Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer
File: n095sMMg0u--SKvL-paoRdZHlu8.cer (raw, json)
Hash identifier: S7QPkFypPJmjlGuoe1SDE08WuQNPtPIQQT+EXgDfZdA=
Subject key identifier: 9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4C4D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 25 Jul 2023 19:14:16 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 137.189.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 02:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19533 (0x4c4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 25 19:14:16 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91A78A7/serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:97:1f:3b:9d:57:05:fd:b1:a0:00:97:e4:64:
ec:3c:e2:5d:0f:aa:46:5c:9f:62:79:8a:2d:04:63:
4d:25:2f:0b:1d:32:84:32:f5:86:48:d6:5f:76:20:
d1:be:75:38:cb:48:e9:ba:12:b8:ff:38:50:89:c2:
87:f4:73:2d:dd:0d:0c:c3:a8:4e:9a:e5:63:7a:30:
ab:77:9e:cd:c1:95:7c:62:2a:64:01:5a:88:9a:f4:
5c:a1:4a:3c:70:bc:fa:91:bc:ae:13:59:05:f0:d5:
24:e4:c2:04:b4:ad:51:98:c2:20:90:4f:2e:51:76:
f7:6d:a9:f1:42:ee:f4:ac:2c:cc:6d:50:f3:a3:76:
b3:2a:d1:bc:56:c3:af:75:e9:b7:c8:99:0a:4c:5c:
a3:20:51:9b:ed:3b:95:80:27:ec:3f:ab:36:c8:04:
2b:92:5f:a0:ee:78:a2:12:df:6f:2c:4b:52:da:67:
af:97:36:55:3d:13:e4:84:03:4b:a1:f9:41:02:ad:
92:52:10:1b:97:e2:52:80:70:88:9d:67:e4:5f:71:
0a:53:a6:28:ea:c6:00:99:15:d0:b6:b7:37:d7:a3:
38:3e:9a:a5:50:43:5c:a5:53:d5:16:43:d1:b0:a2:
69:df:c3:ed:04:c6:2a:f8:61:cb:b6:ab:24:6a:9e:
5b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
137.189.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3c:09:bf:df:a0:b2:79:e6:93:de:2f:9a:e5:76:ce:e5:5b:79:
2d:db:a9:55:89:ac:c9:42:84:71:f3:c4:ee:47:4e:57:cb:13:
fd:90:40:8e:e4:99:2e:58:a6:44:66:0d:68:eb:37:cb:65:a1:
ff:0b:01:c1:63:c7:e6:ec:60:4c:b2:fc:8e:41:3e:52:7a:ea:
d2:07:3a:93:a2:8e:c8:06:cb:57:f3:d6:de:96:76:d2:5e:04:
97:8f:28:5e:0d:a4:c2:3a:d3:a3:81:be:13:f9:6a:e1:d3:80:
ec:1f:73:91:8d:c3:d2:59:01:4d:54:ef:75:3d:94:77:c9:10:
7b:88:40:8f:43:90:68:41:91:ed:1a:8c:ce:6d:e5:41:9a:1a:
4f:dc:c2:99:98:c4:95:ea:36:17:8b:d9:00:fe:4d:e4:10:e0:
ed:f5:7a:f2:41:b4:1e:5e:b0:48:13:6b:2e:d5:6e:bd:ee:ea:
5a:d3:cc:54:78:ba:0a:d7:47:d1:66:e2:08:5a:34:22:25:6f:
eb:9b:91:8b:7d:c1:ab:1d:1a:4d:80:ef:c3:bf:a3:0c:5c:67:
f9:e8:40:c2:0f:3d:83:66:37:d8:97:da:26:22:2a:ab:10:37:
e7:22:5f:a4:13:7b:98:57:1a:14:24:a5:1e:20:e8:e8:0c:a2:
f3:9a:7c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:39 2024 by rpki-client on console-ams.rpki-client.org