Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer
File: w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer (raw, json)
Hash identifier: tRGLM2z1131uiyQg6fsrSlUfMPdGeGVXvU2nJdXKrXg=
Subject key identifier: C3:C3:B6:A2:AB:CD:71:5D:E5:9A:30:B3:5D:FC:61:49:05:BF:E6:43
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5426
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 02:44:04 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 165.173.184.0/23
IP: 199.67.71.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21542 (0x5426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 3 02:44:04 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9150080/serialNumber=C3C3B6A2ABCD715DE59A30B35DFC614905BFE643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8b:c9:7d:05:ba:12:d6:3e:1a:26:fc:c6:c8:
63:e6:63:9c:ed:2e:55:1d:6e:18:b1:02:38:21:1a:
42:43:5b:a4:05:c0:80:30:e4:1f:34:03:fc:ec:84:
d1:d3:52:30:e7:88:76:f7:a8:9e:cb:b5:87:9a:34:
3e:7d:c7:ae:9c:2f:0d:50:ed:92:0f:a0:da:01:f3:
8e:2b:9d:25:c7:d2:ef:82:b0:83:1c:3f:59:e8:3e:
de:30:a8:9a:7c:cb:74:4c:a7:1b:dc:ab:11:e3:18:
29:03:53:37:a2:ef:7d:c9:4a:d6:f5:95:e1:26:c3:
4d:c1:58:0a:e2:03:6e:d2:0a:e6:17:ff:73:dc:d4:
01:17:3b:3e:22:ef:57:2c:d2:3e:0f:09:d8:2a:c6:
93:14:8c:dc:b2:e7:74:b2:e6:d5:5a:b4:16:f0:32:
73:39:41:75:b3:23:4b:42:96:96:a9:bc:dc:5c:be:
20:ce:3d:4c:8d:3a:a2:e1:35:f4:c2:aa:78:fe:f4:
ea:f2:41:cb:77:c6:ef:3d:ab:d7:68:2f:3c:31:78:
99:3a:f7:ee:75:c5:24:aa:c5:ec:e0:55:28:7a:e6:
87:96:c1:61:dc:cc:51:e4:29:ab:bb:96:23:9e:f8:
47:19:32:94:8a:60:17:0d:ab:eb:56:d5:b0:17:73:
b9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C3:B6:A2:AB:CD:71:5D:E5:9A:30:B3:5D:FC:61:49:05:BF:E6:43
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.173.184.0/23
199.67.71.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:cd:b7:c4:2e:e8:94:66:a9:32:31:bb:72:1f:3e:fe:ab:e1:
08:22:22:7e:af:da:cd:48:a2:da:38:df:97:30:f4:29:1d:53:
94:06:d5:b9:c8:67:5a:c1:a7:f8:5a:6f:4f:ad:9e:bf:0f:3d:
83:d1:ed:1a:83:71:07:b6:64:cf:a3:d6:1b:1f:4c:6b:fa:32:
8f:b2:27:d8:5a:60:ad:b4:0d:5d:e2:97:28:a4:27:2d:ff:59:
ed:66:91:5d:8f:25:2c:f3:f5:56:2f:25:b1:39:2d:e9:66:00:
31:57:3b:af:63:e2:47:c8:db:3d:22:7f:67:f5:b6:f0:54:e0:
0e:9d:33:d7:1b:33:b2:15:ad:5f:6f:88:a9:12:be:39:22:bb:
4d:72:c8:41:c8:0f:59:3b:28:8c:39:ee:06:0a:c4:f1:f9:9d:
39:92:fe:02:dc:fb:08:f4:cf:27:89:e3:64:b0:3f:e4:47:15:
0c:89:33:5c:e1:70:16:e6:8e:35:d1:1e:44:63:8e:0d:84:a1:
3f:6c:50:7b:4a:f1:80:a7:ab:d4:ae:7b:0c:29:d2:60:2b:7e:
cf:e4:1f:95:b7:22:15:fa:ba:23:2c:70:5a:53:92:9e:4d:2a:
b2:82:d2:2d:fa:3e:23:28:a6:24:90:dc:24:d6:1d:ee:2c:88:
46:8b:49:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:41 2024 by rpki-client on console-ams.rpki-client.org