Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e5ztyDKAKKdFbpxBS7d9r-vOdl8.cer
File: e5ztyDKAKKdFbpxBS7d9r-vOdl8.cer (raw, json)
Hash identifier: Ea9fjsDCkbxPloVEfN05GTEeeAlKaupYAeU2vnZPVXs=
Subject key identifier: 7B:9C:ED:C8:32:80:28:A7:45:6E:9C:41:4B:B7:7D:AF:EB:CE:76:5F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 593C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/e5ztyDKAKKdFbpxBS7d9r-vOdl8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Aug 2024 16:51:32 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 161.121.128.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22844 (0x593c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 5 16:51:32 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A916D36A/serialNumber=7B9CEDC8328028A7456E9C414BB77DAFEBCE765F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:99:e3:e8:9e:3a:55:3d:3c:48:b0:4c:3f:
96:b0:0f:dd:31:9b:8e:76:29:db:6d:01:bc:9c:8f:
15:75:1b:31:5b:30:ea:1e:b1:2e:c8:69:4a:70:c1:
57:18:e7:64:a3:f3:5d:e4:1a:6e:a9:4e:1a:fd:d9:
ed:41:30:74:10:e5:61:b6:4f:31:64:24:59:97:48:
63:4d:08:67:71:6a:8b:86:c9:2b:c0:81:30:f2:fa:
7b:e1:74:7d:1a:d6:b9:ad:0a:35:5a:65:8b:d3:76:
96:e1:db:fa:a7:15:a5:24:ff:84:4a:e1:2e:7b:ad:
30:10:2d:bb:09:62:8f:51:6b:cd:bf:4d:ea:c1:03:
7d:90:d0:3c:b1:a2:83:2e:71:14:04:ca:bd:5b:5f:
12:5f:25:55:e0:cf:88:ca:3d:92:70:f8:c1:b7:bc:
3f:39:75:76:3e:10:1d:f5:7b:4b:bc:f9:1c:19:e7:
4c:66:fb:74:0c:88:6a:88:82:9d:87:07:81:b2:46:
1f:01:62:e0:4f:55:51:21:29:50:71:0f:78:9c:86:
b8:25:cc:51:97:a1:92:c0:f3:00:37:52:c5:34:03:
d3:1a:d3:49:a7:ca:3f:d3:72:9b:d2:de:04:69:12:
c0:e4:ae:c8:e9:6e:14:26:49:58:8c:10:81:28:20:
b3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9C:ED:C8:32:80:28:A7:45:6E:9C:41:4B:B7:7D:AF:EB:CE:76:5F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/e5ztyDKAKKdFbpxBS7d9r-vOdl8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.121.128.0/19
Signature Algorithm: sha256WithRSAEncryption
40:72:27:8e:41:78:44:74:fa:9c:96:eb:87:9b:38:d7:d0:63:
1c:4c:74:e5:1d:0d:12:24:de:01:5e:0b:d4:d3:7a:2b:e1:e1:
cf:59:30:1b:2e:c5:2e:6c:36:75:6a:79:a4:a4:2e:50:bb:5e:
dd:94:05:b8:f7:56:36:c9:f5:5d:21:e6:ed:1f:62:ca:ff:d5:
49:e6:7d:10:4f:5b:48:2c:a9:54:0f:22:6a:27:73:cf:ff:44:
67:cf:41:1d:1b:10:33:77:10:53:2f:bb:8b:56:b7:c5:3e:84:
c6:c2:39:d3:67:b2:92:1a:da:50:2f:b1:01:86:3a:cc:7b:b7:
b0:d7:28:89:c3:c7:76:ee:b9:aa:4e:f7:8d:25:fd:4c:90:b3:
0f:18:41:65:78:3b:3e:4b:98:f6:c5:e0:d3:39:50:33:08:60:
6e:b0:fa:2f:80:92:d7:4e:82:ca:16:a5:29:a7:5e:7f:13:cf:
00:de:50:24:2f:a1:ec:b9:02:4e:aa:e8:32:fe:5a:02:32:5e:
f7:1f:e3:5f:fd:d6:cf:6b:d9:6c:5e:f6:78:7f:d6:eb:c4:d4:
ce:3c:02:44:d5:b7:d8:e4:7d:32:f1:1f:0c:ac:ad:4c:53:d1:
03:6f:9c:6b:56:4a:aa:46:bc:a1:34:89:41:38:5c:4b:ef:9c:
d3:ed:a1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:40 2024 by rpki-client on console-ams.rpki-client.org