Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nnabVGgi7tWnPT9dAt-atImAA6k.cer
File: nnabVGgi7tWnPT9dAt-atImAA6k.cer (raw, json)
Hash identifier: 2QRR6VX0uaUObouoezsmNJtyjREO4CKCTjx1p20g5Tk=
Subject key identifier: 9E:76:9B:54:68:22:EE:D5:A7:3D:3F:5D:02:DF:9A:B4:89:80:03:A9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 585E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/nnabVGgi7tWnPT9dAt-atImAA6k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Jul 2024 01:10:30 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.88.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Sep 2024 21:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22622 (0x585e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 16 01:10:30 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A914B1DB/serialNumber=9E769B546822EED5A73D3F5D02DF9AB4898003A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:75:36:97:6f:09:60:2a:de:a4:27:57:97:01:
55:f8:bf:e9:b5:90:f4:93:8d:c3:d5:c2:34:aa:32:
ba:69:98:a3:5f:c7:cd:c7:ac:98:91:d3:82:90:3e:
cf:f5:1e:d8:42:6d:43:1b:e4:7f:dc:ac:98:a2:02:
71:7a:d0:75:07:09:98:d8:03:b1:db:a8:8d:88:94:
8e:07:21:8e:a0:47:7f:3d:1a:a1:b7:2a:1f:1a:61:
36:94:61:6c:75:9c:16:67:7c:43:5e:60:4a:c2:f0:
ab:be:06:b6:5a:c2:77:2e:37:60:e5:13:2e:6d:77:
1f:c0:cc:80:ab:f6:1b:a1:05:20:55:f4:f7:83:2f:
f0:37:88:11:99:d6:e6:dd:1c:3b:63:4c:7a:b5:2d:
98:6d:0c:39:66:6f:c5:a9:9e:0d:07:fb:c6:12:f0:
01:5d:8c:1e:8c:55:3b:37:12:e6:a3:5b:ad:84:0d:
fe:50:25:74:5e:3b:dd:bb:67:9b:81:e5:9d:77:47:
2e:44:d1:1a:ba:8b:4c:e4:81:a4:4f:13:cd:a2:00:
96:96:86:3d:9f:10:b6:af:99:85:6e:6a:d1:1b:f5:
3e:84:06:9f:37:25:78:60:dd:fc:b4:6f:e7:ec:d5:
ee:ce:67:57:5d:2e:3e:0a:c3:b6:57:90:03:6d:3f:
31:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:76:9B:54:68:22:EE:D5:A7:3D:3F:5D:02:DF:9A:B4:89:80:03:A9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/2D87DFD6431011EF868B2B81C4F9AE02/nnabVGgi7tWnPT9dAt-atImAA6k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.88.0/23
Signature Algorithm: sha256WithRSAEncryption
25:30:2d:23:eb:c7:77:66:d5:25:24:82:da:5b:c2:8d:c4:02:
da:cc:4a:1c:0e:fb:5b:59:3f:bd:a3:f6:8a:9d:d0:4a:cd:10:
7d:c3:b7:5c:59:8c:7f:83:1c:0a:f3:e5:35:9f:e7:d8:8d:9c:
69:cc:4c:5b:b0:2f:a9:33:d3:d9:88:80:b9:93:60:a7:ee:73:
b6:be:58:86:09:6c:86:32:1a:6b:79:a5:b7:2d:eb:72:ae:31:
ff:e6:a1:15:be:f8:d4:b6:6f:1d:9e:01:0c:c2:b4:1d:1a:ae:
29:88:93:9e:dc:5d:a7:13:eb:93:bf:ff:36:6c:57:cc:81:f1:
3b:09:e3:d2:20:50:e2:c7:d5:40:03:e5:42:32:d8:2f:2b:cb:
f6:c0:72:69:1e:bc:cf:3c:50:d6:a8:5e:00:0b:6f:15:7d:ae:
eb:26:59:17:fc:3b:bb:f7:9c:10:ea:84:26:d1:c3:b2:2c:d6:
d9:6e:12:89:cb:2e:3a:3f:fe:fd:ae:31:a7:28:fc:4f:50:79:
76:ba:f5:8a:ff:25:d6:06:2f:5d:e4:26:b4:86:af:ac:18:87:
5e:dc:78:a9:52:18:2f:33:96:78:68:33:a2:81:45:43:4e:88:
3d:1f:30:ee:7b:ae:ea:9b:a7:1d:cb:86:7d:c0:44:36:16:a5:
50:62:4c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 22:41:13 2024 by rpki-client on console-fra.rpki-client.org