Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nGj0A_AkAXvdJtbdDSAnpAK58oE.cer
File: nGj0A_AkAXvdJtbdDSAnpAK58oE.cer (raw, json)
Hash identifier: w9isrjgOY+GHHHfcGXdj+L1YiXmhMxGUq/OVXu6bgys=
Subject key identifier: 9C:68:F4:03:F0:24:01:7B:DD:26:D6:DD:0D:20:27:A4:02:B9:F2:81
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B6D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B190F/BFA96FAA7BEC11EF999FBC19C4F9AE02/nGj0A_AkAXvdJtbdDSAnpAK58oE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B190F/BFA96FAA7BEC11EF999FBC19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Sep 2024 09:50:28 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.118.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23405 (0x5b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 26 09:50:28 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91B190F/serialNumber=9C68F403F024017BDD26D6DD0D2027A402B9F281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a3:72:c7:e6:08:45:15:66:87:f4:54:6f:a2:
c5:e3:e1:bd:ec:2b:b5:50:de:2a:7f:4c:98:f0:13:
04:9f:45:d3:67:42:d3:3b:ce:09:c8:a8:38:f1:b7:
72:7c:21:44:36:b5:4b:fe:89:2b:2c:13:6a:f4:c1:
e8:63:13:58:aa:3a:6d:1d:16:6d:0d:29:50:8c:3d:
67:50:f0:7d:1c:2b:81:f8:67:81:ba:80:27:9d:8e:
d2:c1:dc:89:17:e2:f9:2a:f5:14:bc:68:ca:59:60:
36:5e:23:d4:42:c9:c0:6a:e4:9c:6b:8f:b3:ac:11:
9a:ce:3a:36:9f:2a:37:3c:54:be:1a:ad:c0:a4:4b:
e0:9b:e4:19:a0:e0:10:66:7b:2d:bd:1c:6d:a3:33:
a7:c9:8e:28:b2:6e:db:47:4f:bf:c6:05:a3:62:46:
3d:42:b6:04:ed:7b:b0:27:93:e3:6c:68:c8:89:c9:
b0:64:a5:17:b2:14:2b:1b:8b:e4:67:f3:70:66:9e:
71:b4:dd:6c:82:3e:24:72:57:54:30:2e:5a:76:14:
56:78:08:03:23:3e:c4:74:87:ae:c9:6f:d7:39:b6:
dc:3d:22:a5:d9:43:53:3b:c5:12:32:a6:b0:21:eb:
20:80:96:a6:68:90:a1:cd:60:71:c6:21:f1:b5:9b:
c2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:68:F4:03:F0:24:01:7B:DD:26:D6:DD:0D:20:27:A4:02:B9:F2:81
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B190F/BFA96FAA7BEC11EF999FBC19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B190F/BFA96FAA7BEC11EF999FBC19C4F9AE02/nGj0A_AkAXvdJtbdDSAnpAK58oE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.118.0/23
Signature Algorithm: sha256WithRSAEncryption
43:af:4f:ae:bf:6c:22:69:1e:ec:cc:5c:49:3f:71:ab:2f:ca:
f3:fb:01:d6:b6:46:ce:bb:94:bf:81:04:82:8a:a6:84:8c:89:
75:01:32:89:58:59:0f:88:ac:2f:d3:42:69:4b:e1:67:5a:4c:
86:e3:ca:ff:48:e6:c3:27:12:74:fa:30:74:54:3b:dd:8b:0e:
76:62:7b:c8:da:ff:85:70:29:8c:09:5c:68:db:80:a4:53:0e:
21:47:ab:3e:f7:8d:d0:73:91:44:94:63:6a:51:41:2d:3c:1a:
01:3f:21:fa:69:33:1e:43:e1:50:2d:fb:6f:e4:29:c6:90:18:
22:c6:07:be:e4:aa:de:f5:ac:97:6a:77:89:8f:0e:1a:93:b3:
68:0d:24:51:33:5c:94:69:f1:d4:aa:32:ca:b4:7f:41:83:da:
02:5f:e3:a0:a2:99:33:31:1f:9f:98:c4:b8:f9:ea:04:81:62:
a7:a6:63:7b:9a:93:b7:6d:6d:bd:f9:e0:37:da:ad:43:04:7a:
0f:37:05:f3:33:6b:7a:35:90:46:18:08:5d:78:37:75:3f:7b:
a4:1f:e1:37:9a:47:ad:cb:9e:ae:91:dc:f2:04:37:ff:1e:ed:
cc:2d:cd:d6:79:4c:c8:be:55:55:33:cb:58:11:0b:39:10:73:
f0:e0:63:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org