Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer
File: bz4CYgDVU58n4POqUNMgokUo1X0.cer (raw, json)
Hash identifier: 70zbkGl6LwRUNguBWMU3gpIoHbojjfaHMXRO5Q8TzaU=
Subject key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5F1E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Dec 2024 13:25:09 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.190.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24350 (0x5f1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 9 13:25:09 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91B732A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:12:71:36:04:05:f6:bf:92:83:f4:c5:8d:37:
fd:7d:06:2d:b7:c8:34:4b:8e:e2:7d:ac:4c:00:9c:
6c:74:f7:2b:57:27:f9:54:6a:c6:e6:ee:8c:91:fc:
c0:bd:c8:36:c0:3d:4a:b4:d1:1b:01:8a:2b:86:1a:
cd:86:bd:0e:6c:6e:46:8f:7c:f3:26:39:78:75:3e:
cc:17:6d:b4:7a:4a:8d:57:52:bb:21:ca:c5:5b:33:
78:f7:86:e8:fd:d3:14:83:2f:6a:be:24:a6:de:86:
a3:9d:27:bf:e0:d9:63:15:23:b3:3b:98:90:3b:94:
e0:ec:14:8d:45:b5:e9:94:cd:a9:8d:d6:68:74:d9:
ac:26:39:a3:54:0c:c2:c0:86:c1:49:69:65:c0:ec:
ea:02:3c:fb:09:b5:24:5f:74:f0:82:82:0a:b0:5e:
97:49:62:02:48:dc:a0:36:14:15:43:fd:8b:dc:5b:
0e:42:1e:e6:2c:6c:55:97:ad:d9:27:74:43:a4:3d:
0e:36:c4:72:05:37:29:e3:64:82:6a:b6:ba:d1:9f:
2e:52:c6:33:fc:50:a9:ea:c7:f8:ae:93:b1:fe:a9:
b4:77:9a:e6:48:14:a3:12:05:c3:d1:fc:ed:3b:6c:
b1:ec:36:e0:54:05:57:5a:fb:27:86:b8:67:00:dc:
a8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.190.0/23
Signature Algorithm: sha256WithRSAEncryption
24:32:02:ef:30:e5:11:ec:5d:8a:1d:44:0a:e5:06:3e:e1:8a:
8a:b9:bc:c6:c7:df:2d:68:20:99:44:b6:fd:6d:cb:91:9d:36:
e1:48:40:61:7b:ee:84:e3:68:93:ee:a9:69:3e:60:eb:b2:58:
5f:2d:77:1c:46:33:5a:b1:cb:22:64:25:64:2c:de:d6:ab:8e:
83:41:f0:7f:2a:a5:44:ab:18:39:33:a7:64:96:25:43:9c:68:
13:4b:17:ad:ec:5e:fe:7a:45:6b:25:0e:1d:ea:fd:bb:83:e9:
ea:f2:00:8f:4b:0f:d3:74:77:91:de:f2:87:f2:30:eb:fb:ff:
74:67:e2:d2:a2:cc:d3:89:76:ea:dd:0e:cc:b2:9b:b7:5b:74:
aa:27:4b:15:35:57:36:30:7c:cd:6c:a3:83:c1:54:4b:8e:4e:
aa:8d:4a:54:8c:dd:62:7e:a0:f4:13:82:34:a8:55:c0:4c:b1:
df:d1:f8:35:8d:0a:08:bd:b7:5e:57:47:37:a7:62:53:4f:a2:
e8:8e:49:e3:fb:62:e4:56:b4:0e:be:ab:85:ee:d0:0a:59:5b:
68:8b:55:5c:01:44:2c:fe:34:cf:e9:a7:3d:d1:16:65:b5:29:
f0:e7:af:6c:1d:04:3a:8c:33:66:e3:6e:08:ac:83:32:2c:d0:
d3:90:5b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:50:57 2025 by rpki-client