Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vBeIK_xKhjChu_avBlGLkLpNFoo.cer
File: vBeIK_xKhjChu_avBlGLkLpNFoo.cer (raw, json)
Hash identifier: Qh4D/IrC19qMM6WLfrvrOYph2FW3Max82ZGlks0/TuU=
Subject key identifier: BC:17:88:2B:FC:4A:86:30:A1:BB:F6:AF:06:51:8B:90:BA:4D:16:8A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 50B5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/vBeIK_xKhjChu_avBlGLkLpNFoo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jan 2024 03:52:03 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 192.156.225.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20661 (0x50b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 18 03:52:03 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A912FDDD/serialNumber=BC17882BFC4A8630A1BBF6AF06518B90BA4D168A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:eb:0e:10:1c:d3:93:ed:29:4f:3f:c8:a5:95:
c0:80:87:e8:3a:71:bd:b4:ca:ad:76:9d:07:2d:48:
ba:70:d8:d4:80:b1:9e:98:90:32:e4:b2:c4:35:b5:
0e:9e:4f:50:23:f0:4c:ff:7e:38:ae:7e:a5:01:1d:
c4:5d:86:c3:88:cf:ed:67:48:e6:68:6f:b2:7c:60:
63:8c:a7:81:61:4b:38:36:c2:82:f8:0a:6f:3b:dc:
da:d5:20:af:91:5c:47:79:2e:12:b8:72:ac:11:e9:
0f:5d:34:a2:97:36:7b:0c:d7:f9:27:05:d3:e2:95:
92:ad:38:e8:75:c0:b9:53:d2:b0:82:fc:21:27:10:
4e:a5:81:61:2d:d3:f7:f6:2d:42:82:e3:3e:bb:cd:
be:46:08:22:e0:68:ee:6e:da:c7:dc:f2:06:73:01:
54:2d:df:bd:76:b9:64:b7:18:88:b4:10:31:d6:60:
73:c7:da:18:3a:b6:8e:8c:a4:52:bc:3f:ec:1b:f4:
f9:b0:92:64:6b:38:cc:f8:79:20:68:c6:32:f4:31:
96:48:dc:d5:04:6a:37:57:bd:9d:be:2f:b7:6f:df:
c2:0d:4d:51:8e:e8:ca:07:0a:4e:dc:ef:5b:28:c0:
a8:80:9f:67:70:9f:0c:30:f6:0d:36:dd:25:33:2b:
ec:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:17:88:2B:FC:4A:86:30:A1:BB:F6:AF:06:51:8B:90:BA:4D:16:8A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912FDDD/ECDEA1F6B5B411EEB7E70C4CC4F9AE02/vBeIK_xKhjChu_avBlGLkLpNFoo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.156.225.0/24
Signature Algorithm: sha256WithRSAEncryption
92:91:eb:86:be:89:f7:37:7e:d1:80:e9:a6:37:55:42:8e:dd:
a0:81:90:6b:a5:f6:66:5a:52:9f:f7:17:f8:4b:2e:9e:ae:a5:
71:9b:a6:0a:de:43:4a:91:64:f5:b3:98:f9:4b:21:39:2f:5f:
91:8b:7e:63:23:35:8a:4e:b7:24:df:8a:09:80:8b:a5:54:8a:
a3:8b:3c:e3:ca:91:84:13:ba:ef:88:d6:8d:b1:f3:d4:2e:2d:
f0:70:6a:1e:ab:00:71:37:18:78:08:44:bc:ff:11:79:4f:b4:
c2:cb:b6:51:4c:d5:0b:77:48:16:b5:be:36:f5:f6:09:01:3b:
e7:74:2f:a9:79:72:21:2a:38:33:46:a4:49:e1:35:97:aa:ba:
3a:8b:df:1f:bb:ba:b5:30:0c:2a:ff:0c:c8:e6:7f:8c:b9:22:
72:16:b0:7c:17:54:30:37:96:07:b0:6a:12:d9:c3:97:ac:2c:
df:36:17:71:c4:24:32:26:29:b8:62:9b:ef:79:b7:7e:09:b6:
ce:b4:8d:ff:ad:5f:f6:c5:59:cd:7a:25:de:7b:15:3b:06:65:
e5:c9:c0:c5:1d:0d:5c:94:7a:28:55:51:c3:4e:e2:6f:da:74:
b1:fe:27:39:97:1f:3d:cf:e5:ef:4a:f9:5c:cb:4e:70:cd:40:
45:59:8f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:32:45 2024 by rpki-client on console-ams.rpki-client.org