Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer
File: yod6eu8duwRWSH9h_uaZNjdUHl0.cer (raw, json)
Hash identifier: wQEaNnE9QdiplgL045RniIb7hk0lOUXWe7our1bwR3w=
Subject key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5885
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jul 2024 00:06:12 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 160.25.228.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22661 (0x5885)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 18 00:06:12 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:56:e4:68:60:82:21:58:e9:6e:fb:fe:03:
b3:02:a4:69:9c:60:5f:a2:74:cc:47:d7:bc:82:9c:
e0:a2:6a:26:29:ad:c5:b5:86:45:7a:aa:d8:ab:3b:
4c:d3:2b:fa:ee:ca:cb:be:a4:fc:c3:01:0c:d6:e5:
3a:70:2f:b2:b5:7e:6d:d8:e1:13:ce:9a:d9:4a:02:
33:c5:a1:9a:a3:4e:30:29:5d:1c:a1:8b:c4:ef:63:
92:e3:02:cd:81:b0:70:7b:d5:d3:66:ab:23:67:22:
c8:14:2a:f3:d8:a4:50:c8:e7:6f:2b:07:81:29:9c:
76:7a:43:d1:9b:3d:49:85:f6:ea:89:68:af:c2:92:
02:15:8a:6d:81:3d:d7:db:23:7d:40:b2:ff:59:d0:
bf:57:42:5d:06:3d:9e:84:c9:69:d0:d3:00:79:76:
ee:8d:b9:d9:93:9c:aa:13:cc:b5:e7:78:73:28:5a:
70:6c:86:8e:7d:62:1f:fb:2e:54:8b:af:b4:a4:5a:
6a:72:88:2b:60:f2:78:a9:b9:e1:a9:06:97:f8:31:
c1:7a:0c:2f:25:89:46:da:be:41:d6:97:eb:cf:dd:
df:5b:12:85:23:a8:53:b4:df:fb:db:c5:d1:ac:84:
7c:4e:96:ac:42:46:0d:98:ae:c2:fb:a0:cf:37:72:
59:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.228.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:2d:c8:ed:36:a0:23:57:7f:db:d8:c7:a4:4b:3e:58:5f:61:
d7:29:e8:a3:6a:85:13:08:00:91:e6:2b:b3:73:6f:d4:b0:6d:
cd:17:a2:3e:67:15:d4:8d:fb:b7:89:76:a2:1e:e8:3e:3e:74:
71:a0:78:61:e6:c5:03:4e:ac:97:16:b4:46:8c:39:2a:ae:0f:
35:5d:c5:6e:a1:39:e0:a4:11:55:45:2e:52:e1:82:b7:b8:82:
05:4a:f1:31:09:5c:09:de:34:8f:17:62:3f:f1:96:3a:dc:6e:
76:17:7c:d8:56:37:db:4e:23:cd:37:20:e5:8f:b4:34:94:d2:
aa:a8:75:8e:c6:ba:25:ba:31:4b:9d:5e:48:a8:64:76:7b:63:
12:43:30:75:13:a0:6a:2f:04:e2:cf:c8:6e:f2:12:e4:5b:7f:
83:34:2f:75:ed:36:61:e7:0c:6a:1e:79:fc:c8:f3:31:a0:69:
d5:9e:45:1e:4b:09:16:a7:6e:dd:62:69:de:cd:85:3f:f4:cb:
a0:45:6f:83:f8:b8:cc:b8:fb:cf:26:3b:cb:8e:e5:64:60:6a:
c6:ca:b3:e4:b3:86:5e:98:37:64:f9:45:31:94:05:87:c9:5a:
43:9b:b9:95:76:15:1c:23:2f:c0:61:bd:2f:7c:7c:4b:2c:5d:
6d:c9:b7:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:42 2024 by rpki-client on console-ams.rpki-client.org