Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
File: dCWq4W3bRko-K0ecekDJkCODa6A.cer (raw, json)
Hash identifier: Mh8zt0wcrL5yPxieLkv8oZr9ZUwmcnWUwQES4faW+uo=
Subject key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5802
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jul 2024 15:53:20 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 134.65.64.0/18
IP: 143.92.64.0 -- 143.92.101.255
IP: 143.92.108.0/23
IP: 147.136.128.0/18
IP: 159.13.128.0/18
IP: 168.75.0.0/18
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22530 (0x5802)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 10 15:53:20 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:39:9b:99:a2:cc:88:ac:7d:1d:5b:fc:16:f9:
87:c6:c4:c3:eb:d9:23:73:6e:27:ba:ec:48:5b:0d:
9d:15:9d:07:9f:37:36:76:98:eb:aa:eb:7e:d5:31:
c8:e1:40:91:e5:34:81:b7:38:cc:01:1d:ff:cf:0e:
49:46:3c:ef:3f:5d:8f:c1:00:a7:1b:31:62:6c:f6:
53:12:ed:a1:51:e6:75:22:f9:bf:65:16:a8:f8:d5:
2a:27:03:21:fd:cb:1c:46:df:9e:dd:88:a9:42:c4:
2d:ac:55:fc:20:f2:73:ab:f8:62:c1:df:c7:80:91:
95:0f:5e:99:4a:2c:9b:23:38:f8:01:70:0c:e0:ae:
db:f8:97:6c:26:ca:c1:a9:8a:fc:2b:8e:97:ca:89:
01:86:30:62:aa:11:63:35:19:b7:1d:df:76:b9:67:
da:8f:7b:79:1c:d4:48:ef:ce:7a:01:b9:71:62:7b:
4d:d6:e7:4b:35:7d:66:f0:fb:fb:97:b4:2b:ba:ae:
60:b9:de:e6:eb:1d:eb:16:0a:b5:70:0a:12:ab:d1:
97:d0:97:d0:e4:bb:f6:51:42:20:40:65:2d:0e:04:
5e:e7:b2:ef:5a:a7:f5:1b:f2:7f:a9:ff:94:da:94:
ed:35:38:c8:59:eb:63:14:2a:3d:c1:45:f2:5a:db:
b7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
134.65.64.0/18
143.92.64.0-143.92.101.255
143.92.108.0/23
147.136.128.0/18
159.13.128.0/18
168.75.0.0/18
Signature Algorithm: sha256WithRSAEncryption
70:3e:d4:60:a8:e0:ae:11:ff:86:21:a1:a4:ff:a7:0d:31:06:
58:73:50:3f:66:57:88:9c:e3:03:2a:1b:a9:28:ee:07:e1:5a:
c7:de:c4:36:49:f3:aa:6b:8d:11:14:9b:c0:c6:39:77:3f:bd:
fa:53:11:62:b5:2d:e8:41:8d:4c:0d:1e:da:41:a5:44:c8:f2:
02:75:cf:af:6d:c8:e5:f2:63:32:0e:81:8f:9a:e9:44:8c:8a:
77:6b:f7:b2:5c:09:10:02:ab:78:3a:35:20:73:91:ae:25:9f:
84:62:91:c8:e9:b7:17:ea:75:c7:e5:dd:b6:74:52:69:02:db:
e7:58:ca:56:81:e4:78:6d:cf:45:75:56:57:35:b9:7e:9b:1e:
28:9a:40:95:87:d3:4c:8b:51:fb:8c:af:c6:4b:8e:7b:c5:9b:
55:ad:a3:8c:57:04:e8:5c:cb:56:e2:3e:40:4e:7b:0a:72:fa:
c9:61:d6:a3:b9:f6:54:c4:90:5c:d6:7f:00:81:13:be:98:e9:
e9:1c:48:91:2b:2f:3a:65:07:3c:b3:f2:18:68:47:dd:b5:c4:
3d:d7:2d:c7:2d:ec:18:ee:42:6c:56:44:99:6c:72:54:6e:fa:
c6:00:30:fe:c8:7a:01:60:22:3c:2f:fc:ac:78:d1:33:ae:6c:
1e:d2:84:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:40 2024 by rpki-client on console-ams.rpki-client.org