Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z9EY2pb_YF-93yeqSqAmO072edo.cer
File: z9EY2pb_YF-93yeqSqAmO072edo.cer (raw, json)
Hash identifier: fKdGAL+PXLb1r8MxnLKFGWsG5SNKPgORahqZiCDBhvU=
Subject key identifier: CF:D1:18:DA:96:FF:60:5F:BD:DF:27:AA:4A:A0:26:3B:4E:F6:79:DA
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4DEA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9E82/E230322A636F11EE97C74B5CC4F9AE02/z9EY2pb_YF-93yeqSqAmO072edo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9E82/E230322A636F11EE97C74B5CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Oct 2023 11:11:14 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 131.185.0.0/16
IP: 144.97.0.0/16
IP: 146.221.0.0/16
IP: 160.64.0.0/16
IP: 170.157.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 13:10:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19946 (0x4dea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 5 11:11:14 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91C9E82/serialNumber=CFD118DA96FF605FBDDF27AA4AA0263B4EF679DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:89:6b:27:27:32:4b:9e:7a:ad:b1:c1:96:57:
04:5b:20:08:4a:8b:a2:1e:db:1b:18:39:eb:f6:7b:
4c:06:77:74:fe:69:f4:16:be:e6:a9:1d:ab:90:e9:
30:eb:62:24:e0:a9:cb:e1:d7:74:20:ce:9a:17:df:
19:93:f2:16:d8:8e:a8:3e:70:fd:dc:50:9b:2d:05:
07:eb:ad:e4:ea:c6:f4:a2:f6:4b:f3:ed:16:fb:ce:
e2:98:b5:9f:c3:5b:b2:22:09:14:2a:ce:7f:f8:cc:
b4:43:04:3b:72:7c:b3:96:8d:fc:be:60:84:3c:9c:
3e:59:8d:cf:1f:1d:20:cc:94:bc:4e:54:18:27:09:
71:60:c6:1e:39:88:79:06:1c:26:11:06:bb:81:a8:
04:0b:3c:74:d5:8e:64:09:6a:23:83:8b:8b:88:8e:
9d:ad:e2:a1:fa:fb:61:ce:0d:26:51:b3:cd:5a:a8:
94:ca:bd:5b:19:03:2f:52:09:5a:f8:e6:32:a2:bc:
98:f3:f5:e1:6d:da:bd:41:f0:06:00:16:e9:35:ca:
45:72:a6:7d:eb:fb:5d:e6:a5:d6:5e:6a:8f:50:cb:
2c:a2:d7:bd:9b:40:79:c3:79:93:55:ca:be:13:86:
11:9f:37:56:2a:37:e4:39:9b:ff:4d:0b:79:a5:9a:
f8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D1:18:DA:96:FF:60:5F:BD:DF:27:AA:4A:A0:26:3B:4E:F6:79:DA
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/E230322A636F11EE97C74B5CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/E230322A636F11EE97C74B5CC4F9AE02/z9EY2pb_YF-93yeqSqAmO072edo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
131.185.0.0/16
144.97.0.0/16
146.221.0.0/16
160.64.0.0/16
170.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c5:b6:3b:cd:0a:4b:69:ef:fc:c0:fd:54:8e:64:45:85:11:21:
42:f6:23:df:1c:4e:a8:d6:cf:6f:7b:be:e5:ef:5d:87:67:3e:
fd:36:81:43:78:cf:da:a5:6a:58:40:b4:e4:3c:9b:6d:50:d2:
03:bd:2e:09:8d:91:42:d1:46:49:c6:64:9f:17:f8:7a:05:a3:
7c:fb:50:0a:69:ab:fc:f5:f8:d1:3f:c9:b6:07:50:ff:5f:17:
b1:6f:ec:51:d3:cb:68:75:9e:9f:2b:a0:30:07:ee:ff:97:51:
66:f5:d6:8d:53:ef:62:b4:45:24:48:f7:38:19:ab:e0:9f:22:
68:d5:b2:9a:6b:18:31:64:d3:22:30:50:ec:02:6d:1d:8f:1a:
bd:69:7b:99:4d:e9:b3:1c:23:14:48:dc:f0:0b:5b:ec:49:61:
6a:49:94:cf:54:b9:31:b4:7e:7f:14:67:e6:6c:db:c8:5c:5c:
c2:a4:3f:b2:b0:7e:0e:43:e2:ba:5a:8b:a7:8e:89:33:29:59:
1e:57:83:d3:6e:3d:bb:cc:ec:1e:90:25:33:e1:bd:21:39:a0:
7c:14:d6:8f:19:5d:e8:30:6f:0e:f3:fc:d6:c7:c7:ec:3d:fe:
c4:0b:1c:9e:b3:94:ce:00:15:7a:01:3d:48:50:f8:c5:04:51:
43:4c:44:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:52:47 2024 by rpki-client on console-fra.rpki-client.org