Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer
File: nEKLhAc-vngu7TP5LkDdc2GgnKo.cer (raw, json)
Hash identifier: GYwSLZPRNQ+kY3kOR/hPCodKn6g4CijyQLS7bgKzLKk=
Subject key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5995
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 13 Aug 2024 20:47:36 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 140.96.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 01 Dec 2024 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22933 (0x5995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 13 20:47:36 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:04:cd:9f:8f:84:e9:be:5b:c0:61:ac:82:11:
95:c9:85:fe:58:46:20:d4:71:84:f3:7c:d4:8e:4c:
3d:7e:ca:80:ed:79:ef:28:fb:c1:0e:c3:b6:83:d9:
c1:4f:01:0a:29:e3:84:9d:d3:37:58:fe:3f:2e:9f:
f7:a2:34:c6:d3:67:03:f4:fa:53:c4:2b:11:c9:16:
67:0b:f6:5d:dd:81:20:56:2a:6e:17:fb:86:e0:11:
78:c4:0e:c2:ac:fe:df:c5:ee:81:4a:c0:94:64:a5:
d7:90:9c:8a:7f:2d:e5:65:f5:d4:61:46:9a:68:47:
59:fe:5a:a4:1c:76:1b:61:25:fb:a3:96:b3:f5:2e:
d5:19:e8:6e:de:d2:28:2f:12:30:d2:4e:e7:87:56:
ae:6b:6c:90:18:48:83:b2:0d:21:06:87:8d:a3:3e:
d0:38:13:22:dc:76:93:2b:2b:64:93:73:8f:69:50:
da:13:31:fe:10:0f:53:83:33:0a:97:c7:6b:2a:40:
90:2b:de:5e:47:30:98:4e:6d:d2:49:77:bb:5d:3d:
bd:27:9c:ea:fe:2b:58:46:f5:63:f3:b6:2b:08:62:
05:ab:a0:bb:48:27:05:58:d5:20:ba:75:5b:18:a1:
06:3e:c6:2b:4d:00:fd:6e:d9:09:a2:e2:f0:30:e9:
aa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
140.96.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:f6:ff:b2:18:ca:8c:9d:91:f3:4b:3c:aa:c6:f4:b0:60:47:
5c:84:01:6d:ae:f0:8d:7f:b3:43:b6:40:0c:3f:00:40:6e:65:
eb:5c:71:c0:7c:4f:5a:71:a6:f9:0e:52:4b:13:a5:d6:78:c2:
07:89:40:02:77:fd:ff:cb:5b:6c:9b:0b:30:36:7e:84:bf:1a:
34:b1:8c:90:4d:db:d3:0e:49:ed:6c:39:66:0f:19:09:ab:d4:
0b:4b:b1:f6:d8:9d:be:0b:d6:01:03:6f:ac:56:1d:2d:0c:ae:
a1:68:43:48:75:68:4e:11:e7:bb:c5:e0:30:a9:c1:c1:98:66:
65:b3:47:54:63:6f:14:cf:4a:9b:8d:f0:8f:7c:e8:b9:68:c3:
73:46:91:f2:67:c7:77:10:f7:4e:25:91:4c:5f:ed:74:07:1f:
31:6b:c5:bb:32:d6:1b:11:05:12:c7:31:30:ea:75:9f:e3:fa:
9d:53:b6:97:df:29:15:83:ca:9b:81:8e:7d:55:51:f6:e3:72:
21:b4:9d:01:c9:87:4d:eb:bc:3d:f4:fa:6e:e1:c4:3d:9c:55:
a8:27:e9:1f:7c:da:b7:44:28:6f:79:c1:29:d6:bb:87:37:3d:
fd:57:24:48:4b:c8:26:69:ee:f7:29:c0:dd:ac:76:91:4b:99:
f8:15:ec:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:35 2024 by rpki-client on console-ams.rpki-client.org