Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer
File: hn09aLZZeAOvVkZcDptTq2Z7cqg.cer (raw, json)
Hash identifier: g92Q4skZCyhCOEI4Ff0zX0VE8gH6frNs7VIR5Zyyw3s=
Subject key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4E0E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Oct 2023 13:16:30 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 148.59.94.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19982 (0x4e0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 11 13:16:30 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:be:37:0e:80:72:bf:57:2d:7f:da:0f:9f:2c:
7d:23:ea:4c:72:0e:aa:ca:4c:96:c6:0a:7e:f8:85:
92:ac:8c:86:e2:d2:96:bc:99:92:a5:39:97:4d:b6:
f5:85:6b:79:68:b4:df:66:6d:23:23:40:6c:a2:a9:
a9:44:21:2a:b8:9c:e8:84:7e:d6:4b:fc:b4:a0:53:
3b:57:7d:fc:5f:ef:60:af:c7:84:69:f5:76:7c:55:
84:2f:83:88:58:73:e2:a6:82:34:c4:6b:e0:b5:af:
3c:ab:0a:a1:69:fe:a0:63:07:16:c5:e7:95:7c:1e:
d1:9c:2a:d9:e5:ba:36:73:44:ce:53:68:b3:98:06:
d7:85:98:4e:59:93:21:82:d6:18:47:d3:fc:4e:21:
f4:0d:ba:fb:5a:08:47:1b:11:ab:4d:77:a1:d7:c6:
60:f3:9b:4e:d4:82:32:59:0a:87:05:08:d3:c5:a3:
d3:eb:3c:9a:fa:2d:fc:0b:f3:c1:87:e8:f6:5e:c3:
14:f8:b1:cd:50:2e:b7:67:d9:9d:70:17:6f:90:f5:
23:ec:c8:c3:52:33:45:61:dd:c3:db:9d:22:7d:d4:
e3:e1:68:ce:fa:8e:e4:a6:2b:51:4b:06:de:32:db:
17:c5:47:75:13:63:d6:c2:f0:68:3d:6b:90:97:52:
88:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
148.59.94.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:00:5b:d1:08:6c:cc:fa:92:db:91:0f:ac:7e:8f:4f:66:1c:
4a:99:95:28:6c:3a:d4:ea:21:3d:2d:6e:97:26:01:51:82:60:
c8:06:1f:95:5b:27:c7:d4:10:1a:1c:41:20:77:e1:47:e2:c2:
53:6b:57:02:00:45:77:f6:ff:cc:86:23:87:57:27:ad:7a:9a:
9f:2c:12:be:5b:15:8c:ad:da:cb:94:2d:62:3b:7c:19:15:53:
e9:9a:ff:41:e0:d0:e1:3f:0f:c5:4a:91:3d:43:8c:0d:54:b1:
13:0a:82:1f:fc:22:b6:a3:30:7f:54:b3:eb:4d:5a:56:16:bc:
af:35:7b:76:b7:45:75:11:94:df:05:e5:ef:bb:9f:85:c5:72:
51:2f:b8:f3:b5:c9:e0:82:77:58:00:24:62:6f:ca:14:37:03:
73:ca:e2:ce:69:b0:1d:19:b0:c8:52:0c:b5:69:bb:30:79:dd:
f9:10:e1:de:a5:72:d0:f0:da:52:d1:82:f7:7d:2c:2f:d7:38:
2e:48:a5:de:74:d2:cb:ce:f8:2b:ab:ac:2d:dc:8b:d4:81:12:
4a:34:b7:c5:7f:ed:f0:74:e0:d2:ec:c5:90:ba:50:cc:d1:f1:
11:5c:df:de:b0:5f:56:73:93:a5:50:5d:fe:9a:f2:c1:ba:89:
0c:f3:61:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 23:34:39 2024 by rpki-client on console-ams.rpki-client.org