Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer
File: w-IA1ABdmiPkv66uDtty6kPx0JY.cer (raw, json)
Hash identifier: UlAM8++SstglE9KcxNhEVt97fC9ryVnEN5F2AdK2QPQ=
Subject key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5BB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Oct 2024 05:04:30 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.225.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23479 (0x5bb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 3 05:04:30 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:43:cf:b9:a9:c7:7a:2e:29:d2:f4:50:0c:32:
9e:db:34:cd:f4:07:23:83:97:0a:6e:f8:0b:e4:71:
46:04:05:bb:ce:8c:9d:07:27:85:47:02:5c:14:f4:
6c:cc:e4:a6:36:b5:3c:70:04:a0:2f:61:ef:aa:5c:
70:a5:3c:0a:63:50:12:2a:24:61:0d:43:7e:c9:14:
89:44:7e:f4:06:8d:6d:0f:a5:86:80:87:37:9a:69:
77:09:f1:8f:06:6d:1f:58:a8:f0:32:a9:26:a5:52:
f6:ed:89:48:61:67:ae:aa:d6:c4:40:ab:cf:fb:85:
64:92:50:29:48:cd:de:15:27:01:59:78:ff:1d:dc:
62:ce:1f:d2:be:9c:a0:b0:0d:29:f4:79:13:ca:66:
63:ff:8b:13:63:76:44:a0:6a:6d:2f:88:c4:ff:23:
1d:02:81:8b:a2:c2:67:3a:c7:6e:40:49:80:6e:6b:
ab:0a:93:c7:21:ad:33:16:48:33:e8:7d:33:b2:c4:
f0:c8:94:39:c1:2e:7f:4b:c6:47:cb:5e:9c:13:77:
52:5c:09:2e:a0:50:0d:be:54:bb:8e:1a:d0:6e:d1:
ce:b2:be:b0:72:cb:0c:05:cf:47:84:7b:77:f7:93:
0f:90:41:0a:9c:7b:28:b5:37:68:ac:d7:5a:6b:d0:
34:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.225.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:c6:d2:6d:bd:ef:7c:11:88:14:e9:fc:76:35:58:f7:da:ae:
41:8d:7e:0d:87:5a:bc:12:b3:29:bc:d5:92:1c:44:79:7f:cb:
9f:65:04:33:8b:b5:de:a4:09:53:2f:19:ca:c7:98:1a:f1:92:
8e:91:4b:ad:ed:cf:75:53:b4:53:a8:d3:54:c2:13:8d:2a:7f:
f5:7a:f3:6c:42:94:71:dd:70:46:7e:46:bd:7d:e3:22:06:00:
8c:54:ff:97:02:dc:dc:23:e8:72:53:87:71:f6:42:87:ce:3e:
f3:16:aa:a0:da:c0:11:8c:ed:08:29:d9:79:12:77:67:cf:ff:
0c:1c:5b:33:17:c9:c6:65:7a:90:31:d4:41:d4:0f:46:2c:71:
39:71:ee:21:4d:d2:1f:c2:fa:46:68:5b:e1:74:b3:a6:97:8e:
b2:85:a0:f2:41:08:e0:7f:94:9d:ef:58:fb:c9:20:88:49:4a:
9c:2c:f1:a3:de:20:36:69:c4:5d:7e:c5:23:8d:cf:3b:70:f5:
09:d6:3b:e0:a4:a7:e2:83:10:60:ad:da:64:b9:c5:c2:6f:0b:
b9:62:fc:f6:d9:68:9e:e0:5b:ae:08:a8:93:32:17:d8:bf:ea:
45:21:39:22:4d:3f:e1:45:ce:6f:6e:fb:51:14:95:cb:81:1d:
7a:3f:a8:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:41 2024 by rpki-client on console-ams.rpki-client.org