Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer
File: y4244fF7x3I0bdn_uyByz6j9plI.cer (raw, json)
Hash identifier: K/8Js5IIB3ep+vhRRMv8K5qtE+GdpGi7XHEJ3nlDJDw=
Subject key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 537D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Mar 2024 21:29:11 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 138.211.0.0/16
IP: 165.84.32.0/20
IP: 165.84.64.0/18
IP: 192.203.99.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21373 (0x537d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 18 21:29:11 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:10:36:e0:7b:48:d5:b9:81:27:4c:be:69:6d:
dd:a5:bd:99:cb:d5:cc:27:d7:28:a1:37:9f:30:68:
d3:52:b5:62:17:e2:8e:a5:14:49:1d:86:ef:68:ab:
f4:12:f6:95:6d:c1:02:c3:ab:a5:2a:18:d1:73:31:
56:17:38:40:40:ea:d0:e9:ad:71:15:f1:87:cb:ca:
0c:34:6a:e8:ad:65:4d:5b:9c:e3:a3:f6:87:6c:09:
d5:e1:a2:7f:4c:28:db:c4:01:61:89:33:ca:4d:5b:
fd:36:d1:52:6e:f9:4e:b4:8e:82:c0:73:a7:55:4f:
d1:be:e6:40:fb:a5:a9:33:e8:71:fa:2f:18:5b:0d:
ad:a3:24:66:3d:97:2d:e5:b4:0d:7d:73:5d:0b:32:
d8:d1:46:59:8d:49:e1:14:d0:5f:69:60:71:ed:aa:
7b:95:b3:d0:0f:4f:54:40:1d:7f:3e:b0:95:25:b5:
c8:9b:d3:38:bc:02:dd:71:5c:e1:8c:28:23:3c:9f:
2b:9e:3e:58:8e:a5:b9:6b:00:dd:43:23:77:4d:3e:
21:0c:7a:cb:ea:29:d5:53:94:76:54:d0:80:20:cd:
de:d3:75:4e:ac:c3:67:5b:3a:27:30:6f:ff:9c:b0:
83:b0:42:ca:22:b8:fb:0e:14:ec:00:a7:0e:eb:ba:
52:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
138.211.0.0/16
165.84.32.0/20
165.84.64.0/18
192.203.99.0/24
Signature Algorithm: sha256WithRSAEncryption
72:7b:2c:15:54:78:be:0c:23:af:04:51:15:62:03:c1:76:06:
3c:48:aa:2f:ae:54:ca:08:81:e6:9e:e3:54:c1:2e:09:10:1e:
34:20:49:59:c9:a2:2c:35:b6:87:08:48:92:16:8e:17:71:39:
a6:77:42:58:1e:ba:a0:29:91:ad:b5:a8:8b:12:5a:53:b5:23:
57:d1:54:88:a5:81:58:53:d4:3f:ad:fe:e6:77:db:9e:93:69:
9e:fc:7e:b6:61:44:6a:59:c9:0b:02:83:8c:37:67:a2:d1:80:
f9:b9:b8:68:ba:ed:4c:c1:53:78:e1:34:0d:b4:c1:f4:de:8b:
f5:49:f4:c8:cb:6f:9a:d8:4e:9c:71:40:bf:78:17:3d:0d:2a:
82:4d:46:98:07:ac:92:de:82:b7:6b:ac:9f:5a:91:e9:fd:ab:
47:05:90:5c:81:b7:c9:da:26:d3:64:53:a6:2b:83:8f:a2:bd:
61:53:e8:76:62:88:7f:2e:ab:da:49:4a:1c:ef:7d:c6:fd:4d:
b6:19:01:21:c4:aa:d1:49:51:2c:21:4a:b5:7f:ed:86:fb:6c:
ef:21:54:1f:93:14:0b:f1:bc:ae:ec:24:b7:2f:fa:7c:50:1d:
c1:48:2e:60:e6:fa:20:15:93:2a:a3:52:e9:dd:4e:81:d9:5b:
f5:5c:ae:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:41 2024 by rpki-client on console-ams.rpki-client.org