Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer
File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer (raw, json)
Hash identifier: 3bFoZ7+6RfK0jbZLxonvYtoBv5cXF1JSX/ltui3PAsU=
Subject key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4C7C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Aug 2023 15:53:55 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 161.43.0.0/16
IP: 192.131.13.0/24
IP: 192.203.176.0/24
IP: 198.142.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 02:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19580 (0x4c7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 1 15:53:55 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:39:95:cf:6a:49:d2:6c:44:1e:3e:81:26:f7:
b9:da:23:1a:c6:21:06:50:2d:aa:d1:83:de:ae:f9:
39:dc:49:e3:ed:3f:d5:53:12:45:14:3a:ed:e6:b2:
66:46:5b:b1:3b:1b:b8:ec:04:04:b5:fb:2b:12:d5:
cf:1d:4b:24:b9:4c:69:43:c7:85:e3:a9:f0:da:b3:
c8:85:09:f2:72:ff:d9:1c:1a:11:11:fd:ae:3e:6d:
97:19:4b:8d:8e:37:d0:55:91:8a:98:da:07:3c:7e:
00:5c:7a:e9:f7:83:86:3e:9f:47:0b:84:84:77:2c:
d3:7f:c2:61:0c:c4:e6:3b:3b:dd:e6:de:18:70:5e:
2a:dc:4c:3b:29:91:0e:aa:60:b0:2f:00:4f:97:46:
8f:97:2d:60:d0:b3:be:8f:63:d2:7a:eb:ef:83:0c:
0e:60:42:67:ce:90:65:30:03:43:18:69:0e:82:10:
11:0d:3f:f5:ce:a1:f7:61:cf:0a:f6:54:6a:08:bd:
4e:1c:16:3e:46:e5:22:d8:f1:5c:84:37:84:c4:98:
bb:c3:08:17:49:a9:be:27:9e:34:e3:fc:74:30:de:
ec:18:27:67:cc:d7:4b:3f:6e:8e:36:00:fe:06:7e:
56:24:ba:fb:96:32:1d:8b:33:54:e5:83:d5:0b:fc:
56:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.43.0.0/16
192.131.13.0/24
192.203.176.0/24
198.142.0.0/16
Signature Algorithm: sha256WithRSAEncryption
46:f4:33:22:45:1b:a4:86:e0:fd:cb:85:5d:5a:c2:f9:93:03:
3f:b7:58:81:60:f9:d8:1a:a5:7a:6e:fc:4a:aa:4c:0f:c1:4d:
cc:d8:08:79:f4:68:68:fe:d6:4d:cf:20:51:c6:80:03:f2:bc:
58:12:3f:d7:16:61:26:87:c9:7a:de:40:59:64:fa:3e:60:9a:
cf:2c:52:e1:fe:95:2b:cb:0d:c2:58:3a:e4:68:11:17:a2:c6:
89:3f:48:ab:26:dc:06:64:fb:0a:f1:98:12:66:62:0d:88:ff:
68:c9:68:20:a4:14:e8:45:bb:c8:b7:37:57:2a:6c:97:e4:1c:
67:5f:3c:8d:ec:ea:73:dd:e6:33:38:b7:42:db:71:40:25:a2:
34:31:0a:78:4c:06:d6:40:f0:5a:11:5e:4a:89:cb:9d:e2:ba:
4d:e2:d3:2e:34:ec:e4:d6:66:ec:89:4e:e4:00:70:ab:9e:e5:
2a:eb:23:ff:5a:b4:86:ab:ff:1a:15:7b:d6:8b:49:ba:a9:89:
7a:3e:60:df:fd:26:93:4e:0f:fc:b6:f1:e4:5b:d9:78:d4:20:
e5:98:e3:60:33:ff:89:fb:32:76:73:93:a7:a3:dc:28:d9:55:
93:73:44:41:10:0d:5d:34:ef:bc:d4:80:91:b8:56:9c:88:d2:
d1:ee:f6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 03:22:05 2024 by rpki-client on console-ams.rpki-client.org