Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer
File: qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer (raw, json)
Hash identifier: FRWGKPie+Ey6uS8fF9XCYkj0EPgj+90XG4K9L2g2pcc=
Subject key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 547A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 11 Apr 2024 05:06:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 146.196.0.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 09:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21626 (0x547a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 11 05:06:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:26:1d:43:79:f3:d9:3c:bb:c9:d8:44:d5:81:
54:92:94:78:69:34:a9:a0:5d:50:4d:17:1e:4f:da:
76:15:5d:70:9f:ca:e0:7a:f2:65:cf:45:c3:bf:4c:
b6:56:26:56:be:48:11:6c:44:55:8d:d9:dc:da:bb:
2c:28:b5:65:33:8e:e1:a8:d6:8c:a6:88:4a:64:ac:
8e:96:af:96:8c:e1:83:07:5e:b8:b4:6f:bb:27:8c:
8c:42:98:46:ed:72:80:50:8a:0c:16:26:be:f1:64:
c1:cb:f9:e3:1f:57:d3:e5:6b:d9:ec:06:fa:32:34:
25:fd:9c:a6:64:e1:a0:5b:6d:50:b6:56:d0:a1:9c:
8c:24:52:32:37:6d:49:be:73:bb:d0:51:ae:9c:fc:
7c:63:98:8d:20:ac:7f:12:a8:26:8b:01:a1:c9:5f:
02:e5:06:2c:1d:03:2c:41:21:ee:0b:cd:20:c2:84:
35:e5:d1:04:19:6b:43:77:f9:58:a5:99:d1:39:3a:
ff:d8:cb:9a:6f:e6:29:08:a2:d0:b9:66:4c:4a:c9:
f4:00:b5:ad:03:f7:5d:e2:7f:f3:dd:07:61:c9:b2:
aa:a5:1d:88:7b:e5:5d:5f:19:39:3d:7e:bc:89:e5:
ed:cd:2f:32:c9:a0:b3:ec:da:1e:4a:18:1d:84:4b:
e8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
146.196.0.0/19
Signature Algorithm: sha256WithRSAEncryption
10:c6:59:d6:90:14:7d:99:47:75:91:e4:b2:d3:53:43:1d:98:
ad:5f:7c:55:d8:10:53:7c:74:e7:d6:eb:5d:e0:84:ef:9a:1d:
7d:dc:26:ac:c4:a4:5a:1f:54:ce:70:35:a9:4f:2f:ef:9f:26:
71:74:6b:7b:2f:13:d5:3a:bc:5c:78:96:98:75:d4:91:75:b4:
93:be:fd:75:8f:76:e6:59:97:0e:9f:8d:04:f8:82:f4:c4:e1:
dd:4b:c2:cb:32:97:aa:77:bd:1b:16:3d:ab:d0:a1:76:b5:15:
1c:56:8a:3c:8d:1e:92:65:bd:6f:13:8c:15:5f:d8:aa:27:b0:
ac:f5:94:b7:b2:58:ed:96:4d:35:88:43:07:d0:aa:00:87:e6:
aa:fb:1f:be:95:1d:7c:e3:c5:5f:55:d1:5d:25:33:41:9d:70:
ad:48:21:23:58:14:f9:6f:d3:a4:22:83:79:a9:80:52:8a:23:
3e:84:8e:c2:68:8c:4b:48:24:c5:57:35:25:9d:68:1d:af:51:
87:a8:4e:60:45:e8:5a:81:36:54:dc:c7:21:27:4d:46:c4:d1:
01:a1:da:e8:e7:79:48:36:d0:ab:e1:db:66:f2:5f:1b:ec:97:
50:c4:08:4b:5d:4b:d7:7c:c7:29:84:97:6b:3e:eb:fc:7c:d1:
bd:33:07:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 11:26:18 2024 by rpki-client on console-fra.rpki-client.org