Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qFaPUnk8w0hXhQxPLtOK4LGJcPg.cer
File: qFaPUnk8w0hXhQxPLtOK4LGJcPg.cer (raw, json)
Hash identifier: yNW4z55tWWITx5kQfcYiq1+jczgPkUkpilbEmCEwNrc=
Subject key identifier: A8:56:8F:52:79:3C:C3:48:57:85:0C:4F:2E:D3:8A:E0:B1:89:70:F8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B60
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/qFaPUnk8w0hXhQxPLtOK4LGJcPg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 25 Sep 2024 09:02:47 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.116.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23392 (0x5b60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 25 09:02:47 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9184324/serialNumber=A8568F52793CC34857850C4F2ED38AE0B18970F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:ee:30:f1:3c:80:2c:6d:fd:bb:a0:39:f1:
16:ce:b3:1c:e9:57:82:14:12:96:54:dd:f3:6d:93:
32:6d:77:d4:25:0b:18:05:79:63:89:89:5a:b8:c6:
ad:5c:d9:4c:4c:0c:12:b4:6c:4b:ce:24:91:7e:b1:
e4:f4:45:1c:b8:01:94:67:21:11:b2:fb:80:ab:51:
b8:fa:6a:a1:54:64:bf:10:a1:75:8c:dd:2d:33:4c:
3b:4f:5d:e9:37:15:4c:7d:ae:47:cb:45:47:43:69:
b4:99:95:1a:20:57:5f:5f:ac:84:46:78:87:f0:12:
ed:d3:c6:21:9b:ba:5d:a8:19:ee:c4:fd:86:64:8e:
06:95:fe:14:66:e6:22:aa:f2:c0:92:d3:48:7b:de:
14:3b:66:b4:41:1c:9e:7d:60:c1:29:dd:cf:b4:a2:
fd:1e:d8:a1:7e:0f:48:4d:dc:85:66:88:34:ba:fc:
73:0e:ab:eb:85:59:4d:01:43:7c:ae:c7:a1:0b:77:
d7:80:03:32:7d:41:83:31:8d:3e:ce:76:91:52:8f:
89:a0:74:76:e8:a0:cc:70:a5:f8:51:a6:64:41:bb:
5f:c4:77:72:01:99:b8:81:02:2f:ce:fb:9f:77:84:
0a:83:c0:f6:b8:49:4e:e4:a2:b3:01:27:86:b5:77:
db:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:56:8F:52:79:3C:C3:48:57:85:0C:4F:2E:D3:8A:E0:B1:89:70:F8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/qFaPUnk8w0hXhQxPLtOK4LGJcPg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.116.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:20:e7:c6:77:9a:5a:3c:93:37:91:d9:7d:ba:14:43:34:a5:
c7:83:3a:f7:a8:dd:45:5f:6f:40:2a:f9:17:cb:f7:e9:34:09:
23:e7:71:87:95:52:8f:1b:02:27:12:f7:59:f8:06:a6:d3:e9:
59:34:23:6b:77:5f:c7:25:4a:10:98:82:fc:c9:30:85:3c:3c:
56:9e:06:b6:df:3f:4c:f5:c1:da:d8:37:47:60:23:f8:8c:be:
2e:a3:81:1e:c9:57:b5:7b:57:6c:83:b8:98:63:f8:d0:48:2b:
d8:16:73:c6:8a:5c:da:13:df:ab:7b:ce:59:6e:c8:6b:d4:de:
3f:53:1b:49:ff:a8:f6:ee:60:59:f6:eb:0d:62:c4:f3:c4:e6:
01:f8:9c:d4:e7:99:91:b2:60:a2:7a:4e:64:c8:e1:34:db:9e:
4f:87:cd:9f:19:0b:54:4e:5e:e0:32:78:24:36:a6:a4:69:17:
c6:93:3a:83:85:47:73:7c:e3:ff:e3:b5:10:65:58:83:35:34:
6c:39:cc:e0:23:9b:43:60:97:75:ca:1f:63:9d:c6:37:d9:5e:
e5:26:b1:33:5c:a3:d5:01:e9:1b:89:d1:fa:f0:15:25:36:de:
03:7d:3b:ca:ee:64:38:6d:3e:14:61:19:f2:17:ca:6f:9c:09:
4a:bb:2a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:41 2024 by rpki-client on console-ams.rpki-client.org