Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer
File: du8ZOVeobWTTw83rngdGdG70KQo.cer (raw, json)
Hash identifier: SRfDLQHqCjOm89jrRr948AsitNhrbg9WxXvNywLoqEw=
Subject key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D76
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 18:50:25 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 138.99.216.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23926 (0x5d76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 6 18:50:25 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:54:d3:b9:0e:33:45:dc:34:4b:7f:e0:08:
4b:1c:79:63:08:82:80:d9:70:aa:69:d7:5e:fe:5e:
1e:39:b8:a0:a5:14:d2:70:5b:73:31:59:da:00:16:
36:86:99:a1:e2:96:b2:54:ca:d5:98:e6:c9:f0:26:
ad:f6:4d:df:f8:07:3f:0d:06:63:aa:d7:06:b1:5f:
4e:d2:2a:44:98:d8:48:72:00:e6:87:41:75:e2:ef:
e4:7f:2e:6e:87:39:98:93:a7:5e:5c:f0:a1:d1:31:
9d:4e:43:79:fd:e3:06:9b:23:8d:62:07:3b:e9:05:
1c:86:03:55:e9:d7:0e:67:3f:0a:d1:09:9d:ad:45:
0e:67:6c:0b:3d:e3:80:3c:49:68:b5:b8:0c:17:23:
b8:e4:52:c7:64:f5:95:95:2d:72:1a:ae:f9:47:88:
d0:0a:cf:50:b6:9c:bc:ad:d2:26:07:8f:c8:85:56:
af:10:8e:d4:f0:36:b6:59:31:b4:b4:94:61:25:08:
bb:f1:36:a2:bc:b1:c5:a2:3f:a5:0b:a0:78:70:e0:
15:d3:bb:22:69:64:35:44:c6:24:af:62:58:f1:0b:
b1:82:6a:e4:63:42:ad:0d:42:77:6d:f2:48:de:6f:
60:94:37:34:3c:c1:57:2b:2c:1c:2b:9d:c4:71:d0:
4b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
138.99.216.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:33:c2:c4:9f:dc:4f:f0:5d:98:1d:d2:a3:45:3a:8c:95:e6:
e2:5b:d6:00:ad:85:d2:47:e4:96:3f:e6:0b:7e:4c:50:28:28:
47:2c:6b:4f:21:37:60:25:43:fe:a7:a9:53:a2:32:92:f2:0d:
6a:f1:08:98:68:41:b4:ba:16:db:93:de:2d:70:ab:e2:24:86:
8c:20:79:cc:af:9e:55:0f:d2:4a:03:2e:95:49:16:8b:81:d4:
ee:8c:21:d6:e7:bc:14:35:c0:b1:e2:07:0a:da:f4:ba:25:0d:
03:2d:e7:74:9a:3d:ef:e6:e7:ba:97:8e:3a:0a:e3:aa:b4:34:
f3:59:63:36:53:02:33:01:20:4a:d8:23:fd:3c:20:46:b2:f8:
20:d2:69:28:4f:74:94:9d:ed:00:f4:94:da:bf:1a:9f:ef:33:
bb:4d:71:38:4d:a9:7b:4f:83:28:33:63:3a:77:f2:03:58:77:
8e:e0:2c:71:15:dd:10:fd:aa:4b:e8:c5:7d:71:d1:f2:9c:89:
59:7e:9b:f7:df:db:2f:4e:5e:89:93:c0:ff:3d:6a:1c:ba:3e:
df:7b:38:f8:1b:c2:eb:7e:b1:7c:df:36:a9:a0:7f:f5:cf:cf:
b6:df:e0:a5:0b:59:e9:b6:46:29:8c:69:79:4c:2f:b4:e3:33:
be:37:4e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:40 2024 by rpki-client on console-ams.rpki-client.org