Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yNpkCWcTSBB928ixg_VavykxJVY.cer
File: yNpkCWcTSBB928ixg_VavykxJVY.cer (raw, json)
Hash identifier: zJB5Ytp3hpkxLSO5RSO4jarjOh0LhETvjYF4YUB0++M=
Subject key identifier: C8:DA:64:09:67:13:48:10:7D:DB:C8:B1:83:F5:5A:BF:29:31:25:56
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 3E55
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/yNpkCWcTSBB928ixg_VavykxJVY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Jun 2023 12:45:19 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 154.8.128.0/17
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 May 2024 02:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15957 (0x3e55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jun 28 12:45:19 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9120974/serialNumber=C8DA6409671348107DDBC8B183F55ABF29312556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:2b:4f:6f:0f:c3:e3:93:ff:0c:56:c9:48:
68:64:ae:2b:40:a3:71:68:5b:d2:5b:e8:18:67:27:
3d:ae:81:63:39:35:dd:57:bb:e9:ca:73:8e:d5:c2:
ba:d3:ad:1c:7b:10:fe:b3:59:06:b1:4e:0b:b1:ee:
2a:89:fe:bc:02:f3:45:c4:ed:58:a2:17:ec:d9:15:
4f:73:66:f6:a0:68:41:1b:e2:a1:e9:49:5f:ab:bd:
13:83:51:f8:2c:1e:54:04:1b:e1:67:13:fd:fb:30:
a6:bd:78:67:4b:5a:2d:cc:52:e5:57:2f:9e:49:8c:
f8:43:fd:9a:0e:a6:47:82:0a:41:b6:e2:50:ed:67:
96:30:81:f6:44:b0:80:c6:09:f3:15:c0:f0:e8:ab:
fe:8a:0f:cc:d0:bb:3c:da:78:71:25:68:f2:40:36:
e2:a1:3f:ed:50:40:a2:32:96:6c:e5:f4:fe:63:f7:
19:4a:a6:91:4c:2c:7f:1c:3a:92:88:ea:68:ea:3b:
a1:85:ea:82:0a:8f:3f:8f:bb:33:83:d8:3e:c7:0d:
fc:4b:60:98:d4:41:68:a3:4c:8d:d6:98:8e:fa:d9:
a5:43:39:c9:82:90:c8:19:c6:8c:38:86:84:8e:a9:
36:47:5a:3f:2b:0e:9e:2c:d1:31:d9:38:90:e1:fa:
1e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DA:64:09:67:13:48:10:7D:DB:C8:B1:83:F5:5A:BF:29:31:25:56
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/yNpkCWcTSBB928ixg_VavykxJVY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.8.128.0/17
Signature Algorithm: sha256WithRSAEncryption
6e:72:8d:16:7c:eb:aa:e4:26:3f:ea:f1:e5:88:e6:48:4f:e3:
51:23:92:7f:78:f7:5b:87:3c:24:2f:1d:b9:5a:3f:53:17:45:
1a:4a:b4:7c:09:78:34:8e:49:56:6c:4a:76:4f:0f:3a:6f:5d:
5f:b4:77:57:bf:14:78:c5:68:23:74:89:aa:a1:86:ac:e4:c2:
e0:8d:fd:96:1b:81:01:83:51:db:e7:ca:c2:7a:fa:52:6f:ee:
9c:81:c7:9f:a9:81:6b:3b:74:be:59:29:3c:ae:78:7e:da:15:
4b:57:b4:3c:b7:7c:9a:f4:f3:09:d1:91:1f:3c:a1:45:ab:c9:
fa:80:db:ba:c9:2c:7d:a6:37:63:70:25:64:bc:ff:f1:1d:35:
2c:4a:6a:ee:5f:6b:9f:5a:1c:87:b3:d4:9f:9a:82:de:fd:85:
5d:6c:b8:86:b0:ab:f1:9d:8e:20:4f:5c:d8:5b:d1:ce:54:08:
6d:3f:0e:23:88:44:76:b5:ed:9a:49:73:aa:24:54:fb:ce:a3:
d0:8b:c7:a8:1e:56:b9:46:df:c0:2a:61:07:6c:ba:35:1a:32:
29:8c:c1:fb:77:05:be:ed:47:07:da:fa:3d:67:a5:6a:34:a0:
11:57:18:9d:f7:1f:0b:9f:d0:75:34:1d:fe:10:58:94:f8:89:
a9:85:1a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 03:47:52 2024 by rpki-client on console-ams.rpki-client.org