Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer
File: xVZN7BAWY79D0_LjQDlMAHZqY-M.cer (raw, json)
Hash identifier: CY/QLSFMPBFhOzXDiXsXKCqiVV0qD6MlUa28/gVAiEM=
Subject key identifier: C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D99
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 10 Nov 2024 13:07:59 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 160.191.212.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23961 (0x5d99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 10 13:07:59 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9122B85/serialNumber=C5564DEC101663BF43D3F2E340394C00766A63E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:06:d5:1f:2d:08:d5:9f:fa:5a:97:89:04:0d:
f8:cf:78:c4:ab:33:22:62:f6:3f:67:5d:97:5c:c5:
21:cd:c4:1d:55:b3:93:44:1c:27:0a:b4:b7:f6:ce:
ef:62:2f:66:ca:33:7b:77:10:60:fc:1e:84:20:8a:
6d:36:12:e1:69:2b:b7:1f:26:b1:2b:7c:39:39:77:
9d:d1:09:db:7b:78:ad:09:a2:09:f6:bb:55:ce:80:
31:5b:57:25:16:2c:71:5d:9a:f7:38:6a:15:ee:31:
d5:3a:0c:19:91:8d:c4:8b:9e:9a:8c:45:7c:9c:d4:
5f:7b:2c:15:81:1a:9c:a6:a3:df:b9:ef:71:2f:ea:
f7:d3:c5:b5:f6:2b:be:61:21:4a:b0:44:ef:7f:57:
78:81:08:63:5c:c7:25:d9:23:73:6b:34:0b:71:92:
52:43:18:30:95:25:36:ea:d6:7f:13:27:18:6a:40:
2b:11:df:be:09:21:e7:16:18:8f:ed:9f:60:f5:9c:
09:1e:49:6d:6f:31:c8:7f:0c:41:95:bb:f4:90:ba:
ea:6c:8f:56:f1:9b:e3:c8:49:4c:90:c4:0b:da:dd:
16:8f:73:cd:8a:de:5d:91:dc:8f:e9:ad:1e:c0:dd:
5d:63:a2:40:0c:ba:83:8e:2e:59:44:1c:e8:ae:c2:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.212.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e1:d8:aa:e1:a6:62:3d:a0:7d:74:05:e7:d5:a0:50:fe:df:
d9:e0:52:d5:86:0f:8f:6f:8d:48:bb:e7:ad:78:95:ba:49:b6:
0f:a1:4b:e4:ba:b1:2c:a9:c7:e5:ec:55:91:ea:65:6e:91:e9:
70:e0:f6:a5:cf:cb:77:5d:36:7f:98:6c:97:14:31:09:31:0c:
ed:2a:a9:07:ff:c9:fd:ec:1f:25:98:f0:4e:03:5e:38:d9:a6:
96:24:14:f4:74:51:4d:8c:e7:50:09:5f:69:dc:14:44:b5:c2:
28:8b:5e:fd:49:b6:ac:8a:06:9f:b2:ef:8c:cf:32:ba:69:ee:
ad:31:b8:19:ec:d0:3a:c5:ae:e1:f8:de:27:33:0f:df:06:d1:
22:b5:2a:47:97:55:ba:40:47:11:3e:55:26:78:f4:c3:d8:33:
c4:c2:be:da:80:81:6d:51:ba:2a:1e:d5:41:d5:e7:a5:b4:bb:
b4:22:9c:ea:95:87:6e:5c:c3:7e:52:9e:c5:3b:38:d8:b7:0d:
f3:c2:94:af:d2:11:e9:40:5d:dd:8f:99:f1:18:9c:79:bf:ef:
47:63:65:92:53:64:8b:6b:50:6e:ed:a7:45:3d:e0:15:63:34:
33:d4:42:14:42:d8:a6:de:17:64:c2:5a:36:fe:88:28:71:1e:
f5:fb:2c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:41 2024 by rpki-client on console-ams.rpki-client.org