Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer
File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer (raw, json)
Hash identifier: 6q0LCN2oKUs/OTahGtsy0B34G1W1fK8hbvMO/EfZW6Y=
Subject key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 644E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Apr 2025 20:21:47 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 198.51.210.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 05 May 2025 20:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25678 (0x644e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 28 20:21:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2b:29:81:32:3e:19:fb:b3:8a:32:1b:dc:1b:
1e:a0:72:60:2b:45:40:62:7e:3d:74:f9:4b:c9:65:
4e:fe:cc:d3:c9:35:93:b3:34:10:45:f4:b1:67:10:
11:fc:b0:24:45:3f:df:4d:0a:3e:8f:5c:63:90:db:
44:a0:4c:0d:bc:d3:a8:ee:38:c1:3a:56:70:92:09:
2d:42:dc:ac:12:ee:e0:02:f7:db:56:0b:cc:a6:4c:
9d:ef:5a:33:92:38:df:e1:37:3f:b5:0d:27:0a:6a:
03:93:b0:9b:a7:df:24:6e:7b:b8:cd:28:a5:e1:89:
7a:de:18:8f:28:ff:1f:9f:6d:d7:d3:1e:50:69:48:
56:63:bb:f5:74:3a:88:b2:90:d0:46:9e:03:b5:00:
9e:0b:0e:71:a7:53:0d:88:0e:8d:cd:ef:0b:19:98:
ea:3b:6d:c1:63:a3:dd:e8:be:82:e0:87:a0:69:6d:
85:61:aa:1f:c5:e8:c6:0c:9e:ab:d2:47:ed:6f:11:
8a:c3:4a:61:1b:10:98:b3:37:1b:f6:91:bc:0a:f6:
c8:66:b8:8a:6d:ce:44:bc:dd:3a:1a:21:d0:40:d2:
71:b3:cf:40:01:e3:72:c4:65:11:69:aa:e0:24:fd:
9b:61:d8:7c:d3:78:5b:b4:24:4c:73:99:a9:0c:70:
12:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
198.51.210.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:01:08:75:8f:17:a6:44:32:6e:c8:b0:fe:2d:d8:fa:6f:05:
d2:d2:5c:9c:e6:36:1e:1d:72:af:ff:b2:12:80:d7:87:56:aa:
6e:6c:c1:2b:82:0a:e8:9b:7d:24:fe:48:79:53:39:80:aa:04:
bb:90:9d:c9:bc:9e:5b:2d:b3:d8:82:63:7b:ac:d1:f9:fd:b6:
48:7e:2d:e1:37:cd:44:b2:7c:59:66:18:d4:79:81:c0:4a:0e:
d7:0a:3d:97:f7:20:47:97:b0:ec:2b:ac:bb:5a:43:a4:05:0d:
87:f9:93:4b:08:b7:dc:8c:2b:11:07:8f:a9:04:79:6b:0f:1e:
f3:5e:a7:16:2e:41:5f:01:69:c9:b9:65:d7:a8:50:5e:23:d1:
8d:77:d5:96:fe:5a:9c:33:41:0d:86:f7:57:4c:ff:18:77:b6:
b5:3b:3c:00:d7:f5:d3:0a:89:28:46:f3:4c:fc:13:cb:72:cf:
69:1a:d5:2b:ec:e1:1e:5f:85:40:88:44:93:b1:a6:18:4b:93:
a5:3e:85:cf:d1:29:96:c5:4b:6f:b1:7c:bc:e5:15:c1:e4:fa:
a8:5d:f8:9e:a6:e4:28:7d:7f:d4:f9:d3:4a:3f:f7:4c:b5:77:
75:34:78:bc:56:f6:f2:d0:c7:93:76:6a:99:c5:fb:26:a0:d3:
4d:6e:c2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:06:04 2025 by rpki-client on console.sobornost.net