Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer
File: hn09aLZZeAOvVkZcDptTq2Z7cqg.cer (raw, json)
Hash identifier: gUxrSTWhOBgOmw9YfIZIUMscje3gcLngakEcBlkA6z0=
Subject key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5C31
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Oct 2024 12:53:55 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 148.59.94.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23601 (0x5c31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 11 12:53:55 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:be:37:0e:80:72:bf:57:2d:7f:da:0f:9f:2c:
7d:23:ea:4c:72:0e:aa:ca:4c:96:c6:0a:7e:f8:85:
92:ac:8c:86:e2:d2:96:bc:99:92:a5:39:97:4d:b6:
f5:85:6b:79:68:b4:df:66:6d:23:23:40:6c:a2:a9:
a9:44:21:2a:b8:9c:e8:84:7e:d6:4b:fc:b4:a0:53:
3b:57:7d:fc:5f:ef:60:af:c7:84:69:f5:76:7c:55:
84:2f:83:88:58:73:e2:a6:82:34:c4:6b:e0:b5:af:
3c:ab:0a:a1:69:fe:a0:63:07:16:c5:e7:95:7c:1e:
d1:9c:2a:d9:e5:ba:36:73:44:ce:53:68:b3:98:06:
d7:85:98:4e:59:93:21:82:d6:18:47:d3:fc:4e:21:
f4:0d:ba:fb:5a:08:47:1b:11:ab:4d:77:a1:d7:c6:
60:f3:9b:4e:d4:82:32:59:0a:87:05:08:d3:c5:a3:
d3:eb:3c:9a:fa:2d:fc:0b:f3:c1:87:e8:f6:5e:c3:
14:f8:b1:cd:50:2e:b7:67:d9:9d:70:17:6f:90:f5:
23:ec:c8:c3:52:33:45:61:dd:c3:db:9d:22:7d:d4:
e3:e1:68:ce:fa:8e:e4:a6:2b:51:4b:06:de:32:db:
17:c5:47:75:13:63:d6:c2:f0:68:3d:6b:90:97:52:
88:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
148.59.94.0/24
Signature Algorithm: sha256WithRSAEncryption
99:32:2e:a5:8b:8c:17:cb:fa:8d:8e:43:5e:bc:4e:0b:f9:44:
d3:12:fc:cf:8e:7a:b6:19:cf:28:1c:8c:f2:82:3d:1a:cb:98:
39:94:e5:44:72:12:71:36:06:97:fa:be:db:eb:d6:60:fe:0e:
98:03:17:5c:09:fd:f4:29:13:e1:47:10:52:57:d4:d3:41:12:
92:38:53:02:8e:56:ac:45:dd:95:b0:f1:31:d2:82:a6:4e:b7:
c3:2c:24:7f:69:bf:28:50:43:3c:90:16:3b:e0:bd:ed:ed:ce:
5c:41:87:17:45:c2:38:85:a9:0b:09:04:94:e4:41:3d:99:3c:
a3:a4:de:40:c7:1b:0a:8a:d0:23:76:30:12:73:3a:d0:df:63:
f2:35:16:80:0f:1f:6f:74:99:ad:82:14:f9:24:95:ec:f2:59:
99:52:d9:f0:ff:16:14:29:f4:fd:54:b5:f2:24:47:63:b5:2a:
0b:55:eb:a8:9a:f5:94:bd:20:09:7c:95:a5:9d:b5:8c:e6:17:
5b:c3:22:2e:26:d6:8a:7a:ea:7f:79:c6:b7:ca:a7:31:6e:7d:
b0:e4:f4:2f:21:69:45:41:1e:33:ae:c6:55:b4:72:b4:cd:ff:
f6:b3:8f:47:e4:15:cd:3c:4c:19:a7:65:45:5a:40:12:50:df:
fb:e8:75:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:40 2024 by rpki-client on console-ams.rpki-client.org