Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer
File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer (raw, json)
Hash identifier: qB52YjR2qGz/QNsG8eQPSmjQj4j3oxCmUfmhbwE8yts=
Subject key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A73
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 21:09:25 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 148.182.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23155 (0x5a73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 2 21:09:25 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:89:53:de:3f:52:f7:f9:36:cc:1e:6a:a8:f6:
6f:aa:64:eb:b6:d0:87:1c:52:18:10:e7:c1:72:b9:
ad:25:6e:66:8b:79:5a:1e:31:de:40:a4:87:0c:d4:
1d:34:85:2f:65:3b:97:9b:a5:74:02:42:2f:4f:ee:
98:e4:47:17:36:c3:05:12:47:71:17:3e:d3:88:4f:
c2:8e:2d:e2:1f:4a:bd:63:44:bd:ea:b7:66:a5:2b:
62:a6:07:34:a0:c9:06:98:7d:7f:23:21:55:ba:25:
d2:e9:0d:76:20:cb:28:9b:88:a6:5c:36:c4:53:3f:
df:b5:f1:81:5b:86:72:c7:51:01:c9:22:08:51:2b:
66:33:84:a8:89:a8:c9:53:6d:74:fc:4f:2f:f1:6f:
c9:13:e4:08:7c:19:f7:99:3b:e4:64:97:70:bc:1f:
8f:e2:de:35:98:36:e1:b1:12:32:86:5f:07:89:f1:
5a:a7:0a:15:9a:52:58:e5:41:1b:5a:42:c7:d3:b1:
d8:a4:e7:84:57:8b:c5:8f:93:f5:6c:c8:e6:c4:45:
b0:9d:c6:7d:62:55:34:b3:03:6c:0e:eb:25:e2:9f:
e5:58:a7:bd:f4:9a:2e:8f:43:7e:6f:55:87:0b:da:
46:d3:15:e6:32:ba:2c:c6:d6:be:7a:d9:ab:df:0c:
bc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
148.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1a:4b:dc:3f:29:88:c3:05:a2:ad:53:dc:e9:ac:79:98:e5:9d:
46:ef:08:04:99:7f:12:d8:0d:10:6b:ba:2c:76:ec:01:ba:ea:
cf:f4:f2:f2:e5:c1:8e:03:eb:cc:0f:50:5b:d3:87:da:c2:f4:
0b:6d:b8:93:1e:65:ce:37:f2:87:83:d3:26:24:dc:ea:d3:a0:
0d:b9:b0:de:7d:96:c4:bf:b0:9b:88:76:9c:33:4f:78:59:0b:
6a:fe:f1:c4:26:21:e6:cf:6e:50:21:af:b3:0b:0a:79:66:09:
19:9a:47:a9:f0:92:eb:66:78:63:42:b8:45:e7:7a:85:4a:da:
e3:42:bf:06:f8:7a:ca:82:67:3b:51:a1:c7:41:62:e7:3d:59:
5f:c9:d3:bf:04:af:a1:c9:d2:53:6f:db:a6:1c:f2:50:b1:0a:
5d:b2:50:3d:4e:2e:34:ce:a5:e5:00:83:83:5f:27:fc:18:64:
30:42:9c:ef:44:00:cc:f9:c0:89:93:24:24:6d:66:5f:c8:2d:
5b:78:48:83:83:7b:a1:d6:74:b9:24:3d:1d:b2:d3:3b:b8:5c:
6a:e1:49:54:a6:3d:57:39:30:3f:bc:9f:f4:06:24:f1:5d:2b:
82:4c:80:f6:0b:3c:5e:32:02:bb:76:f9:a0:6c:2d:2c:48:bc:
d8:42:9a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:40 2024 by rpki-client on console-ams.rpki-client.org