:a3:e7:
7e:01:9a:04:8d:1e:45:56:be:74:43:05:ce:87:ae:10:94:18:
08:15:7a:f7:8d:e2:26:3f:8d:2a:0e:a7:19:88:70:1d:cc:ce:
dc:fa:64:94:1d:8a:c4:1b:1f:4e:79:5d:10:c1:78:6b:28:fa:
40:04:a2:20:a1:75:9e:86:87:e8:b8:b4:df:eb:c8:bd:bf:19:
e4:ff:2b:eb:d8:05:f2:68:56:29:49:32:79:61:07:47:01:22:
34:86:0d:e4:ab:9e:a1:a5:f1:d4:e4:6d:95:5a:5e:d0:3e:51:
ca:b8:e3:5c:20:10:b6:32:67:49:86:ae:49:9d:41:a0:e2:ed:
c7:b8:06:41:23:f4:76:d2:74:8e:d0:f0:8e:53:75:d0:3c:73:
0c:1f:6b:2b:3b:5e:d9:e1:84:4b:48:72:8d:d1:90:71:a9:42:
67:32:d8:52:6a:75:72:09:1f:c7:59:0f:ed:e6:f6:fa:f2:6e:
71:24:6a:72:98:90:01:91:55:6e:9b:3e:e1:59:94:08:8f:fb:
d3:e2:91:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:40 2024 by rpki-client on console-ams.rpki-client.org