Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer
File: jdQUSFkXzUyAFnvaGdcklkawZyU.cer (raw, json)
Hash identifier: gViilUZBENI4+QcakGMKMdnidhKQZq1yVU+PserEhlw=
Subject key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B07
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Sep 2024 12:09:20 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.18.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23303 (0x5b07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 18 12:09:20 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:4a:35:ba:e3:fa:58:e6:28:53:e5:79:8a:
e6:52:dd:28:4d:ee:db:6a:50:bb:d7:bb:4a:df:d9:
35:9d:0e:6a:4a:ce:54:d6:10:86:4a:70:95:74:f0:
72:ab:1e:2e:87:58:04:20:0a:0f:a7:25:09:0c:8f:
b1:7b:7f:c1:fc:99:d1:1b:6c:60:9b:04:23:33:8d:
20:19:4a:89:aa:39:13:8f:39:f6:0d:6f:72:c3:96:
1e:60:d1:ee:94:fa:0d:98:06:77:da:0d:e9:f6:d1:
4a:54:4f:43:8c:cf:14:f4:73:c0:44:80:9f:f5:c6:
11:11:3a:21:6f:e8:37:1a:48:73:2a:5f:3b:e1:b0:
f2:ff:f3:f5:55:84:bf:1c:3d:a4:3c:57:af:ea:c4:
55:96:6d:75:3e:f8:06:59:e5:e3:fa:2e:bd:83:47:
0a:4e:a3:bf:78:8d:8b:50:5e:20:fe:79:2f:b3:bc:
50:ec:96:bd:33:22:e5:41:fc:4c:c3:ce:e2:01:63:
12:42:b6:63:c2:22:eb:81:d4:a9:19:c9:cf:67:d3:
fb:49:46:7a:45:a0:03:99:4f:d5:44:c7:f5:2a:fb:
54:fa:31:a0:d6:06:27:2a:7e:40:36:6b:03:fb:c8:
9a:2b:22:a9:f4:5f:c3:a0:ad:40:ad:30:a3:d7:95:
39:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.18.0/23
Signature Algorithm: sha256WithRSAEncryption
44:08:58:f9:cf:57:95:46:c5:6f:95:60:0f:cf:03:41:eb:37:
58:e6:cd:cd:7b:20:77:c8:51:37:6c:b3:5e:ca:78:b5:76:6b:
35:b4:35:82:74:e3:94:d3:5d:31:ec:57:58:db:42:cc:e8:36:
34:97:2b:ed:a5:a6:bf:0e:08:50:cc:df:d9:68:ce:2c:3c:74:
ce:f0:97:9e:c9:6d:a4:99:04:10:02:c4:cb:20:79:7e:6f:1e:
38:04:34:ee:e9:7b:d4:a8:d6:b3:43:ce:aa:bd:bb:cf:2b:6f:
6c:b2:37:4f:42:de:41:1d:94:01:86:78:1d:d1:fb:2c:1e:c4:
8e:b3:6e:b8:58:04:58:05:15:39:af:d7:83:9d:54:5a:29:b7:
7c:94:6a:0d:23:c3:9b:05:69:1d:92:43:a3:8b:ef:d0:a0:92:
1f:79:65:cb:32:2b:c4:3a:f7:78:11:e3:1c:d5:bd:94:be:e2:
96:9d:9f:7f:48:0e:de:b0:58:f2:77:61:ac:63:93:55:c7:cd:
3c:10:bb:76:ee:98:9d:4c:23:ce:e8:4d:b4:16:7e:ae:3a:e4:
5a:27:2b:51:08:4e:2a:72:d1:86:3e:82:eb:f5:f8:a0:89:b2:
26:d9:69:f0:74:a0:f1:10:65:8c:46:20:e0:60:41:3e:88:30:
f5:70:79:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 20:55:01 2024 by rpki-client on console-ams.rpki-client.org