Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer
File: u5rRr2kxSy7y9klB8Db94PfMTwI.cer (raw, json)
Hash identifier: 9EmquENKU7FVfDhJIpoj01i6IBEt4swyvRWqj8/Ld+U=
Subject key identifier: BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4D40
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Sep 2023 03:07:28 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 167.179.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 13:10:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19776 (0x4d40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 5 03:07:28 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A911DA8C/serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:60:60:bf:6e:e6:93:27:f5:fd:d8:28:c4:f6:
70:9a:7c:5b:b9:8c:6a:90:42:9a:90:93:3f:89:df:
7a:79:61:42:3c:7c:03:d7:66:e5:23:15:28:28:c9:
20:9c:49:da:21:47:77:a7:d4:63:9f:56:26:11:3d:
15:f6:25:30:be:0c:f6:3f:90:f4:d1:f4:68:a8:ca:
59:5b:10:3e:38:ec:50:cf:f2:61:f8:ef:74:c2:28:
c5:69:ec:af:85:f9:c1:85:47:eb:dd:68:5c:de:54:
64:19:0a:62:8c:d4:7c:67:c5:12:d5:7c:48:45:e4:
d5:89:c2:54:ed:9d:63:a0:e3:e5:fe:a8:71:98:14:
21:4b:8d:2e:3b:83:31:5b:a2:bb:a6:34:06:d7:6b:
28:1a:f7:be:b7:34:a8:45:bd:aa:ad:0e:17:de:e8:
f8:30:70:1e:2d:d0:78:07:fd:f2:ea:22:9f:dc:7d:
a5:3e:c6:0e:8d:9f:ce:2a:76:1d:68:9d:4f:7d:a2:
74:f2:f5:7f:85:ab:2e:63:12:02:92:b2:67:27:3a:
77:ad:8a:0a:a8:7f:8c:30:23:91:1a:da:44:4d:54:
1c:58:e4:5e:9a:3c:bb:a8:ca:bf:01:7c:64:08:b7:
18:30:bb:a1:25:62:05:3f:bc:40:ed:f1:c9:b1:f6:
31:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.179.192.0/22
Signature Algorithm: sha256WithRSAEncryption
09:5e:2d:31:0f:1b:80:26:a7:17:db:7d:30:e4:d0:cc:fd:74:
b2:f9:bf:9d:06:79:57:da:99:48:8c:b8:ac:20:ba:08:56:3b:
3f:49:44:6d:b8:5d:ae:cf:d7:ce:27:bf:ee:93:14:f2:1a:91:
d8:b9:c1:86:59:3c:cb:04:7a:c3:7a:fc:35:05:5f:9f:a1:39:
06:dc:20:fe:6a:dc:84:84:6f:be:af:c3:ae:02:eb:7f:2a:2e:
10:1a:bb:e9:26:0d:bd:45:20:1b:e8:1a:be:3d:55:aa:8a:99:
60:23:a5:6a:fd:92:3a:db:01:52:45:24:3b:30:dc:44:b7:2f:
a9:7b:a9:ad:e7:4b:c2:3c:1b:2b:c5:c4:d3:0d:df:ac:56:de:
b5:36:cd:bf:a6:92:a9:0c:bd:7d:c7:bc:4d:52:d6:37:c8:0a:
a7:12:8f:80:51:45:66:f3:05:4c:5c:5b:98:fc:44:7a:4a:f6:
ff:a1:4c:96:cd:af:f0:7d:a8:94:b2:7e:7b:c6:8f:9a:8b:87:
f3:46:c3:e9:dc:34:98:a6:06:c7:d6:7c:11:47:b3:67:d9:d6:
25:75:eb:97:8c:26:50:b3:7f:7b:5d:02:7c:bb:e9:0e:a1:8c:
2e:91:e9:8d:85:49:16:fd:e7:d4:a3:7d:0c:f4:e5:0d:5d:a6:
88:b5:29:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:52:47 2024 by rpki-client on console-fra.rpki-client.org