Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer
File: vsKCSG834xbxe1ILRVKHvDB_ieg.cer (raw, json)
Hash identifier: 9E9J/SY7LyjM2E3CSwFqB9QDZd4RDiof6gXc/z4Y3hk=
Subject key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A93
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Sep 2024 07:03:05 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 192.190.180.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23187 (0x5a93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 5 07:03:05 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:58:db:16:77:9e:51:b3:de:df:bf:5f:42:bf:
89:5e:d4:6a:7c:2d:f4:35:69:94:e0:e6:f9:f5:14:
c0:51:ac:c4:51:8d:9d:21:5e:2e:e0:f5:bf:6c:c0:
4c:2f:db:c1:29:a9:5b:98:6e:69:d6:65:19:d7:e5:
3e:17:7a:3d:4b:7d:21:78:4a:88:02:87:48:28:eb:
d9:56:f1:0c:aa:9d:2a:c5:2d:7b:70:01:90:f3:8b:
69:2a:87:3b:f7:11:08:4f:07:07:e1:3a:11:93:6d:
6c:bb:e1:4a:6b:9d:67:5e:05:25:5e:02:b1:e6:9e:
d4:d4:11:f5:7e:7d:74:45:f4:4f:17:a6:38:24:30:
e9:a0:f4:92:c6:b2:47:b3:11:ea:00:b9:ae:49:97:
6e:e2:6f:93:0d:f7:84:1f:c8:1a:42:54:c2:8f:c0:
e9:87:f4:ef:86:62:f2:fe:f8:4a:67:38:54:66:56:
65:29:40:45:a6:92:e5:3a:6c:12:87:01:85:40:c2:
2e:27:98:52:4f:82:2f:66:c8:0e:9e:3f:4a:01:2e:
9a:74:ce:f1:8a:86:09:02:0e:80:b8:f1:d4:f2:86:
eb:3e:6c:e7:44:2b:70:c2:ea:9c:7d:e2:5c:1e:0d:
d1:65:b9:4f:58:22:11:02:f2:2f:07:4a:ed:fd:27:
91:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.190.180.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:06:22:f5:a3:ff:bd:fc:f6:ac:af:5d:fe:58:28:98:e2:ff:
8c:09:cc:77:9a:8f:08:61:73:40:ff:1d:e8:0c:40:af:d4:c8:
1a:d9:45:7f:a3:60:2a:cd:c0:d0:0b:03:a7:1d:0c:54:d9:f6:
61:c7:7f:25:ae:f2:2b:2f:16:ce:01:50:9c:78:99:d2:99:38:
92:8c:74:02:55:2e:fc:e7:43:7f:8f:db:11:9e:37:7b:19:13:
a4:44:84:82:50:9a:f1:69:39:ae:30:bb:15:b8:71:2d:35:a6:
95:13:3c:26:05:57:86:86:c2:17:cd:0f:e5:ba:88:00:ad:06:
25:39:0d:0c:f9:f3:39:13:63:c9:c9:7c:bc:e5:51:97:e2:6d:
9b:1b:ad:53:3f:1e:19:e8:ad:33:3a:50:b6:86:08:33:c7:46:
07:66:74:5a:38:b8:ef:65:2f:93:d5:6c:1b:d1:dd:a7:ec:27:
8b:90:24:37:34:c7:63:25:b7:3f:fb:65:82:ce:0c:57:5e:c3:
0c:4d:ab:9a:6a:db:1e:03:2b:f6:ee:3a:31:b8:62:07:d9:e4:
aa:0e:20:a4:5e:99:12:44:56:8b:c8:c0:5b:2a:b0:68:35:e8:
5f:29:d4:77:9c:64:05:5c:22:27:6f:e1:81:18:65:e0:e4:7d:
8c:69:68:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org