Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yNpkCWcTSBB928ixg_VavykxJVY.cer
File: yNpkCWcTSBB928ixg_VavykxJVY.cer (raw, json)
Hash identifier: yeZNkJNHC+qtIscVm8AAik64XQjEl1j01cQ1Y6MWxhE=
Subject key identifier: C8:DA:64:09:67:13:48:10:7D:DB:C8:B1:83:F5:5A:BF:29:31:25:56
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 428E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/yNpkCWcTSBB928ixg_VavykxJVY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 29 May 2024 12:51:20 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 154.8.128.0/17
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17038 (0x428e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: May 29 12:51:20 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9120974/serialNumber=C8DA6409671348107DDBC8B183F55ABF29312556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:2b:4f:6f:0f:c3:e3:93:ff:0c:56:c9:48:
68:64:ae:2b:40:a3:71:68:5b:d2:5b:e8:18:67:27:
3d:ae:81:63:39:35:dd:57:bb:e9:ca:73:8e:d5:c2:
ba:d3:ad:1c:7b:10:fe:b3:59:06:b1:4e:0b:b1:ee:
2a:89:fe:bc:02:f3:45:c4:ed:58:a2:17:ec:d9:15:
4f:73:66:f6:a0:68:41:1b:e2:a1:e9:49:5f:ab:bd:
13:83:51:f8:2c:1e:54:04:1b:e1:67:13:fd:fb:30:
a6:bd:78:67:4b:5a:2d:cc:52:e5:57:2f:9e:49:8c:
f8:43:fd:9a:0e:a6:47:82:0a:41:b6:e2:50:ed:67:
96:30:81:f6:44:b0:80:c6:09:f3:15:c0:f0:e8:ab:
fe:8a:0f:cc:d0:bb:3c:da:78:71:25:68:f2:40:36:
e2:a1:3f:ed:50:40:a2:32:96:6c:e5:f4:fe:63:f7:
19:4a:a6:91:4c:2c:7f:1c:3a:92:88:ea:68:ea:3b:
a1:85:ea:82:0a:8f:3f:8f:bb:33:83:d8:3e:c7:0d:
fc:4b:60:98:d4:41:68:a3:4c:8d:d6:98:8e:fa:d9:
a5:43:39:c9:82:90:c8:19:c6:8c:38:86:84:8e:a9:
36:47:5a:3f:2b:0e:9e:2c:d1:31:d9:38:90:e1:fa:
1e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DA:64:09:67:13:48:10:7D:DB:C8:B1:83:F5:5A:BF:29:31:25:56
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/yNpkCWcTSBB928ixg_VavykxJVY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.8.128.0/17
Signature Algorithm: sha256WithRSAEncryption
08:49:d2:c9:fc:04:f7:c2:13:53:f4:33:c8:41:be:6e:35:17:
9e:7d:19:01:15:5c:be:7a:53:23:75:19:8c:62:fe:3c:1f:50:
71:a7:db:5c:93:5d:ed:65:9e:f6:aa:d0:97:28:88:aa:e4:39:
4e:53:eb:c6:9f:a9:67:94:24:9a:a1:f3:87:06:34:9b:2e:9c:
36:2c:61:9a:2d:29:1d:23:87:39:5c:ff:4b:d2:c8:88:98:af:
a5:a4:87:d1:1b:32:36:81:26:de:e3:cc:0b:39:07:9a:71:dc:
23:e5:be:e8:1f:9b:93:03:cb:a2:4d:21:fd:42:51:f3:6d:4f:
3d:ca:92:07:dc:14:0b:d3:ca:75:fa:fe:a9:e0:83:88:4f:cf:
40:4e:08:4b:c2:e3:0d:f2:2d:39:fd:5f:34:8d:51:b3:fb:90:
e4:4b:06:4f:00:2b:5d:5d:a1:0b:05:2f:2d:df:09:db:8a:e4:
b7:c7:04:d7:83:0d:1c:c3:54:5e:34:ca:18:a9:ab:6d:45:44:
70:33:57:60:70:f3:b6:e3:fb:dd:54:2c:22:49:0d:04:5c:f0:
4a:19:c4:46:d1:1a:f6:25:58:9f:37:0d:95:c7:7c:86:0d:11:
7b:ca:d0:11:24:14:85:7c:7d:28:8c:93:85:c4:b9:2e:ce:ce:
9e:88:ce:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:50:09 2024 by rpki-client on console-ams.rpki-client.org