Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer
File: pN7tlZPlkTA6mwOYBh_o71GGZco.cer (raw, json)
Hash identifier: 5bRleBc/uo8ypIufEfDRuaGLk8cmATALdyQnlAg5Hno=
Subject key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 501F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Jan 2024 17:41:50 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 132.234.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20511 (0x501f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 8 17:41:50 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4d:92:f2:b5:16:11:5d:1c:a8:68:42:7c:03:
dc:ce:74:ba:1e:a3:9b:30:b5:63:5f:ce:14:2a:a5:
34:d6:0a:1b:f1:49:f7:0e:58:bf:7c:fc:bc:91:b0:
98:51:68:2a:05:5b:f6:f3:b0:e3:16:2e:d6:ae:92:
2a:42:42:71:5a:f6:42:3b:b0:4a:30:e6:17:d5:ab:
23:f6:32:ed:c6:1a:f6:4b:ed:43:72:30:84:7f:d2:
85:96:7d:e8:9c:43:3e:b4:52:a0:52:c9:c1:9c:eb:
d3:89:e1:9c:c7:b1:24:a2:ad:a7:22:42:f9:2d:58:
13:1d:a1:d2:00:34:20:51:48:9a:f8:eb:68:0a:34:
78:43:d8:d0:f5:bf:b8:44:90:c8:b3:23:4a:da:9f:
a7:2d:99:95:47:7e:4e:f3:1e:52:b7:11:11:58:fd:
32:e0:9e:2c:03:7e:76:c5:8f:4f:71:8f:c3:54:22:
e6:59:8a:cd:7a:c6:c7:e2:1b:a9:5a:f4:21:9f:d1:
90:20:fa:68:50:67:1b:d5:35:4b:94:b8:69:16:e1:
ab:8a:58:cb:77:c0:0f:52:a3:83:f9:c9:c2:53:4d:
48:63:89:40:bf:bd:82:57:c7:c7:01:89:db:20:77:
4b:90:de:ef:d4:cf:21:c5:42:8d:a8:a8:a3:81:08:
54:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
132.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:70:c5:24:a0:5a:84:b2:f8:c6:97:30:fb:8e:1f:5c:12:5f:
39:ba:38:f7:2f:86:f3:58:44:c1:db:4e:02:b6:29:ef:2f:d3:
b6:c9:f5:4f:92:5d:b4:49:ba:4e:04:79:5e:68:51:86:0d:3e:
d7:55:c5:5c:19:98:38:6b:1b:d7:41:8a:d5:81:84:bd:3b:01:
67:89:c3:55:d5:95:0a:56:5f:c4:52:5d:93:c6:65:57:1c:24:
64:c6:1f:22:bd:3c:ed:84:b9:de:c6:a3:57:ab:8a:61:29:41:
ad:25:d2:08:41:ce:d1:d4:b6:58:0a:fd:b8:71:51:3d:03:4e:
e1:62:14:5d:de:a8:ae:df:83:1b:3a:88:56:18:dc:c1:23:32:
95:ba:01:80:5f:a8:1a:d0:9e:74:b1:c5:35:df:82:44:6b:56:
e2:66:e7:b0:3b:d1:04:12:82:63:48:77:43:39:68:53:34:f8:
05:0e:eb:9f:d5:a1:87:5a:f9:94:c2:04:2c:68:e3:22:be:5b:
94:2a:b5:d3:3f:2a:6f:18:03:cf:e4:21:f6:bb:55:37:dc:10:
9e:b8:44:ee:da:6d:1f:bd:b8:30:00:a2:16:95:b2:ec:43:58:
0f:62:4c:4c:8b:24:31:4e:57:56:d7:7a:48:83:e1:d1:15:44:
57:e7:47:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org