Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer
File: kGA-NU21aLPKQpAOcDAR55ZiiS4.cer (raw, json)
Hash identifier: rvBEH3WRZw8m9so1IRp8UY+J57p5BDScXgU5iA4wxck=
Subject key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4CAA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 09 Aug 2023 21:13:15 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 72.9.128.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 17:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19626 (0x4caa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 9 21:13:15 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bb:25:c1:8f:95:bd:a2:ad:eb:b0:fa:43:52:
4d:d3:d6:98:84:90:14:fb:97:f5:60:1f:ec:19:b9:
17:01:8a:0e:6b:63:81:cd:d8:e2:83:ab:2f:25:4e:
ee:96:cf:05:32:c0:56:8b:1f:62:84:f2:4f:db:c0:
2a:36:19:d0:14:96:bc:0a:c0:de:73:a9:6d:58:1f:
25:72:d7:b3:fd:f7:c1:17:67:60:d9:ad:4e:41:70:
d1:c7:bc:cb:cf:1e:63:8a:9f:5d:e1:f4:32:97:24:
81:a6:22:45:8e:99:18:31:0b:71:9e:07:f2:22:72:
2a:4c:23:6d:5e:1d:d6:e4:1d:b6:4f:2a:ff:03:65:
a3:7a:bd:20:60:d3:7e:77:4a:69:b4:f9:7e:8a:a2:
7a:fd:b9:65:0c:8d:7a:20:22:e3:e5:bb:81:19:eb:
a7:1e:80:01:8e:d8:be:9e:e9:9b:57:bc:89:46:6b:
44:a3:ca:cd:f7:c9:ee:be:da:de:96:22:36:6d:dd:
02:f5:7b:a0:6e:43:ea:24:5c:41:d3:48:e9:36:ba:
a8:16:3b:90:d6:a4:85:e7:ce:48:17:aa:5c:1c:2c:
a1:76:bf:c9:15:b7:1c:ca:0e:0f:ab:b4:ba:1a:31:
38:1d:1f:88:5a:8f:3a:23:2f:ec:88:56:d0:76:79:
6b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
72.9.128.0/20
Signature Algorithm: sha256WithRSAEncryption
51:a5:73:cc:02:78:ea:88:62:c4:d0:e1:d5:62:e7:88:12:cf:
fa:3c:a7:c7:fc:05:7d:4c:16:80:e5:d6:0c:ca:cb:a9:68:a0:
54:cd:6d:6c:02:7a:b0:e5:a9:2e:92:ee:5b:f1:df:14:ec:40:
5b:18:2f:58:b5:49:d1:c3:e1:48:f9:ac:d3:b1:48:cf:40:b4:
ac:3f:4b:ea:32:25:a1:61:6c:b3:24:aa:a0:be:72:05:59:0c:
42:07:ab:8a:4a:3a:be:14:7f:86:ab:1b:24:43:fb:fa:a7:85:
2c:77:3c:b5:d4:ed:d9:71:4e:99:0f:8a:3c:6d:2e:2c:68:0d:
6d:dc:a6:84:99:b1:47:55:00:3a:f0:5b:1a:95:07:be:c4:f3:
0c:1d:c2:1a:66:83:5a:ad:02:ca:ea:ab:53:e2:d4:a1:3b:cc:
fb:4d:a0:52:27:40:67:c1:a0:fe:43:b3:c3:6e:33:80:f0:52:
75:8d:3d:ce:69:92:d6:53:7f:d8:11:91:ec:3e:7d:36:a1:9f:
af:c5:57:b4:07:66:78:8f:9d:99:d7:3f:70:df:22:87:1a:8a:
32:3e:8e:df:2e:b5:73:65:a1:1b:d9:a9:9f:6d:bd:5d:41:5a:
d0:ca:2c:33:91:76:6b:8e:89:5f:63:68:73:c3:fb:22:8b:f5:
a3:91:06:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:08 2024 by rpki-client on console-fra.rpki-client.org