Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer
File: vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer (raw, json)
Hash identifier: jELg29XWYYuHarRDPebkPxL5icX8oUGpus5iWAc0LRg=
Subject key identifier: BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4E09
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Oct 2023 00:59:16 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 160.32.240.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 17:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19977 (0x4e09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 11 00:59:16 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9186B80/serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:5e:b3:81:0d:71:c5:c5:83:38:2d:6c:53:
4d:df:e5:94:d9:2f:54:c5:07:1c:08:ac:42:d7:7b:
4d:62:5e:2f:43:64:ac:d2:21:59:d1:25:19:14:23:
56:04:0a:22:63:18:cf:83:4e:06:0c:a7:28:e9:7c:
d4:00:1c:44:94:a6:ff:c8:d4:66:09:37:35:49:61:
a4:ac:1a:14:3c:89:98:f5:a4:66:50:9a:f8:58:c5:
0c:5a:3d:46:06:22:7b:87:3f:b9:4e:a7:c5:51:b4:
4d:b5:21:d6:5a:71:78:3c:5f:df:e3:43:7c:dd:27:
1b:07:7a:c7:74:d6:18:61:ea:11:1a:eb:c1:53:97:
c8:52:c9:4a:9e:76:25:8d:30:f1:21:23:90:5f:66:
07:55:d7:f0:d4:8e:2c:d7:d1:ff:76:89:51:6b:85:
7c:b6:7d:0f:b7:b5:83:98:c0:d8:04:4c:00:69:bb:
3a:81:27:78:6e:e8:4d:9d:42:e8:57:de:bb:28:8b:
f4:87:00:19:6f:a8:8d:96:fb:93:cc:24:c9:5b:2e:
69:44:ba:73:77:c0:71:35:75:cd:01:0b:19:1e:4f:
2f:10:4b:7d:85:60:cb:cb:7d:ec:35:b1:3b:9c:11:
ae:b1:ee:83:67:c9:01:4c:ba:54:5c:65:02:50:fc:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.32.240.0/21
Signature Algorithm: sha256WithRSAEncryption
16:bc:8a:28:cd:27:d2:e3:8e:f8:4c:08:57:68:70:7f:58:a4:
dd:18:15:0f:d0:6d:85:7c:ae:1b:93:db:72:f9:0f:ce:e3:71:
e7:2e:0b:02:6e:b5:5f:9a:b6:57:dc:94:8a:5a:22:3e:08:54:
af:30:92:f9:83:80:d6:16:61:16:0f:f6:77:f8:e2:4d:76:19:
12:a1:f0:d1:d4:be:3b:dc:e5:e0:ea:04:bf:fd:35:8e:4e:5d:
9b:e3:e3:25:cb:6a:5c:86:93:bb:31:9b:83:b2:82:17:48:c2:
86:f3:73:0c:9b:e2:59:df:ed:45:32:bc:e9:da:ec:eb:86:f8:
d2:41:91:b5:8b:e3:61:ef:d8:15:90:af:21:85:9e:07:77:8d:
fd:e6:ef:03:2d:e9:1a:15:a0:c4:da:d9:49:f2:42:f1:e1:ad:
e3:e8:fb:f3:e3:c2:85:74:2e:d7:10:21:44:ef:00:f6:cc:0b:
b3:fe:fb:93:56:59:cd:ab:9c:3f:9a:e7:29:b5:fe:3f:68:77:
84:59:da:d9:b5:16:97:e6:db:38:ff:7d:75:a5:57:3f:5f:49:
13:e2:c6:51:42:c7:ac:88:f2:d9:37:62:60:5d:17:67:01:03:
fb:09:11:ab:56:09:8e:98:26:09:95:03:5c:02:e2:2d:ce:9f:
0e:00:a7:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:08 2024 by rpki-client on console-fra.rpki-client.org