Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v0XUfn-P0XfUWSxDS8-WK8Coxmk.cer
File: v0XUfn-P0XfUWSxDS8-WK8Coxmk.cer (raw, json)
Hash identifier: YxI4L8Uf6u3vnefcuQ/nyoKecyu0IEwNuyRpLAiLPZg=
Subject key identifier: BF:45:D4:7E:7F:8F:D1:77:D4:59:2C:43:4B:CF:96:2B:C0:A8:C6:69
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B09
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91168B5/2B0BFD98F6E011E692A20B87C4F9AE02/v0XUfn-P0XfUWSxDS8-WK8Coxmk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91168B5/2B0BFD98F6E011E692A20B87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Sep 2024 12:42:34 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 132.181.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23305 (0x5b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 18 12:42:34 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91168B5/serialNumber=BF45D47E7F8FD177D4592C434BCF962BC0A8C669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:db:6a:4e:18:48:19:95:f1:b0:b2:0e:2b:7a:
d4:75:90:1a:81:de:ac:20:07:7a:c1:5d:15:40:38:
82:05:4d:18:ba:94:d6:17:44:08:1b:90:bc:52:53:
c6:2e:a5:76:1d:2b:5e:ef:c1:c4:1c:79:9d:b5:a9:
44:3d:40:dd:8f:44:fe:e5:24:82:df:d9:36:9e:61:
87:98:52:ac:16:59:9b:f8:da:e8:b7:c0:bc:bf:51:
50:cc:af:fd:76:c3:a2:8b:ad:0f:c1:3c:df:03:b9:
8f:83:e2:9f:86:f6:0f:36:2b:4d:07:6a:ff:82:eb:
2b:f6:fb:d5:82:4c:af:1f:fc:09:60:31:72:f0:69:
95:60:5c:ac:2e:42:1b:cc:af:20:da:14:f8:53:a1:
99:60:04:ea:5c:cf:4d:5f:f4:b8:b7:2d:c3:08:fa:
e5:a1:7f:4e:d0:31:a3:7b:93:69:86:d7:90:ac:fa:
21:b9:c1:2e:9a:a3:15:30:5a:fb:cf:47:74:b2:0a:
36:a7:5d:6a:e4:14:fa:04:a5:5e:6e:41:5e:4a:61:
86:88:b1:e2:43:ca:5b:d5:09:ba:02:7e:d5:a5:28:
3a:71:e0:e3:03:c9:70:48:ce:f7:ee:09:53:a3:fc:
17:3e:dc:c8:bf:59:83:06:85:02:9e:58:53:31:5d:
67:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:45:D4:7E:7F:8F:D1:77:D4:59:2C:43:4B:CF:96:2B:C0:A8:C6:69
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91168B5/2B0BFD98F6E011E692A20B87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91168B5/2B0BFD98F6E011E692A20B87C4F9AE02/v0XUfn-P0XfUWSxDS8-WK8Coxmk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
132.181.0.0/16
Signature Algorithm: sha256WithRSAEncryption
95:b3:e1:ad:16:25:42:57:1c:81:1c:53:c3:ac:b3:6f:40:dc:
98:c8:e1:2f:17:e2:72:ea:a3:67:bc:73:be:df:2b:fb:bc:b2:
73:e5:f4:88:44:3b:6c:25:70:ab:c3:87:c5:e4:ec:9b:0f:aa:
df:94:2b:3e:6f:c6:8e:90:b0:bc:0d:80:66:1d:7a:98:57:46:
b6:e6:fe:03:72:e1:47:49:f4:26:43:54:23:0e:6d:07:37:c9:
a2:12:b6:40:bd:14:e9:27:b6:30:63:01:56:86:a9:4c:5c:1e:
7f:d5:65:85:3f:66:06:93:42:e9:d9:7d:8f:d0:22:8f:08:ef:
bd:db:84:85:54:4c:30:e2:10:fb:fc:e4:f6:58:42:22:d3:81:
9f:32:a9:6d:8b:cf:00:06:be:5a:48:0d:9f:9f:8d:68:f0:36:
e1:ee:89:c1:44:2e:93:d9:57:bf:11:b2:9a:58:84:0e:34:f5:
f5:b3:45:aa:fa:39:9f:85:58:19:53:1f:63:f2:1d:4c:2f:f4:
e2:1b:3b:8b:b0:18:de:e8:e5:38:d3:5c:0d:6d:cb:93:65:df:
08:35:82:f9:43:00:f1:e0:64:13:29:99:f0:19:21:b7:0d:79:
d1:40:dc:7e:3e:fc:c4:93:01:cc:f1:a2:8c:fc:9a:83:7c:ed:
a6:2e:49:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org