Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer
File: nEKLhAc-vngu7TP5LkDdc2GgnKo.cer (raw, json)
Hash identifier: nLlmpwq65uG5v6kiMtgv345ySZj6SG79iVcqy85/Bxw=
Subject key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4CAF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Aug 2023 18:53:18 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 140.96.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 09:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19631 (0x4caf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 10 18:53:18 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:04:cd:9f:8f:84:e9:be:5b:c0:61:ac:82:11:
95:c9:85:fe:58:46:20:d4:71:84:f3:7c:d4:8e:4c:
3d:7e:ca:80:ed:79:ef:28:fb:c1:0e:c3:b6:83:d9:
c1:4f:01:0a:29:e3:84:9d:d3:37:58:fe:3f:2e:9f:
f7:a2:34:c6:d3:67:03:f4:fa:53:c4:2b:11:c9:16:
67:0b:f6:5d:dd:81:20:56:2a:6e:17:fb:86:e0:11:
78:c4:0e:c2:ac:fe:df:c5:ee:81:4a:c0:94:64:a5:
d7:90:9c:8a:7f:2d:e5:65:f5:d4:61:46:9a:68:47:
59:fe:5a:a4:1c:76:1b:61:25:fb:a3:96:b3:f5:2e:
d5:19:e8:6e:de:d2:28:2f:12:30:d2:4e:e7:87:56:
ae:6b:6c:90:18:48:83:b2:0d:21:06:87:8d:a3:3e:
d0:38:13:22:dc:76:93:2b:2b:64:93:73:8f:69:50:
da:13:31:fe:10:0f:53:83:33:0a:97:c7:6b:2a:40:
90:2b:de:5e:47:30:98:4e:6d:d2:49:77:bb:5d:3d:
bd:27:9c:ea:fe:2b:58:46:f5:63:f3:b6:2b:08:62:
05:ab:a0:bb:48:27:05:58:d5:20:ba:75:5b:18:a1:
06:3e:c6:2b:4d:00:fd:6e:d9:09:a2:e2:f0:30:e9:
aa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
140.96.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7a:6f:51:23:72:42:fb:ec:a4:10:a9:01:41:8e:7a:65:2f:95:
44:5b:d6:a2:fd:2f:7e:d0:9a:ee:f7:e6:e7:a1:ca:11:f6:a3:
72:b4:d0:8a:70:4f:21:b7:51:e4:63:f9:84:b6:55:15:f0:10:
c1:12:24:c9:82:02:99:68:3c:ef:dc:90:a9:ef:55:95:53:64:
f7:bd:74:3d:76:3c:1a:fc:40:d6:73:a7:c8:28:68:a5:f9:b0:
84:c8:3c:af:55:ed:ce:8a:f5:1e:51:60:8a:e7:76:a1:36:de:
a1:c8:29:17:e5:57:ac:32:09:e4:a0:1d:15:70:cd:2c:f9:ae:
a7:0d:70:97:81:79:5e:f7:be:56:fb:0c:24:27:2c:bf:74:fb:
4c:33:76:34:64:c1:15:25:cb:14:0a:a2:7f:01:4e:aa:fc:64:
8e:99:a0:ee:de:ec:6f:dd:e4:f9:6e:b9:f9:48:2d:83:80:e2:
19:79:ab:22:03:c6:e6:9a:a3:97:f1:68:21:3a:ce:1a:a5:04:
ae:4d:64:60:9e:00:d8:14:9e:c9:c4:b5:65:90:29:d6:c4:72:
80:c6:a5:59:c6:9f:c0:93:45:48:c2:06:56:c5:97:01:02:eb:
9b:e0:70:b2:94:7a:d3:32:1b:49:40:a1:c2:b2:2b:a5:ce:11:
ae:df:6c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 11:26:18 2024 by rpki-client on console-fra.rpki-client.org