Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer
File: jqW5VjInwuWNQ4vBe6giUHVCRDs.cer (raw, json)
Hash identifier: mjPrqytqJww543JvWsJgAgYycLcscXsILtCBpgT3/pc=
Subject key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A82
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Sep 2024 06:18:10 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.238.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23170 (0x5a82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 4 06:18:10 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e8:03:68:41:76:60:77:6b:c1:3d:61:fe:50:
51:fd:e7:a3:ec:df:19:7b:d3:dc:af:22:64:17:99:
a4:7c:84:1f:05:68:1b:da:6f:7e:63:3e:da:cb:6a:
89:2f:75:44:ff:6b:0e:db:cc:5e:f4:fc:b1:2c:0e:
c5:58:34:7f:f8:c3:63:bb:a9:22:56:19:4c:0d:fc:
1d:f2:13:1d:fb:34:75:13:e0:40:03:40:e5:94:18:
79:82:63:50:a1:fe:f2:94:a9:a2:8d:79:51:f5:c3:
39:7b:78:a5:dd:48:22:3d:f2:8c:a8:01:af:f4:f6:
7e:dd:7d:ec:e9:14:be:3d:9a:a5:7b:7e:23:4f:0b:
83:9f:f9:c0:e3:50:91:f5:9c:94:a6:81:b6:82:42:
5c:b8:d4:2b:b3:41:13:e8:3c:fc:16:af:7e:e7:2c:
56:7d:5f:93:a6:cd:7d:d6:5d:d0:c7:49:4c:c2:83:
72:87:6e:02:c6:ec:33:8e:94:85:3d:7f:e7:6a:f3:
2e:b9:0c:32:f8:ef:0c:a7:f0:66:45:0b:69:3a:ce:
04:93:1e:59:87:de:fb:10:61:90:45:12:aa:fc:9e:
03:ed:91:34:ee:80:f4:07:05:3a:8f:30:20:f0:97:
b8:77:9d:ae:3e:07:e9:ce:32:3f:b3:6a:9f:9f:9c:
46:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.238.0/23
Signature Algorithm: sha256WithRSAEncryption
11:1e:6b:0f:51:de:b5:e9:ab:13:de:d2:e3:22:37:f8:b0:23:
40:6c:27:b6:d7:47:9f:bb:0c:d7:c7:d6:b4:9d:68:5d:ed:49:
e3:36:bb:62:69:13:d7:21:10:76:d3:7b:6c:57:35:16:ab:da:
be:a5:35:0c:d5:56:17:6b:4a:33:38:4f:a1:0e:01:5b:b8:6a:
ef:19:57:ef:e7:42:b5:67:1c:82:87:b4:f3:44:4e:34:ae:94:
16:c4:b5:6a:48:78:22:a7:dd:72:e2:9e:32:34:6d:f3:22:e3:
88:17:ed:f5:87:8a:6c:cf:92:19:97:de:5a:aa:2f:2a:5b:91:
0b:af:ab:6d:dc:97:86:26:cc:5a:92:8e:23:d3:dc:99:27:ae:
25:da:eb:24:f9:99:df:e5:67:65:7c:6b:03:2a:73:47:87:2c:
80:43:f2:81:92:9c:87:2a:73:6a:45:3a:c6:1e:ac:7f:a5:e2:
01:f5:76:dd:76:ea:fe:2e:41:c1:02:35:dc:94:3e:43:23:b1:
9c:52:a6:b8:29:5b:2a:17:2a:e3:6a:30:7f:10:e1:d1:77:b1:
25:d8:c7:bb:b9:92:3c:a6:be:d2:f7:db:4f:af:29:bd:78:d9:
b0:8f:5a:a3:32:47:17:73:85:2d:9e:fc:d6:48:3a:e3:96:30:
01:ae:d5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:16 2024 by rpki-client on console-fra.rpki-client.org