Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer
File: ex-xujsOyMpeXBOuvPxuuo0g6qc.cer (raw, json)
Hash identifier: +VEf5znAOLiX2BCDcuQcXkIJVITbNCWspj7WqnRawos=
Subject key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5252
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Feb 2024 18:16:05 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.20.42.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 May 2024 00:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21074 (0x5252)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 16 18:16:05 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A913B4BE/serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5a:6c:e5:f1:4d:39:50:c0:11:6b:1b:3e:bb:
a0:43:4b:3f:cc:2b:a7:f5:dc:04:8e:fa:ee:14:55:
9f:44:d8:6a:45:e9:dd:bd:05:6d:84:83:72:c0:83:
95:02:12:20:32:45:85:3f:7b:47:ce:28:ad:88:ec:
83:0f:3d:c0:8e:70:5b:cf:62:56:4f:24:bf:46:dd:
8a:51:2d:8e:52:68:fe:28:70:65:39:b4:97:ba:7f:
2e:91:b1:c3:ca:24:d5:33:89:5f:fc:2b:7a:a0:36:
97:9d:05:9a:89:f1:44:80:2b:b5:13:ca:11:57:48:
9b:e7:30:5b:40:26:9d:e8:e7:f9:2f:b8:54:83:07:
a3:79:b3:51:59:8f:6c:e8:f8:da:77:c1:14:33:4b:
c9:ad:c8:02:8b:26:d6:d7:e4:8f:b0:09:d5:80:c3:
9e:43:bc:bc:78:e8:fd:bb:7b:2a:3d:14:78:bc:b0:
56:65:33:b2:5d:7f:c3:e2:90:d2:7f:e4:51:3c:df:
f3:00:f6:a0:d5:f5:a4:2e:8a:1a:c3:52:01:eb:ea:
0d:77:2b:4f:91:6a:5a:11:53:c7:44:c7:8f:9d:55:
b6:f2:72:d9:92:c8:cd:c3:75:16:be:08:a6:a5:f9:
01:c5:5d:e3:5d:f8:2c:d2:6f:83:c1:5d:fc:ea:47:
52:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.42.0/23
Signature Algorithm: sha256WithRSAEncryption
51:a6:35:85:30:79:37:8e:28:35:bd:96:d3:b7:80:88:33:4b:
52:f0:1e:b5:42:36:40:98:29:06:e7:73:15:4b:ce:84:72:61:
eb:b3:17:0d:34:b8:90:d5:16:c1:67:12:5c:74:0d:55:d3:78:
79:c7:03:95:5a:94:3d:6d:f3:40:e2:45:12:db:4e:6f:6e:e0:
5d:15:43:35:ae:6b:75:37:bd:6c:95:83:8c:a2:36:24:ef:b8:
60:24:72:65:a9:a1:e4:10:fb:a5:97:dc:7b:79:43:3a:bf:e1:
10:6a:dd:3f:cf:ff:a6:f2:db:50:91:db:22:f8:97:fb:01:5b:
06:d6:bc:b2:a3:de:51:47:64:6e:09:41:7e:f1:d7:07:3c:1c:
15:0c:d1:15:08:1a:74:bb:c9:25:d0:b9:43:e2:a2:29:c4:cc:
50:70:d7:9b:42:64:ab:16:5a:c3:9a:89:6b:30:cb:d7:8d:9c:
39:be:7c:01:3d:3f:72:a3:51:89:31:3c:22:4e:f5:5e:98:13:
d4:1d:69:51:aa:54:25:ed:73:23:22:af:8e:95:b3:42:27:5f:
36:00:53:89:28:70:0c:38:70:0e:76:12:29:cf:ce:eb:7a:81:
6d:d0:65:a8:d3:9a:e4:8b:f9:1f:7c:e2:4f:d7:ce:08:02:f6:
69:09:89:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 01:53:13 2024 by rpki-client on console-ams.rpki-client.org