Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer
File: nwLaOrX7RTF1B8SAIc4Ki5NyVck.cer (raw, json)
Hash identifier: OSSKFA1po0/KFzkShvFdD4s64+ZycAb7v0X14esqSD4=
Subject key identifier: 9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 50DC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jan 2024 18:02:54 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 157.10.238.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20700 (0x50dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 19 18:02:54 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91C6CAF/serialNumber=9F02DA3AB5FB45317507C48021CE0A8B937255C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b6:9a:e6:68:c9:e6:02:12:bb:52:bf:f5:50:
48:10:40:fe:34:08:47:db:7d:1f:e6:e5:e2:6c:b1:
a0:81:04:90:cd:2d:23:f5:f9:eb:e7:4b:50:0b:ba:
f1:cc:a1:88:79:1b:6c:83:fe:62:23:f0:dc:3a:d5:
6f:01:0c:cf:fa:24:2b:6c:6f:02:40:1c:6a:4d:3c:
e4:72:4a:4d:b5:77:1c:8d:2a:ff:16:5f:53:1e:08:
10:7b:ea:35:c8:fb:eb:7a:82:82:2a:5a:1b:d3:5c:
04:ff:4b:ef:8b:c0:3a:09:ba:6a:37:d4:a1:ae:90:
30:5d:ed:cd:5d:95:c4:b5:12:9d:6d:8b:42:70:6f:
f2:68:6a:37:99:7e:8e:a5:80:bc:18:4e:6f:39:32:
67:9a:21:70:ea:31:66:53:c4:0e:9f:a5:85:3a:5f:
3b:ca:69:c2:45:59:16:a8:87:64:9b:54:0b:b6:e3:
91:a1:af:58:6e:d4:70:3f:4b:fd:f7:ec:7c:a3:f7:
4b:fa:68:18:05:d1:cd:65:be:5e:13:0b:58:bd:ee:
36:25:36:66:08:c4:e7:3a:cd:d1:c8:e7:82:2a:df:
8a:30:9d:1f:5e:cf:ab:d1:04:9d:fe:f8:0b:20:3e:
90:25:12:73:ae:30:cb:2f:63:52:56:6d:56:23:06:
ec:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:02:DA:3A:B5:FB:45:31:75:07:C4:80:21:CE:0A:8B:93:72:55:C9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/F3E0FAE4B6F411EEAC203810C4F9AE02/nwLaOrX7RTF1B8SAIc4Ki5NyVck.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.238.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:dd:e3:3c:36:3c:53:73:8b:11:14:85:ae:91:02:cc:72:a5:
5c:07:84:1a:f1:58:fd:eb:d6:d3:a4:e3:ac:cf:c6:4f:1b:74:
18:56:b8:26:fe:40:07:d6:d7:e0:e3:5c:a9:6e:cb:a3:3a:2a:
84:09:a5:90:58:d2:76:81:db:11:53:fe:55:c3:26:f7:8f:49:
96:3b:5e:58:f8:f8:f1:97:bf:07:67:58:96:de:7d:df:53:3f:
85:11:bb:69:42:cd:64:ca:82:d7:05:4d:e2:6b:d6:34:c5:e0:
41:04:c5:26:1b:94:5d:73:23:79:75:ba:8b:9e:24:9f:4a:70:
e5:fb:f7:d7:62:34:e2:d1:a8:86:57:c2:ec:25:9a:45:ae:12:
3c:c7:d0:a2:d2:86:84:7c:0d:94:0d:8e:b4:e4:bb:2d:45:7f:
22:09:58:96:c2:1d:08:df:2a:13:0b:55:1e:f5:fa:bb:c1:17:
c7:eb:56:27:df:88:2f:45:04:4c:fd:2c:03:5e:b0:14:d0:84:
34:4c:29:00:26:42:80:59:b4:85:ba:57:55:bf:24:74:53:85:
6e:98:93:c9:a0:f5:61:65:aa:c6:21:4b:35:51:bb:23:72:68:
6a:33:14:e6:18:ef:c6:79:0e:e9:6f:02:59:d3:db:e0:96:88:
92:16:d4:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:32:45 2024 by rpki-client on console-ams.rpki-client.org