Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer
File: vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer (raw, json)
Hash identifier: PtJIN5fYWin1fFCM0QOBbkfZdkFvD6jUBCLLOUPxISE=
Subject key identifier: BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5BD0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 04 Oct 2024 16:30:18 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.32.240.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23504 (0x5bd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 4 16:30:18 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9186B80/serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:5e:b3:81:0d:71:c5:c5:83:38:2d:6c:53:
4d:df:e5:94:d9:2f:54:c5:07:1c:08:ac:42:d7:7b:
4d:62:5e:2f:43:64:ac:d2:21:59:d1:25:19:14:23:
56:04:0a:22:63:18:cf:83:4e:06:0c:a7:28:e9:7c:
d4:00:1c:44:94:a6:ff:c8:d4:66:09:37:35:49:61:
a4:ac:1a:14:3c:89:98:f5:a4:66:50:9a:f8:58:c5:
0c:5a:3d:46:06:22:7b:87:3f:b9:4e:a7:c5:51:b4:
4d:b5:21:d6:5a:71:78:3c:5f:df:e3:43:7c:dd:27:
1b:07:7a:c7:74:d6:18:61:ea:11:1a:eb:c1:53:97:
c8:52:c9:4a:9e:76:25:8d:30:f1:21:23:90:5f:66:
07:55:d7:f0:d4:8e:2c:d7:d1:ff:76:89:51:6b:85:
7c:b6:7d:0f:b7:b5:83:98:c0:d8:04:4c:00:69:bb:
3a:81:27:78:6e:e8:4d:9d:42:e8:57:de:bb:28:8b:
f4:87:00:19:6f:a8:8d:96:fb:93:cc:24:c9:5b:2e:
69:44:ba:73:77:c0:71:35:75:cd:01:0b:19:1e:4f:
2f:10:4b:7d:85:60:cb:cb:7d:ec:35:b1:3b:9c:11:
ae:b1:ee:83:67:c9:01:4c:ba:54:5c:65:02:50:fc:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.32.240.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:a9:93:99:eb:d1:ba:4c:6b:38:b8:e4:d5:b2:f6:03:fc:ae:
f9:29:d1:98:ab:f0:ba:57:4b:9a:a9:11:ce:25:fd:c1:23:b5:
02:ad:9b:9a:45:d8:a9:7f:0a:64:63:92:e5:33:19:0a:79:1d:
79:5a:cc:b9:f9:85:b3:cb:40:34:e0:ee:dd:f0:50:c3:5c:28:
ed:77:40:33:b9:f6:43:31:a6:f5:12:3d:26:39:aa:c0:26:69:
62:0f:31:bd:35:56:98:2d:80:a6:5f:0b:ea:68:f8:a4:34:16:
60:cb:c2:3b:fc:ad:b5:dc:d3:4a:63:12:22:10:cd:4e:e2:52:
f8:86:af:1b:1a:45:f5:22:c6:21:f6:ee:6f:5e:2f:9c:c5:7b:
ce:d4:4d:25:2a:4b:b3:a9:03:0d:d9:d6:73:f4:85:f5:07:f3:
d5:ad:d3:5a:f5:6c:b6:bf:bc:ce:e0:e4:ce:1e:45:90:01:1b:
40:83:28:46:72:81:e1:cd:1f:76:d3:b6:2a:50:9f:e2:77:ec:
33:65:de:70:20:1e:50:66:22:cf:f4:52:20:7c:41:f7:0f:57:
02:f2:67:1b:92:1d:3b:d4:6a:76:1e:2f:71:9f:b9:e2:9f:27:
4e:7b:0a:03:cb:82:47:8e:40:ea:62:35:5a:f7:55:c0:ff:5c:
38:9b:ce:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org