Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer
File: kBUoySF5F9lWch0caFZlNFvrVv0.cer (raw, json)
Hash identifier: ngd2BD7kqcjt1T+A6Y6LBSgqnexvzXkZ82Bc4TL6PHM=
Subject key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 53D4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Mar 2024 20:24:33 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 192.94.236.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21460 (0x53d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 26 20:24:33 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:05:b5:e5:6e:87:9f:c0:3b:26:dd:36:12:4b:
86:87:e0:16:a4:13:ac:aa:8f:72:f7:7e:b5:cb:94:
42:cb:c0:81:c9:cf:59:eb:37:48:9a:d9:1b:e1:2c:
57:f9:73:e3:a1:93:d6:05:1f:33:33:86:16:cf:ca:
24:20:d9:1b:58:e7:50:dc:ee:94:48:eb:e4:97:b7:
6f:ee:1f:ba:b4:3b:ba:5c:57:2f:a2:28:22:cd:da:
b4:14:ae:9f:99:d5:ee:ae:27:56:2c:95:ce:98:d2:
51:4b:9b:66:e8:d9:b9:aa:8f:79:17:9c:6f:f6:6d:
3e:21:ae:ae:f8:bd:0d:d3:fc:90:b0:a5:1b:8a:86:
d0:43:e0:aa:67:92:79:2e:07:d1:7b:96:6e:53:98:
a5:a1:e0:f0:2e:f9:d0:b3:00:80:4b:6d:81:44:c8:
5a:fd:8d:f2:3b:ff:ba:61:88:03:38:49:41:cc:b7:
70:94:53:83:47:d3:32:f8:0f:f6:66:be:42:36:b4:
20:60:09:aa:7a:6d:67:4e:b3:10:b4:c2:3e:df:4b:
e1:bd:38:15:77:d5:84:07:a0:96:e4:9c:6e:c9:b8:
07:00:56:f3:cf:b5:04:a5:05:80:ae:95:bb:be:b9:
e2:f4:7d:68:2c:77:d6:9f:74:73:a3:72:53:3a:bf:
09:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.94.236.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:e5:a5:3a:3d:30:16:f4:b0:89:81:a3:51:82:f7:0d:68:f7:
a1:75:aa:ab:15:99:3c:20:09:97:6f:a5:f7:22:6f:bf:cf:27:
e0:62:ee:30:4f:93:df:6f:86:c7:0c:22:3a:1f:32:3e:e3:52:
bc:04:87:a0:35:78:47:70:d9:0e:4d:d1:62:c2:cd:06:2a:26:
43:43:2e:d0:a8:3f:38:7b:ff:ed:8d:85:1c:8f:1c:52:ae:4e:
b0:36:a6:7b:8e:32:a7:a7:bb:c3:13:25:19:b9:3b:14:d0:a0:
e2:0f:9a:73:75:1d:87:c6:16:9b:eb:ea:95:c9:ef:ec:a8:4a:
af:f2:fc:c0:84:dc:bd:42:7f:d8:ef:74:55:9b:60:7f:26:8f:
a4:cb:f2:06:2f:bb:b0:5c:9e:97:54:29:25:af:21:cc:30:df:
89:e0:39:92:12:9b:dc:ad:a8:7c:b9:1a:5b:e1:5c:bb:82:74:
8f:a9:99:71:4c:3d:17:27:39:b2:fa:e6:23:f8:d2:30:2e:09:
6a:c8:75:cb:16:28:c8:28:79:a9:77:b6:ed:b0:26:a0:5d:e0:
f1:11:93:84:af:d7:92:46:68:2e:8e:e2:5f:f5:1e:17:42:d7:
73:9c:37:71:2d:79:49:fa:b0:54:63:78:99:d2:f7:09:10:35:
28:1e:31:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:40 2024 by rpki-client on console-ams.rpki-client.org