Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer
File: hwGGtlfRGymKhLAkIO504fu1woI.cer (raw, json)
Hash identifier: IznLLagKqYEwtfazyuXGmvBR94J/cu4eBCpaSV3jwLA=
Subject key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 59AB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Aug 2024 17:56:25 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.213.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22955 (0x59ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 15 17:56:25 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a0:e9:7e:5f:5b:16:1a:3c:90:18:dc:00:25:
f8:b6:6e:e3:67:42:7e:cd:0a:58:24:c7:e7:5c:5b:
4b:9f:04:c3:46:ef:f6:68:7d:93:58:f1:43:d8:9e:
30:f4:bf:a9:fc:2f:a0:bf:1f:38:4c:98:a9:3e:83:
13:a9:2c:85:e4:4e:2b:be:49:ce:f4:a2:9f:20:85:
54:6f:77:01:97:0e:75:53:03:d6:a1:ed:a3:ba:9d:
f2:60:b6:e8:c6:98:0b:99:19:97:63:de:f3:ab:d6:
65:9b:8c:e0:e7:4f:2d:50:4f:b3:46:7d:e9:fc:10:
54:a7:aa:40:0e:a0:e0:ac:40:1b:e9:b1:5b:bc:d6:
79:fc:3b:ef:6e:b9:e0:8e:54:2d:38:3c:54:7d:0d:
8e:3a:ac:fb:bc:90:21:9c:dc:ef:83:76:a7:67:07:
74:b8:1c:2f:7e:c0:89:ce:8f:0e:27:eb:3f:a4:39:
e6:f6:92:f9:2b:80:af:8f:b7:14:3d:1c:e6:d3:84:
05:3e:9f:df:da:f2:54:b9:2d:5a:99:43:21:3a:0f:
03:de:c5:3b:79:2e:d3:01:a7:cb:79:45:ef:14:13:
fb:75:d8:c1:1b:e4:63:8f:31:9d:99:38:8f:8c:0e:
9b:58:07:55:fc:78:ee:95:46:45:75:fd:a4:1d:9f:
eb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.213.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a5:29:c9:5b:ae:7a:6d:57:f0:e1:4b:05:2a:61:8d:8d:8c:
ad:21:e7:0f:f5:87:84:e9:1a:8f:55:70:6b:bd:42:a5:e7:36:
bd:04:e6:62:ec:ea:08:b5:b2:0c:37:45:83:ea:0b:02:c8:3b:
91:ff:88:29:9c:2c:46:43:30:4c:0c:62:7d:5a:72:a6:fd:92:
84:2a:df:d1:1e:04:37:8a:55:e2:15:ce:5f:49:08:83:5c:2d:
d9:e4:43:9b:73:14:2f:ed:90:96:9c:41:1c:66:02:b2:e7:ea:
29:db:18:b3:92:b1:cd:b9:5f:a3:08:03:65:02:5d:85:43:a9:
b3:59:03:41:ea:f9:81:d8:8b:04:af:d7:bb:57:80:dd:e4:db:
49:a3:08:23:a7:d7:95:5b:12:9e:9a:5a:1c:0b:71:e7:6d:15:
31:f3:e0:21:13:e2:d5:88:97:d7:96:de:3b:d8:55:0f:0d:1c:
ac:df:39:f9:99:5c:c4:bb:fe:22:e2:37:5e:dd:4c:52:0d:6d:
8b:06:26:f9:5d:db:74:b8:9e:9d:22:92:dd:04:ae:7d:bb:c6:
c6:97:ae:ed:04:b4:dc:8c:e3:3a:15:8c:35:3c:20:33:6e:4c:
e1:c2:20:7a:09:a5:3d:2d:6e:3e:51:70:66:11:6f:26:11:0c:
22:e7:ea:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org