Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer
File: i0hqzK8SpnqVaI6NEb1ljAQcElo.cer (raw, json)
Hash identifier: L4esKPHFftu5gNpcsVd94FHs4hYmuSE0umxASmnX/oI=
Subject key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5ADB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Sep 2024 09:13:48 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.40.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23259 (0x5adb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 12 09:13:48 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f3:e5:ba:11:f7:d1:c7:14:2c:c9:db:9c:1c:
67:f2:f8:10:82:35:0f:3e:7c:08:fd:84:e4:29:5c:
04:97:ad:10:9b:8b:26:41:85:d2:9a:dc:78:2a:5f:
32:df:53:f2:da:3b:99:c3:d0:91:af:3d:3b:25:67:
2c:97:40:19:7e:ee:a8:e3:a7:16:29:9d:3a:0e:5f:
14:a1:ed:be:61:c2:1e:b4:e0:09:bc:5a:a3:ed:56:
87:13:8d:04:90:3c:26:8a:eb:36:fd:66:11:f1:3b:
d2:9b:86:c1:e4:19:8a:70:75:a0:df:41:e4:5f:e0:
0d:28:ce:03:4e:28:bf:d7:34:9d:b1:57:80:22:10:
fa:90:fb:20:29:c3:9f:e0:3e:b5:be:db:fe:43:fe:
32:93:39:19:00:87:55:08:19:e5:ff:f9:c2:9e:73:
19:29:12:dd:41:1e:0e:53:fd:26:17:6f:b8:63:ae:
c8:c4:56:42:42:26:e9:e8:75:55:ed:d2:e4:c6:c6:
95:a9:86:30:1a:2a:8f:93:94:c8:99:8f:f0:02:e5:
bc:8d:23:11:53:7c:c1:79:10:8b:92:29:70:ad:d1:
82:80:28:58:60:24:18:9b:06:79:00:51:54:f5:32:
1a:5a:67:37:e8:a6:96:d9:de:5d:d3:86:c0:e4:2d:
47:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.40.0/23
Signature Algorithm: sha256WithRSAEncryption
99:cb:9f:3f:69:e1:2b:f3:4c:cd:39:58:c3:64:d1:9d:e8:bf:
b2:19:c2:ac:f6:77:63:fd:31:2e:10:4b:cd:b4:1a:5a:28:94:
0d:d6:6c:cd:eb:1c:b7:94:41:6e:e8:73:a2:4a:ba:07:72:42:
8f:50:8a:f1:09:8e:9e:c3:3f:37:3a:ac:38:22:20:a1:0e:cb:
10:d1:cc:de:b8:b1:0b:c8:bd:32:0a:3d:7b:0c:d4:77:54:26:
a4:b4:f8:ad:a4:5e:3d:ce:44:65:7b:99:36:81:e4:6b:a2:56:
a4:aa:da:24:26:d2:3c:75:23:6d:38:d8:d2:03:ef:d2:06:e7:
f3:0f:63:fc:77:c8:f7:a8:7c:71:2e:fd:66:01:4e:4f:7b:47:
61:46:8c:2f:02:76:76:a8:ba:e0:73:8f:82:e0:11:9f:25:5d:
fa:1e:33:f3:16:45:64:e6:80:c5:27:7c:6b:7e:fb:51:3d:37:
de:aa:1a:fc:06:67:83:fa:e2:f4:fb:b1:83:b4:f8:e2:20:de:
0a:53:96:4d:60:21:25:9a:fb:59:79:44:ba:2b:57:ec:31:87:
8d:0a:02:e6:6e:0b:3e:6a:1c:8a:b8:c8:b4:f2:3a:dd:e8:18:
b7:a3:77:6c:89:8b:55:5c:34:61:29:3b:78:20:8e:ec:8a:c7:
0d:d1:9f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org