Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer
File: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (raw, json)
Hash identifier: lK432uTKMzI/MWDWDCT/5eSJfdDwnCex4YbKV+8mZxI=
Subject key identifier: 81:FD:56:3C:C6:86:5D:E0:2D:A6:A8:3F:2A:01:F1:16:11:1D:0F:FA
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4396
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149F3E/8871FB2C1D8211E2BC6417D708B02CD2/gf1WPMaGXeAtpqg_KgHxFhEdD_o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149F3E/8871FB2C1D8211E2BC6417D708B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Aug 2024 14:31:37 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 154.10.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17302 (0x4396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Aug 15 14:31:37 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9149F3E/serialNumber=81FD563CC6865DE02DA6A83F2A01F116111D0FFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7a:c3:ea:1d:f5:81:76:17:72:35:8e:76:b5:
67:c7:73:bf:71:14:0c:9e:0b:60:46:c8:9b:91:47:
ce:0d:e5:52:f9:b7:c0:e4:bb:32:b6:c7:ec:21:a2:
2f:1f:79:99:ac:51:c8:42:e1:79:68:1b:62:83:d1:
fd:5e:de:d0:0c:26:85:0e:a5:ec:e1:f6:74:73:51:
80:b8:8d:00:96:f5:99:4e:ea:d2:49:50:b4:d6:2a:
fb:f7:e0:49:34:f9:37:7a:26:85:2c:3c:0f:06:ce:
51:dc:91:d1:a5:6a:e4:69:f0:0b:bf:d0:80:25:c8:
ae:50:c6:73:c6:59:2e:39:91:9d:eb:d6:37:08:c6:
00:65:e9:2b:30:c0:ee:53:9e:ab:ac:d8:3a:8b:08:
49:39:2f:35:27:78:9b:92:7f:87:70:90:3c:2c:8c:
fb:c0:8d:86:d4:ad:76:8c:c5:22:4b:0a:98:b3:54:
43:cc:2e:19:14:19:88:42:d3:36:75:b1:34:c9:09:
ba:08:cd:34:7a:4f:35:22:cc:bc:da:90:45:7d:03:
bd:e6:62:b4:97:c5:36:43:c9:01:59:bf:2e:3c:97:
59:76:d1:8f:23:d2:8d:99:30:17:8f:b3:d4:7b:0f:
2e:87:7f:bf:ab:b6:99:3d:34:0d:77:98:05:ca:be:
5c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FD:56:3C:C6:86:5D:E0:2D:A6:A8:3F:2A:01:F1:16:11:1D:0F:FA
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/8871FB2C1D8211E2BC6417D708B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/8871FB2C1D8211E2BC6417D708B02CD2/gf1WPMaGXeAtpqg_KgHxFhEdD_o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.10.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a6:f6:a6:be:f3:1f:cc:2b:54:56:5c:e8:83:74:37:41:7a:ee:
8a:1f:ee:0d:3f:73:99:b1:7e:9a:fd:8e:ce:2f:bb:7d:53:54:
ab:14:75:da:67:30:13:f3:1f:94:56:2f:e9:13:7d:83:ca:cd:
88:62:d2:29:4d:2f:50:b6:97:29:08:59:68:65:56:0a:fb:02:
b1:50:da:d1:03:4a:b7:fa:b7:10:da:ca:b0:47:2d:d0:5c:1a:
3c:8b:c3:ee:c7:55:ee:92:3e:b2:6e:f7:32:7c:16:06:69:20:
41:f7:ff:a0:41:b3:d5:a4:5e:46:42:04:70:a2:28:f0:12:c6:
44:5c:62:32:bd:8c:30:37:e9:5b:98:cc:13:e6:ef:60:ea:f4:
eb:c4:97:2e:6e:f4:1c:f9:b0:f6:70:b4:53:d6:ed:7d:ec:7a:
99:aa:18:df:d0:aa:e7:4a:d3:55:62:05:a9:7b:b3:53:4c:6f:
90:43:b7:47:f9:52:1a:30:a8:c7:97:4a:37:98:7c:68:1c:d3:
8a:a7:e0:96:e7:34:50:1c:cb:49:b1:fd:bf:4b:9f:c3:97:14:
fa:65:30:30:52:e3:3f:2c:e8:db:5f:3f:4e:1b:5d:4b:80:13:
f9:a0:b7:de:b9:1f:42:e3:f6:23:f9:24:1c:61:ff:c3:c9:71:
da:29:7f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:50:08 2024 by rpki-client on console-ams.rpki-client.org