Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer
File: d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer (raw, json)
Hash identifier: q6rYtKADalJLSFDSfCXJo5i7ytXocZkJbWqrBBuwWuE=
Subject key identifier: 77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4FEC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jan 2024 04:25:50 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 157.10.54.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 May 2024 00:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20460 (0x4fec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 3 04:25:50 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5e:16:38:58:5b:fb:f4:30:33:94:4f:bc:03:
56:fb:81:ad:50:ea:49:6e:86:ee:2d:b4:a7:bc:2d:
05:72:41:0f:69:97:92:97:64:0d:2e:32:24:a8:89:
1f:36:d2:22:8c:1b:fc:de:f5:4d:38:be:a2:09:d0:
00:31:db:ee:0c:6f:d8:86:ee:9b:b1:e9:3f:a2:00:
13:51:96:ba:83:38:5c:5a:4d:0e:4f:d3:bf:de:f0:
3b:24:cb:c9:96:87:8e:95:d8:4d:0c:a9:62:86:fa:
87:c8:1a:c2:90:f1:a5:2a:77:4a:d1:7f:79:35:e4:
10:6d:11:81:61:d0:6d:d2:9b:77:0d:fc:7e:15:c2:
5e:ef:19:c6:81:76:09:5e:e9:de:ff:4d:f6:7f:75:
d4:13:d3:c2:5f:61:d7:68:3f:3b:fa:cb:46:96:31:
ae:2d:48:9d:c3:87:25:54:ce:5c:49:c7:c3:ce:31:
20:4d:0b:e4:89:e2:3e:64:61:6a:4c:9e:f0:fc:a1:
fd:25:ba:45:f5:93:a5:67:65:e6:d7:83:0f:b7:37:
48:d8:a6:a0:5e:8e:85:f2:94:4e:ab:02:0f:46:4c:
ef:f8:d0:ec:39:dd:af:2b:28:9f:aa:cc:61:04:60:
53:e5:91:b9:e1:1e:e3:71:33:fc:f3:4d:f0:8f:10:
c2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.54.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:49:60:21:79:d8:e3:ca:7e:7a:10:33:41:5a:f6:f9:a2:d4:
8f:8e:84:6d:12:bd:8b:be:33:16:68:aa:78:ff:a2:95:73:5a:
d5:5e:dd:de:c7:26:84:ce:57:54:c5:f4:e4:60:be:fe:69:3a:
c7:f7:fa:c7:07:59:d4:2f:04:13:82:be:74:e3:1d:ee:fb:8a:
84:63:0a:9c:7e:7e:e0:71:d4:7b:34:0b:b0:fd:6c:38:27:47:
af:de:12:41:0e:62:91:c2:17:3b:8d:68:70:b6:08:3e:02:16:
e4:ce:c9:66:fa:fd:68:2a:33:17:af:90:0a:aa:da:9f:8b:9e:
08:b8:d6:b5:cb:91:43:07:2f:3f:34:e9:2c:d9:6d:43:a9:4a:
5c:98:d8:41:87:b6:00:96:b2:7e:35:16:97:7f:f2:68:15:d2:
d7:4b:87:5a:e7:15:e1:58:2f:18:cd:47:00:dd:aa:30:44:97:
ea:9c:6e:b9:d0:0f:71:f2:b1:e9:5e:06:ca:1d:a6:0f:b7:a4:
dd:7b:94:9c:42:45:ac:f5:d2:ba:95:18:91:c9:f8:43:ef:c2:
0f:d4:58:71:0a:48:d1:7d:60:1b:af:e3:88:44:08:86:cc:45:
5c:b9:77:6a:69:39:64:39:5a:bf:55:82:db:ef:46:36:c2:ba:
ec:80:60:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:38:03 2024 by rpki-client on console-fra.rpki-client.org