Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer
File: h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer (raw, json)
Hash identifier: NJqO7Cga2r9GD9nnF03tnxkPThjTVclf0FiQ28nh/VI=
Subject key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D39
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 23:45:49 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 66.42.32.0/19
IP: 139.180.128.0 -- 139.180.223.255
IP: 158.247.192.0/18
IP: 167.179.64.0/18
IP: 207.148.64.0/18
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23865 (0x5d39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 1 23:45:49 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:ec:2a:8b:52:b0:47:a6:13:a2:6a:53:97:
6d:bf:2d:8a:41:73:1a:50:c6:84:fe:a8:ea:96:8b:
47:68:46:ac:6d:1d:4f:49:01:57:a0:c1:eb:8a:d8:
38:20:2e:00:0c:e6:37:50:45:29:ce:16:02:fd:2f:
74:d8:2c:76:8d:58:b0:c0:05:90:cd:a2:61:0d:e1:
92:55:4b:cd:80:14:73:49:58:49:4b:93:aa:4f:ca:
9f:92:b8:4c:e6:2c:c4:24:6e:3c:ac:06:33:9a:e7:
b5:be:1f:f0:86:88:bb:6a:e2:b6:24:60:0f:a6:64:
ec:f8:5e:ed:f9:0e:81:96:d2:0c:a4:ad:fa:eb:77:
23:61:d8:f0:e3:15:62:ff:f5:06:2f:64:68:a4:a3:
a9:65:38:83:cc:b8:70:55:82:44:23:26:98:8a:76:
3a:88:e3:9f:f6:66:82:fc:62:7a:7d:f1:9c:7a:6f:
80:2b:43:35:17:d0:b9:0b:c3:86:f0:f9:98:c7:ab:
72:21:0f:f6:da:55:91:7d:1a:c3:a0:06:78:be:7e:
63:5e:de:19:59:04:38:8b:70:8a:74:b7:12:0a:bb:
c0:d7:05:ab:05:92:53:7a:e5:39:15:fb:b7:36:80:
b0:04:6c:76:37:1a:5f:35:aa:4e:5c:5b:6b:59:43:
33:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.42.32.0/19
139.180.128.0-139.180.223.255
158.247.192.0/18
167.179.64.0/18
207.148.64.0/18
Signature Algorithm: sha256WithRSAEncryption
67:9f:a1:07:b4:49:10:d8:5e:65:63:9a:89:ba:fd:04:08:4f:
93:77:46:70:68:5f:7f:82:23:a8:2e:09:b8:fd:39:f5:e0:6a:
8c:28:27:78:a5:59:2d:70:cf:10:8d:ba:10:98:99:8f:3d:03:
f3:e6:36:f5:59:77:97:c4:a5:a0:83:83:31:ff:5d:4c:73:ae:
64:7c:12:5f:7f:0c:73:bb:c7:c2:ee:96:44:a8:d2:7f:c5:26:
f8:c9:b2:9d:7b:c6:0c:1a:40:51:d0:6e:c6:83:5c:49:33:1c:
03:bc:b0:63:c5:59:cd:bf:8b:43:93:7a:6f:47:8a:73:c3:6c:
e4:e8:fa:b7:13:ea:75:64:d2:f0:9b:25:a0:6a:88:4f:f6:fc:
4a:f2:f5:32:e1:b7:19:0a:84:97:25:34:78:10:c0:fc:3d:75:
46:66:9a:8b:47:0c:bc:28:1a:37:08:8e:f1:3a:84:76:87:99:
9c:53:6a:5e:76:2c:f3:2c:4b:b9:8d:b8:13:80:61:35:4d:83:
37:f6:ad:d9:50:40:2a:97:85:d7:7c:5b:34:a4:b8:c9:1b:06:
dd:9e:6b:cf:05:8a:c2:35:87:4f:cf:9f:ad:41:c4:67:40:d7:
56:5c:40:ae:63:bf:2b:7c:0c:bf:6f:c9:4b:f7:9e:91:6d:9c:
ca:9d:8d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org