Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer
File: n095sMMg0u--SKvL-paoRdZHlu8.cer (raw, json)
Hash identifier: d/o3K8SfVJuP00GFM0cHvlFYe73SVWVjJO7ErWZuTc8=
Subject key identifier: 9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 58FB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Jul 2024 19:00:46 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 137.189.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22779 (0x58fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 26 19:00:46 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91A78A7/serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:97:1f:3b:9d:57:05:fd:b1:a0:00:97:e4:64:
ec:3c:e2:5d:0f:aa:46:5c:9f:62:79:8a:2d:04:63:
4d:25:2f:0b:1d:32:84:32:f5:86:48:d6:5f:76:20:
d1:be:75:38:cb:48:e9:ba:12:b8:ff:38:50:89:c2:
87:f4:73:2d:dd:0d:0c:c3:a8:4e:9a:e5:63:7a:30:
ab:77:9e:cd:c1:95:7c:62:2a:64:01:5a:88:9a:f4:
5c:a1:4a:3c:70:bc:fa:91:bc:ae:13:59:05:f0:d5:
24:e4:c2:04:b4:ad:51:98:c2:20:90:4f:2e:51:76:
f7:6d:a9:f1:42:ee:f4:ac:2c:cc:6d:50:f3:a3:76:
b3:2a:d1:bc:56:c3:af:75:e9:b7:c8:99:0a:4c:5c:
a3:20:51:9b:ed:3b:95:80:27:ec:3f:ab:36:c8:04:
2b:92:5f:a0:ee:78:a2:12:df:6f:2c:4b:52:da:67:
af:97:36:55:3d:13:e4:84:03:4b:a1:f9:41:02:ad:
92:52:10:1b:97:e2:52:80:70:88:9d:67:e4:5f:71:
0a:53:a6:28:ea:c6:00:99:15:d0:b6:b7:37:d7:a3:
38:3e:9a:a5:50:43:5c:a5:53:d5:16:43:d1:b0:a2:
69:df:c3:ed:04:c6:2a:f8:61:cb:b6:ab:24:6a:9e:
5b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
137.189.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b5:aa:37:7a:46:6f:64:85:3d:48:e5:7c:9f:1f:82:a3:fd:7b:
63:90:59:a3:51:34:b1:cb:b1:7e:c0:f1:95:ba:2a:89:68:74:
2e:14:65:5f:74:2e:8e:ec:ef:05:46:1c:0b:86:cb:d0:22:31:
dc:b9:bd:78:47:8d:59:04:bf:55:02:28:38:7f:7b:ff:df:ef:
10:5d:38:10:93:f4:d2:53:9e:9c:1b:e6:ea:ca:09:7c:a6:29:
ff:fa:05:36:1c:67:64:f0:b1:f1:eb:e5:3e:bb:74:d0:2b:79:
42:16:32:1a:e3:15:54:c1:fc:0f:dc:cb:91:b2:32:78:ab:a2:
19:c0:8d:68:ed:97:4c:f9:8c:3d:67:6d:5b:e0:0b:b1:50:19:
db:d7:30:22:b2:b0:32:8a:2c:f6:83:63:7a:f9:ea:6b:f4:ad:
27:80:ad:76:c6:95:8a:3c:6d:b3:ff:c2:3f:ec:9a:6b:72:c9:
d5:2f:53:29:f6:97:24:d1:85:71:16:bd:4a:4d:09:6f:2c:01:
5a:18:cc:35:90:f6:72:db:6d:61:16:cc:76:00:91:37:1d:00:
c5:67:66:df:8f:a4:97:a7:e1:13:17:a2:4a:79:5a:68:fa:ae:
80:95:01:58:d1:67:1a:ff:85:dc:7b:e9:96:45:ac:2e:43:52:
87:05:86:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org