Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer
File: punLpSnAWpYkymA1SKPjFJF1jys.cer (raw, json)
Hash identifier: tc3y0H7KWWQdGmUlpYLsMbPOOyybIJBGBnzmvbv+G+s=
Subject key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 59F3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Aug 2024 07:37:47 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.176.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23027 (0x59f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 22 07:37:47 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4f:f4:bb:bd:32:a8:aa:69:e1:de:0b:26:c0:
ee:e0:01:8d:e5:65:54:81:d3:c2:d9:05:70:75:19:
6e:b1:02:7d:93:4b:1b:9a:6d:35:9b:83:d1:cc:e5:
dd:d7:dc:63:b5:ca:9e:6d:92:0d:6b:cf:e1:5e:e4:
2c:0c:b7:22:19:92:83:88:db:be:66:13:eb:2e:df:
bd:29:ef:36:f7:d4:88:c2:5b:8a:02:47:e3:75:14:
25:8e:50:72:9c:fe:9f:c2:08:2e:ef:e2:a3:5a:2d:
41:ef:22:c6:41:d8:10:c7:ca:0d:e4:62:2b:6e:cf:
b4:74:8b:4a:0c:6b:04:01:a0:70:be:86:1f:a9:d7:
76:12:fa:6f:2d:3e:24:e3:54:6e:8b:9f:3d:35:f1:
51:25:bc:fb:3c:cf:07:37:3c:58:ad:40:df:55:1f:
db:dd:fd:ab:e0:d9:18:1f:d3:12:f4:64:3f:6b:79:
b3:5e:01:68:6a:2e:c4:3e:61:ee:58:37:c3:2a:1e:
3e:4e:96:bb:38:52:3d:93:70:a0:e0:6c:e8:e6:da:
a9:8e:75:a8:f0:32:e4:f0:a1:79:8a:30:53:ca:27:
ba:aa:76:6c:76:b2:b9:87:d8:6b:86:a0:b9:9f:b6:
ae:47:e9:f5:50:49:23:9b:72:86:b1:90:d4:86:42:
1a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.176.0/23
Signature Algorithm: sha256WithRSAEncryption
24:e1:0d:16:87:bc:01:de:72:86:d7:66:e1:90:1e:50:6c:b7:
73:10:96:df:f5:f9:3f:60:c3:01:cf:89:c3:0f:e7:06:db:53:
9b:f8:d5:3f:54:b1:20:54:ff:bb:ec:4e:67:84:fb:14:a8:c4:
7c:b6:b7:6a:d9:5f:44:a9:9c:9f:3d:9d:f6:29:1a:17:03:78:
9a:27:33:aa:7d:41:ca:f1:e9:bc:57:ec:98:39:01:93:39:3d:
a4:db:05:f9:e9:65:b8:3c:92:00:5b:9c:85:98:bd:b2:71:2c:
3a:96:12:42:57:60:51:f2:68:fc:ec:26:3b:3f:90:7d:36:0f:
83:da:b1:00:2b:f4:bb:6d:9d:e8:22:30:18:b6:9f:52:66:43:
6d:ee:21:5c:fd:04:ea:e8:71:a0:53:ef:71:c2:ae:09:ba:b0:
fe:0e:6d:ca:f3:60:57:cb:d9:89:ce:ba:36:57:d9:6f:c4:cd:
44:11:b6:1a:12:0d:67:c2:2c:0f:a3:fc:58:76:34:01:d5:c2:
a9:f2:0e:b7:8e:b5:73:68:f2:8f:a7:a4:88:55:61:15:0b:7d:
b1:d7:41:db:bc:c5:58:95:de:34:cc:e8:16:cd:c1:c4:0d:ca:
99:c4:a6:3d:98:c2:d9:ed:67:88:e0:38:29:d7:8c:43:41:ee:
9b:4e:54:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:17 2024 by rpki-client on console-fra.rpki-client.org