Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yEnB9uuNGws3lLBgxJxam9U61Mk.cer
File: yEnB9uuNGws3lLBgxJxam9U61Mk.cer (raw, json)
Hash identifier: e4u6iDx8vQ3YVo8pqvsvGf0VudI+cdoPruLSMSjCfO4=
Subject key identifier: C8:49:C1:F6:EB:8D:1B:0B:37:94:B0:60:C4:9C:5A:9B:D5:3A:D4:C9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5AF3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9180DA5/A7337C6A73ED11EFB0BA025AC4F9AE02/yEnB9uuNGws3lLBgxJxam9U61Mk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9180DA5/A7337C6A73ED11EFB0BA025AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Sep 2024 05:36:47 +0000
Certificate not after: Tue 31 Oct 2028 00:00:00 +0000
Subordinate resources: IP: 160.30.24.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23283 (0x5af3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 16 05:36:47 2024 GMT
Not After : Oct 31 00:00:00 2028 GMT
Subject: CN=A9180DA5/serialNumber=C849C1F6EB8D1B0B3794B060C49C5A9BD53AD4C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:6c:59:93:c1:7a:ab:8d:d8:ab:97:2e:c1:
21:06:ef:f0:02:39:29:75:7b:9a:3a:18:27:0f:b5:
a7:8a:41:1d:4c:13:e5:be:b6:2e:d5:e3:15:6f:28:
15:dc:ef:87:1a:ad:14:88:a9:e5:4b:6c:f4:5c:c9:
55:fc:e6:bb:b6:f3:bf:89:a0:5e:83:2d:1f:ca:37:
45:8a:fa:ee:8f:b2:5d:37:47:8d:e2:70:2a:64:f5:
0b:ad:6e:88:e6:4d:66:69:01:3d:66:19:c5:b0:07:
b2:18:96:5a:eb:3e:60:f3:14:65:f4:72:02:29:ac:
76:ea:21:1c:98:c2:71:e7:06:00:9b:c9:d9:16:9c:
6a:da:6f:74:3b:f9:62:f3:1d:bb:c9:24:86:38:73:
e3:10:a1:8b:74:34:00:53:db:9e:63:43:7c:1b:08:
5e:ec:01:b1:bf:4e:86:59:54:23:af:68:10:aa:98:
06:11:66:52:97:cb:c3:a4:b1:52:a3:95:10:9d:74:
55:fc:09:50:fd:c9:f1:ca:79:f3:5d:21:f7:e5:8f:
03:7f:46:6b:29:21:b4:32:5d:fc:28:4c:8a:66:f3:
13:e4:d5:bb:d9:2a:40:1a:fa:a5:37:c0:82:88:e9:
fe:f3:1d:0b:a4:32:1c:58:06:26:76:b1:a1:d6:64:
2c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:49:C1:F6:EB:8D:1B:0B:37:94:B0:60:C4:9C:5A:9B:D5:3A:D4:C9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9180DA5/A7337C6A73ED11EFB0BA025AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9180DA5/A7337C6A73ED11EFB0BA025AC4F9AE02/yEnB9uuNGws3lLBgxJxam9U61Mk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.24.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:48:6b:9d:a4:d8:58:7b:83:89:6a:a3:c2:6a:36:e5:c9:c9:
e7:7e:ea:a8:e1:3b:9e:ae:23:7d:d5:e6:9c:ab:27:4d:80:18:
a2:db:13:6c:3b:4c:29:00:f4:3c:6a:7a:da:ce:43:2d:6d:d1:
97:0e:23:24:33:2a:13:cc:0a:a6:65:3f:8e:cf:48:1b:b8:3e:
ae:0a:6d:e4:40:5b:07:25:72:9a:f7:c8:00:b4:be:7c:7e:bf:
61:f4:23:05:3d:2e:f1:24:c8:00:5b:7b:b1:3a:6c:fd:9d:24:
93:da:9d:6e:5e:6a:bd:dc:20:dc:d3:4e:80:d2:6d:cf:ce:29:
bb:48:28:94:37:a8:36:af:d4:cb:c5:a6:dd:28:37:68:32:6d:
d4:39:fe:eb:1d:8a:c4:0b:36:ef:45:f6:39:b3:cb:d7:0d:5f:
2f:65:0c:56:95:8c:23:bf:71:67:9a:06:07:d3:68:72:c3:d7:
fb:fb:0d:65:62:d0:a4:e1:95:3c:86:a7:8d:77:70:88:e3:a2:
15:8b:e5:b7:2e:a8:8a:64:bc:5e:e5:05:e9:f7:56:c0:fc:7e:
89:56:de:23:62:52:df:71:5a:5b:61:2c:68:26:ed:6b:f2:f0:
47:30:fd:fc:d8:7c:83:fc:70:98:44:1e:6d:45:fd:ea:f2:1c:
6c:b9:d1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:17 2024 by rpki-client on console-fra.rpki-client.org