Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer
File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (raw, json)
Hash identifier: nH4HcxvHCks4lwSYOfj8uqEK1Tlggt8L6lAOWOozK/U=
Subject key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 41B9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Mar 2024 15:34:41 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 196.1.1.0/24
IP: 196.1.109.0/24
IP: 196.1.113.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16825 (0x41b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Mar 21 15:34:41 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c8:29:15:07:81:3d:39:24:2e:9b:2b:fc:66:
0c:b0:8f:c2:b8:40:a0:89:82:9d:c5:95:9e:0d:9e:
da:a1:e2:ef:f0:cf:26:13:0a:e0:63:16:d7:92:3d:
df:8e:f6:a3:eb:17:e6:1a:a9:3d:69:de:c5:ca:fb:
ae:a8:36:30:78:17:a5:56:14:ec:a7:0c:97:ef:cd:
82:8d:1d:fc:d2:5c:12:11:da:70:9a:43:c0:8e:3e:
5b:63:dd:2b:e7:e3:59:ea:ce:21:7d:c2:42:c6:ef:
8e:f9:c0:df:f6:1a:ba:69:30:59:eb:f5:eb:9e:85:
d5:29:ac:3d:57:29:34:1a:78:3f:82:95:c1:ca:db:
79:1b:ee:8b:2c:df:f0:dd:ac:d5:9c:0c:51:3e:3d:
2a:b0:97:c4:a7:52:c7:f7:f1:d4:8a:39:05:fa:90:
b9:8d:b2:7f:bc:81:0c:b2:2b:48:c1:98:eb:4d:2a:
20:b9:5a:8e:df:1e:42:b4:d0:b9:77:00:48:f4:1a:
56:91:11:24:d6:ea:c9:4c:f1:c8:20:e9:f1:20:5f:
5c:92:71:bb:73:89:1c:37:19:d7:b0:ae:5c:f8:8f:
a4:73:23:97:57:72:84:7f:c9:06:c1:ff:2d:7d:15:
a0:4d:a3:14:1d:40:ce:d3:92:d1:ff:a3:45:3b:1c:
4d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.1.0/24
196.1.109.0/24
196.1.113.0/24
Signature Algorithm: sha256WithRSAEncryption
79:3b:fe:3b:2a:26:81:c1:3d:0e:b4:4a:81:07:86:ea:77:50:
a8:bf:5c:b7:d2:fa:68:ef:f6:c7:0a:86:43:62:21:78:a7:17:
6e:6d:0c:74:0b:14:0c:dc:e4:01:ce:f1:48:69:77:2c:6c:c4:
ce:98:21:1a:e3:20:16:9a:cd:92:df:8a:fb:d0:e1:12:e6:57:
c0:3f:b3:92:c6:bf:e4:1c:e0:7d:a9:65:e6:0e:e4:32:c0:dd:
55:72:5c:6a:8e:ec:19:c1:e8:f1:49:f9:a2:3c:87:c7:19:d8:
26:a2:05:41:3b:b2:49:a4:2a:9d:4f:db:46:bf:11:7f:01:47:
79:78:dc:9c:de:4a:ce:7a:69:17:a0:74:b1:4d:9c:cd:61:fb:
4c:79:7a:4a:fd:0f:94:66:d4:79:0d:7f:81:9c:4a:5d:9f:2a:
71:ba:63:55:6d:32:c5:03:35:ef:a5:5c:0d:e6:39:82:5b:a9:
55:2e:e5:f3:6a:fc:59:38:fc:49:c9:e7:2b:51:1d:13:ad:b7:
24:5b:bc:c2:e6:fa:8f:41:9c:0d:91:36:03:c4:f4:fb:2a:bb:
cc:d0:18:ef:df:91:1e:8f:38:7d:a2:83:17:62:bb:7c:53:fe:
7b:21:2a:f2:d6:03:71:a9:0e:10:26:5b:f3:14:db:5b:1b:f1:
5f:bd:ba:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:56:25 2024 by rpki-client on console-fra.rpki-client.org