Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer
File: iruZJsMSoUFJxSMLpV-oz1uJquE.cer (raw, json)
Hash identifier: 3V0IpxNi2+u4pgbRx+qKcgfD8CFUUsjHFJuzZbwsNPM=
Subject key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 63C1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Apr 2025 20:15:27 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 192.245.185.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 03 May 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25537 (0x63c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 3 20:15:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:55:bb:74:14:18:b5:9d:05:16:43:d8:49:1a:
42:78:34:94:ef:db:0e:8b:ac:e7:b0:dd:77:a7:6a:
b6:b0:cb:e2:8e:ca:73:f1:dd:b3:34:71:f5:58:ab:
19:03:6b:b7:19:88:0f:07:6e:e4:e3:1f:46:7b:d1:
2d:1e:50:8d:f4:ec:e2:03:5d:b7:06:97:75:70:05:
a0:2c:24:5b:aa:de:c0:81:8f:37:0f:c1:ac:b8:98:
9f:40:2a:c7:6f:5a:2d:26:66:41:03:74:06:c7:fe:
14:b5:92:6e:43:4c:87:ae:43:cc:f4:cb:cf:49:0e:
31:ab:dd:e9:eb:85:9b:9b:05:ed:2d:98:a3:39:5c:
38:65:f2:67:2d:b7:96:5b:cb:6d:d5:03:67:39:7e:
86:a3:1d:f2:46:53:79:28:23:78:a1:18:3c:83:da:
22:65:49:07:71:ec:68:1c:a7:00:e9:85:90:81:1f:
6b:c1:dc:93:4f:e5:20:f0:5d:17:2c:0c:04:33:a2:
39:ee:83:77:3e:ad:9f:37:11:28:60:1e:63:d2:1b:
05:44:b7:c4:65:3a:60:85:c2:5f:af:36:7a:3d:9e:
8e:55:b9:e7:e3:33:26:08:23:19:57:e1:99:f8:66:
81:74:25:b2:d8:9f:d1:97:63:7e:db:88:65:19:16:
4a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.245.185.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a8:fd:6a:4f:d2:83:4b:68:bd:06:cd:a2:52:0a:39:2c:83:
1b:3d:81:0a:8b:ff:da:03:40:3b:17:70:29:23:d4:83:9f:89:
1b:c3:75:43:af:81:68:4b:08:c2:54:0f:ca:04:62:72:85:f5:
9b:dc:30:57:35:8d:b7:2f:60:0e:9c:36:77:80:f8:3e:c7:7d:
8c:63:91:5c:84:c9:89:ad:55:81:f9:c1:dd:1b:05:9f:ea:96:
a4:34:8c:c6:73:a2:e9:2e:b0:f3:dc:c6:e7:03:6f:8e:8a:c9:
30:4a:3b:45:92:b3:0a:94:d5:79:78:9a:ac:fc:54:04:0a:e6:
13:45:2f:de:75:59:65:0e:f6:92:93:50:63:2f:37:d1:03:4d:
cd:54:fa:5b:ce:06:86:35:89:97:db:52:df:7b:d7:c4:7e:8f:
29:45:45:00:8b:37:cf:9e:08:1d:fb:b6:5e:40:49:49:93:bd:
5a:a6:63:b7:16:e6:be:70:4f:1a:fb:c1:c6:e5:f0:95:b2:bf:
56:42:fe:89:5b:bc:e9:e2:b8:22:e1:34:2a:48:a9:57:7d:54:
6c:3e:27:df:84:4f:d9:32:ba:08:ed:ea:cb:2b:33:0d:59:28:
83:d2:79:b6:f5:9c:0b:e6:3c:79:87:fe:4c:39:ae:2e:af:cc:
12:dc:da:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:29:05 2025 by rpki-client