Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer
File: TSeJUeK9itKFuUCo6p5X43lxHms.cer (raw, json)
Hash identifier: szgutoMogHU22V10URvjdjcYSV5ASfDjHntYiCTU33o=
Subject key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 45E5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Apr 2024 13:41:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 85.113.86.0/23
IP: 193.149.158.0/23
IP: 193.149.166.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17893 (0x45e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 17 13:41:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:91:21:81:f1:af:15:0b:ef:34:07:89:e6:02:
70:a2:78:cf:a0:7b:d2:3d:f1:b6:01:ab:bb:bc:20:
71:a6:da:f5:a1:a2:1b:29:4d:8f:b8:dc:7e:24:9d:
0b:00:b1:31:15:69:22:35:a5:13:1d:db:fd:87:74:
4d:8b:95:db:66:eb:59:6d:03:32:e1:0f:63:e8:e4:
32:71:ff:3c:9e:1f:83:36:74:10:46:45:02:e6:aa:
b5:40:bf:3d:59:83:31:c7:98:24:ad:f6:98:e1:8b:
cd:75:9d:3c:95:ee:57:12:0d:b8:6d:31:55:21:62:
a8:56:dc:c6:7a:59:75:a0:db:9c:bb:6c:8f:ed:55:
39:04:01:f1:5a:97:82:c1:fd:ea:c4:79:a0:d5:27:
e3:3e:e7:93:1d:2a:a5:b9:5c:ec:d4:db:82:aa:32:
86:bf:3b:8c:23:6d:57:8e:83:ec:bf:fa:e5:b0:8d:
eb:71:af:30:9c:6b:76:cd:2e:f8:37:c0:2e:5c:f8:
53:b5:21:d5:a4:66:d9:88:0a:79:47:ee:97:6e:27:
f9:34:41:93:85:39:b3:f5:6b:3e:10:ad:e3:76:9d:
6f:39:f0:2f:6a:70:39:49:30:30:77:07:a1:4b:13:
ab:8e:48:d0:54:48:05:27:44:1d:a5:7a:46:4f:b5:
ad:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
85.113.86.0/23
193.149.158.0/23
193.149.166.0/23
Signature Algorithm: sha256WithRSAEncryption
51:49:7a:06:f6:df:fb:b0:36:fe:b2:4d:6c:93:7a:3d:d3:9b:
ee:9c:42:7f:cd:e4:90:33:34:ff:9e:4e:4a:30:28:e1:1f:ea:
bd:3c:0b:ee:8e:ec:9c:71:9d:ab:5f:63:ea:ec:cc:6f:5b:60:
88:19:fd:c0:8b:93:e9:39:12:5f:26:bc:e6:26:ce:a1:8c:fb:
ed:77:a7:0a:16:b4:e3:9a:cf:0a:d1:26:68:e6:7d:d4:69:13:
4d:49:cf:74:54:16:c0:4a:26:6a:78:6a:f3:9f:77:fa:02:44:
2b:db:0a:77:e6:a5:d3:7b:bf:de:af:d8:8b:71:06:bf:71:a3:
aa:02:f0:4b:52:b5:08:ea:3c:64:bb:32:12:0f:04:f8:b0:7c:
08:f2:6b:ca:94:0e:2f:4f:ef:e5:b8:58:9e:b7:2d:93:a5:c7:
02:ba:7a:ad:41:fb:79:22:2a:a3:f0:51:d5:5c:88:bf:bd:72:
9b:9a:fe:5f:4e:05:33:f1:cb:ea:3c:72:00:09:91:a9:99:ac:
06:09:8f:e8:14:19:5c:d9:ca:db:dd:c1:ff:ad:6f:d2:eb:7f:
9f:78:38:82:c0:ab:a4:19:37:a2:f8:0b:48:c4:b9:a0:bc:24:
e2:a4:86:03:7a:b6:dd:80:84:32:ef:89:e0:67:9e:6d:84:4e:
f8:22:f6:fe
-----BEGIN CERTIFICATE-----
MIIGCTCCBPGgAwIBAgICReUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjQwNDE3MTM0MTE5WhcNMjUwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEzNDJDNTExMC8GA1UEBRMoNEQyNzg5NTFFMkJEOEFEMjg1Qjk0MEE4
RUE5RTU3RTM3OTcxMUU2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMORIYHxrxUL7zQHieYCcKJ4z6B70j3xtgGru7wgcaba9aGiGylNj7jcfiSdCwCx
MRVpIjWlEx3b/Yd0TYuV22brWW0DMuEPY+jkMnH/PJ4fgzZ0EEZFAuaqtUC/PVmD
MceYJK32mOGLzXWdPJXuVxINuG0xVSFiqFbcxnpZdaDbnLtsj+1VOQQB8VqXgsH9
6sR5oNUn4z7nkx0qpblc7NTbgqoyhr87jCNtV46D7L/65bCN63GvMJxrds0u+DfA
Llz4U7Uh1aRm2YgKeUful24n+TRBk4U5s/VrPhCt43adbznwL2pwOUkwMHcHoUsT
q45I0FRIBSdEHaV6Rk+1ra8CAwEAAaOCAv8wggL7MB0GA1UdDgQWBBRNJ4lR4r2K
0oW5QKjqnlfjeXEeazAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MzQyQzUvMTY2MzdDMkVBNEU5MTFFQ0FGM0ZCMTUyQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTM0MkM1LzE2NjM3QzJFQTRFOTExRUNBRjNGQjE1MkM0RjlBRTAyL1RTZUpVZUs5
aXRLRnVVQ282cDVYNDNseEhtcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQcMBow
GAQCAAEwEgMEAVVxVgMEAcGVngMEAcGVpjANBgkqhkiG9w0BAQsFAAOCAQEAUUl6
Bvbf+7A2/rJNbJN6PdOb7pxCf83kkDM0/55OSjAo4R/qvTwL7o7snHGdq19j6uzM
b1tgiBn9wIuT6TkSXya85ibOoYz77XenCha045rPCtEmaOZ91GkTTUnPdFQWwEom
anhq8593+gJEK9sKd+al03u/3q/Yi3EGv3GjqgLwS1K1COo8ZLsyEg8E+LB8CPJr
ypQOL0/v5bhYnrctk6XHArp6rUH7eSIqo/BR1VyIv71ym5r+X04FM/HL6jxyAAmR
qZmsBgmP6BQZXNnK293B/61v0ut/n3g4gsCrpBk3ovgLSMS5oLwk4qSGA3q23YCE
Mu+J4GeebYRO+CL2/g==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org