Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer
File: gcJvPY9BNuUZDMehfWr3IkIutm8.cer (raw, json)
Hash identifier: QNNmr1gPYg+W1bVMOyIysLFEP/mcavJQF3LMEc5wWMk=
Subject key identifier: 81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D0D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Oct 2024 18:26:46 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.116.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23821 (0x5d0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 28 18:26:46 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:c0:19:ef:46:14:d5:43:a1:b4:fc:e2:63:b3:
a0:5b:49:2b:65:60:93:4f:f8:e5:2f:89:e4:5c:13:
8c:cc:ce:96:fb:1b:91:b5:c9:e2:0e:30:e9:10:7b:
02:6d:9a:82:e7:06:17:56:43:29:ad:ba:6a:5e:21:
54:50:ac:ac:16:5c:bf:20:f7:88:5d:09:48:52:26:
31:4b:df:8e:62:e0:29:52:8e:55:9d:b4:7e:4a:9f:
45:90:d0:19:b6:b6:90:82:c5:d6:81:9c:74:3d:ee:
c6:b0:7c:7d:ba:3f:c4:d6:c2:3a:1d:08:57:a3:03:
b7:1e:12:54:8d:55:7a:15:e3:91:ba:66:1a:4f:81:
e0:94:ee:9e:34:24:fb:34:d8:50:8d:80:43:77:a3:
53:d4:39:d6:0f:10:0a:b4:44:bc:31:bf:22:60:f6:
0c:02:ec:6f:22:24:7f:d5:80:7d:d3:d5:8e:71:b2:
66:e4:d7:8a:28:60:3c:c8:79:3d:28:3d:09:99:a3:
e2:ca:95:4f:b8:b1:11:56:53:fb:1c:bc:14:56:bf:
cc:95:36:81:22:f1:2c:85:a5:6a:bf:ee:12:60:57:
e6:6b:92:35:83:d4:ab:5c:a4:ab:69:ae:a0:92:bb:
41:b0:40:e0:c3:16:85:1d:bf:f1:13:03:99:02:2c:
ba:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.116.0/23
Signature Algorithm: sha256WithRSAEncryption
63:48:20:79:e9:11:20:b0:3c:e5:ec:38:ed:4e:b8:7a:83:95:
38:c9:9d:ba:59:05:25:91:af:a8:6b:61:ab:6e:d4:87:ae:50:
88:cb:30:6e:34:2e:40:bc:ef:cc:ff:27:3b:37:46:60:90:41:
94:2b:e0:dd:ce:bc:1d:ab:e7:4d:e5:4f:a6:9e:58:95:6d:da:
e2:b7:39:59:d2:35:7d:19:98:88:2b:dc:e4:7f:66:68:3e:c4:
1a:83:69:04:61:1b:0e:f2:45:22:9e:89:14:fa:e4:e5:b6:22:
91:5a:9c:ad:3f:23:89:85:50:4c:6a:24:a6:22:af:41:8a:89:
fc:de:ee:e1:aa:10:dc:80:16:34:ac:bd:d1:cb:26:fa:b7:8e:
20:5e:a9:aa:54:6d:94:5d:35:08:4d:1f:b1:5f:16:c2:4d:7f:
c2:50:49:a6:c9:18:9c:f8:99:b6:88:f8:be:16:49:d3:48:51:
92:99:9a:dc:8d:f3:b8:3a:75:ab:8a:cf:14:50:b0:ea:56:b4:
6f:c7:7f:18:e3:df:0b:e1:f0:e1:d2:17:f7:11:71:0b:a5:7e:
05:48:9b:17:1a:f4:d0:91:68:8a:3c:c7:48:26:0b:e6:c6:57:
a6:24:ba:85:8e:56:89:57:a8:98:86:35:e0:12:fe:be:28:65:
d9:8f:0f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org