Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer
File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer (raw, json)
Hash identifier: SBuFeHnx86aEGdJpoy8N/ehsaydAb7b5yHldI9eGVn0=
Subject key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4BD8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Jul 2023 21:01:57 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 148.182.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 04:18:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19416 (0x4bd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 4 21:01:57 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:89:53:de:3f:52:f7:f9:36:cc:1e:6a:a8:f6:
6f:aa:64:eb:b6:d0:87:1c:52:18:10:e7:c1:72:b9:
ad:25:6e:66:8b:79:5a:1e:31:de:40:a4:87:0c:d4:
1d:34:85:2f:65:3b:97:9b:a5:74:02:42:2f:4f:ee:
98:e4:47:17:36:c3:05:12:47:71:17:3e:d3:88:4f:
c2:8e:2d:e2:1f:4a:bd:63:44:bd:ea:b7:66:a5:2b:
62:a6:07:34:a0:c9:06:98:7d:7f:23:21:55:ba:25:
d2:e9:0d:76:20:cb:28:9b:88:a6:5c:36:c4:53:3f:
df:b5:f1:81:5b:86:72:c7:51:01:c9:22:08:51:2b:
66:33:84:a8:89:a8:c9:53:6d:74:fc:4f:2f:f1:6f:
c9:13:e4:08:7c:19:f7:99:3b:e4:64:97:70:bc:1f:
8f:e2:de:35:98:36:e1:b1:12:32:86:5f:07:89:f1:
5a:a7:0a:15:9a:52:58:e5:41:1b:5a:42:c7:d3:b1:
d8:a4:e7:84:57:8b:c5:8f:93:f5:6c:c8:e6:c4:45:
b0:9d:c6:7d:62:55:34:b3:03:6c:0e:eb:25:e2:9f:
e5:58:a7:bd:f4:9a:2e:8f:43:7e:6f:55:87:0b:da:
46:d3:15:e6:32:ba:2c:c6:d6:be:7a:d9:ab:df:0c:
bc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
148.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c5:08:d9:9a:9a:2f:ff:ee:79:34:dc:c2:4f:b1:06:f6:4d:fd:
63:22:0e:ed:9c:6b:ed:9e:df:6a:66:ed:2d:65:d5:90:00:ca:
52:5a:6a:90:99:3e:64:e8:f7:2a:5a:bb:c6:36:60:2c:ab:c3:
54:f8:ee:06:bb:29:73:53:b8:fd:0f:1a:08:6f:43:71:5e:c8:
f8:d2:a9:22:b4:39:e8:0e:ab:f9:aa:4d:66:04:9f:78:15:ad:
00:87:e6:b8:e0:23:12:b1:65:86:ee:32:85:d2:be:84:43:1a:
b0:13:73:22:8f:b6:3f:13:e7:4f:42:ec:9a:dc:f4:0b:9a:21:
f7:7f:94:fb:f0:f1:f7:80:00:02:b1:f6:dd:66:62:90:43:85:
b3:87:0a:1f:ec:24:30:d7:61:a5:eb:2a:a9:6f:5c:59:3e:95:
c0:42:66:22:03:82:9b:c4:8b:46:0e:21:9d:8a:94:7d:d9:90:
86:e6:53:1a:f1:19:a3:4d:da:e7:44:54:91:a3:9b:44:61:e2:
6a:ab:fa:f2:ca:30:4e:69:78:56:2c:cd:14:8a:bd:9f:da:4b:
e2:72:92:9c:47:5c:b2:21:c3:97:e8:ed:96:f1:40:c2:99:e9:
6d:2d:75:e8:6d:83:dc:0d:90:a9:bf:f8:78:2e:0b:3a:46:bd:
eb:31:31:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 05:37:07 2024 by rpki-client on console-fra.rpki-client.org