Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
File: ischKY-S4Qou4wUa-8kRQoT4DhI.cer (raw, json)
Hash identifier: 8dTQ6rEXidToOT2GuB784H0nAZUEWCXsVtdu18mIDjM=
Subject key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5529
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 May 2024 20:26:47 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 157.10.42.0 -- 157.10.53.255
IP: 157.10.86.0/23
IP: 157.10.170.0/23
IP: 157.10.186.0 -- 157.10.189.255
IP: 157.10.194.0 -- 157.10.203.255
IP: 157.15.14.0/23
IP: 157.15.18.0/23
IP: 157.15.38.0/23
IP: 157.15.84.0/22
IP: 157.15.108.0/22
IP: 157.20.58.0 -- 157.20.63.255
IP: 157.20.82.0/23
IP: 157.20.88.0/23
IP: 157.20.200.0/23
IP: 157.20.224.0/23
IP: 157.66.10.0 -- 157.66.13.255
IP: 157.66.24.0/22
IP: 157.66.46.0 -- 157.66.49.255
IP: 157.66.80.0/23
IP: 157.66.96.0 -- 157.66.101.255
IP: 157.66.120.0/23
IP: 157.66.134.0/23
IP: 157.66.156.0 -- 157.66.163.255
IP: 157.66.194.0 -- 157.66.199.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 17:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21801 (0x5529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 2 20:26:47 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:63:46:00:f1:2f:45:e3:46:dc:02:5e:8b:c1:
90:d7:d3:f4:9a:bd:48:f7:4d:c5:6d:8b:57:e4:e9:
4b:6c:95:bf:8e:4f:4a:17:d1:7a:0b:13:dc:bf:50:
b0:87:3c:ce:69:40:b9:74:10:08:7c:bf:d1:03:c3:
8c:b9:34:81:74:71:73:76:e5:bd:b1:9c:23:b1:a0:
92:9c:44:4f:b5:da:f4:fb:21:70:18:85:01:ff:2c:
24:24:31:bc:50:53:ca:67:c7:39:06:2d:c3:cf:ed:
00:41:c2:68:70:8c:62:10:d0:6d:35:c3:85:63:2c:
74:66:b6:61:98:b1:cf:96:66:95:66:5e:cc:aa:8c:
c3:69:38:77:7e:dd:9b:e4:28:3f:9a:ac:13:8f:80:
d1:86:17:11:5e:a4:2d:10:69:1f:99:f7:08:c4:c6:
44:2a:3a:22:b9:4b:8e:00:f9:48:32:b9:92:67:9f:
34:88:de:6d:dd:62:75:c0:2f:5c:6f:7f:e6:bb:6d:
51:ff:b4:67:8c:9a:d7:da:9a:4f:0b:3d:1b:05:7b:
98:a0:69:6a:67:8d:71:fb:15:5d:14:d0:65:6b:92:
01:16:63:17:7c:5f:ed:e7:87:90:18:0f:6c:ad:a2:
0d:c3:54:4d:dc:74:7c:07:a2:ea:4f:f5:58:42:22:
81:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.42.0-157.10.53.255
157.10.86.0/23
157.10.170.0/23
157.10.186.0-157.10.189.255
157.10.194.0-157.10.203.255
157.15.14.0/23
157.15.18.0/23
157.15.38.0/23
157.15.84.0/22
157.15.108.0/22
157.20.58.0-157.20.63.255
157.20.82.0/23
157.20.88.0/23
157.20.200.0/23
157.20.224.0/23
157.66.10.0-157.66.13.255
157.66.24.0/22
157.66.46.0-157.66.49.255
157.66.80.0/23
157.66.96.0-157.66.101.255
157.66.120.0/23
157.66.134.0/23
157.66.156.0-157.66.163.255
157.66.194.0-157.66.199.255
Signature Algorithm: sha256WithRSAEncryption
24:1d:1f:ff:e6:40:2a:9f:af:69:3d:72:39:d7:a3:c5:45:1f:
17:25:54:2c:ca:5f:52:17:ec:bb:72:6f:4b:f8:94:fa:11:ac:
74:32:5c:f9:5b:d6:0a:b5:10:ef:eb:8d:04:1c:5c:9a:36:3d:
02:ba:67:10:e7:2d:99:5a:b0:63:be:2e:a5:e7:52:12:51:4b:
ad:15:3c:f6:ef:80:0d:5c:20:31:d8:10:e0:e0:73:f2:69:4b:
6f:fe:aa:24:98:da:4c:8d:23:fe:59:b1:03:41:bc:16:c8:ee:
8d:bd:cb:b7:e9:d6:13:d5:c4:5e:09:31:42:a0:ef:ae:7f:62:
66:c6:9c:c8:1e:cf:4c:93:fc:cc:ac:1c:25:13:cc:1a:bf:1a:
e4:9e:01:bd:74:87:0e:b4:b0:8c:a5:cb:c3:c8:d0:1b:bd:4b:
7f:b3:cf:9e:66:1b:06:2b:84:b8:48:4e:ae:75:1c:ba:db:87:
7c:de:58:2d:dc:02:34:82:a7:ac:08:a8:76:22:84:29:ea:2b:
b5:27:3c:fb:73:f0:c0:83:a0:0a:81:76:36:90:a9:cb:4e:95:
03:9c:58:38:1a:b7:e8:3b:c0:29:16:8f:d4:45:f3:21:b7:cb:
5c:df:69:26:f6:77:ff:57:97:8a:8d:c6:4c:45:a2:4d:dc:18:
ff:e9:d4:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 17:57:35 2024 by rpki-client on console-ams.rpki-client.org