Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer
File: 5bRMaejecz32GWYFbn5BXsfHDSo.cer (raw, json)
Hash identifier: +HmO5UAkWt3Dx4+J4MdAHQzX8wGiXwegZ3AERiRupk8=
Subject key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 57A1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jul 2024 02:52:43 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.25.70.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22433 (0x57a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 3 02:52:43 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:70:53:c4:fa:40:85:25:af:31:d2:92:05:91:
65:65:d3:4b:45:da:8e:d7:36:b0:f4:e6:8a:b3:10:
ba:a4:2d:3b:76:0e:83:47:03:c2:af:5b:a6:97:00:
fc:ca:d3:83:31:c7:f0:b2:25:8d:5c:6a:57:12:4b:
59:51:c5:56:d4:22:e9:aa:0e:3d:c6:68:d7:01:0d:
50:71:2f:ac:d3:49:ec:96:12:c3:29:04:32:a5:5a:
da:ed:6d:a3:64:ea:16:bb:84:66:ae:05:20:25:1f:
1f:aa:f2:a0:82:65:29:f8:76:81:81:dc:8d:e3:4a:
29:48:37:00:79:4e:68:75:43:8a:99:2b:1b:05:28:
3e:de:7f:48:37:09:4b:88:a9:20:d0:11:1f:5f:03:
f0:e2:6f:da:fd:32:9e:57:7a:22:f9:ed:2b:da:50:
27:7b:26:98:35:c0:b7:e2:a5:f5:17:03:60:0f:b0:
7b:02:25:7b:fd:26:aa:60:4a:1a:de:f6:97:e0:b8:
91:7e:b2:7d:96:1b:bc:a8:3b:5c:81:82:16:e3:75:
11:63:1e:4f:4f:6f:02:45:27:a7:c7:fd:fc:e8:d0:
59:99:b8:cc:a2:f4:9f:8b:ec:e9:80:a5:f5:82:80:
1a:02:98:c5:58:43:48:cd:c0:1d:ad:b8:a2:7a:e0:
23:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.70.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:52:04:15:64:15:03:dd:ec:78:06:df:22:9a:b9:09:59:aa:
89:f3:eb:0d:aa:ba:9a:9e:f8:8f:91:8e:e9:79:c3:30:cf:c8:
0a:07:77:27:92:0c:20:50:fa:b3:7a:57:ad:39:66:7d:67:4e:
49:f6:c8:cd:26:8e:b6:9d:73:49:4b:69:52:ef:7a:c0:7d:1f:
e0:8e:b5:85:04:cb:b3:f7:18:b1:19:68:a5:b9:d5:a7:01:55:
27:9c:c8:11:86:3c:ce:9b:14:b4:54:5a:bf:f6:39:0f:10:07:
02:78:54:49:26:2a:a5:8d:1c:f8:38:6d:db:d2:26:af:81:63:
f2:89:84:31:05:c8:c5:ab:cb:72:c9:fb:c3:4c:56:6c:73:18:
1d:f4:b0:96:87:5f:f0:46:32:be:ae:f9:39:8f:05:40:eb:df:
cf:b0:be:92:37:88:63:a0:85:8a:15:35:c7:5b:26:e8:4c:2e:
09:ae:0a:ad:bd:71:c7:dc:2b:80:b8:6e:de:5a:03:2e:d6:fc:
f4:db:95:af:62:ea:55:95:47:bc:12:cc:3f:e1:5f:96:ba:86:
39:18:4f:11:65:cb:32:0e:51:09:c1:44:05:47:e4:05:be:99:
33:55:44:db:c9:c5:28:70:3d:93:ee:4b:f3:a8:11:5d:5e:ab:
a8:a2:7e:c0
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICV6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwNzAzMDI1MjQzWhcNMjUwOTMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFCNDg3MzExMC8GA1UEBRMoRTVCNDRDNjlFOERFNzMzREY2MTk2NjA1
NkU3RTQxNUVDN0M3MEQyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANdwU8T6QIUlrzHSkgWRZWXTS0Xajtc2sPTmirMQuqQtO3YOg0cDwq9bppcA/MrT
gzHH8LIljVxqVxJLWVHFVtQi6aoOPcZo1wENUHEvrNNJ7JYSwykEMqVa2u1to2Tq
FruEZq4FICUfH6ryoIJlKfh2gYHcjeNKKUg3AHlOaHVDipkrGwUoPt5/SDcJS4ip
INARH18D8OJv2v0ynld6IvntK9pQJ3smmDXAt+Kl9RcDYA+wewIle/0mqmBKGt72
l+C4kX6yfZYbvKg7XIGCFuN1EWMeT09vAkUnp8f9/OjQWZm4zKL0n4vs6YCl9YKA
GgKYxVhDSM3AHa24onrgI20CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTltExp6N5z
PfYZZgVufkFex8cNKjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjQ4NzMvNEUyNUM4QkMzOEU3MTFFRjg0NEI0RjY1QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI0ODczLzRFMjVDOEJDMzhFNzExRUY4NDRCNEY2NUM0RjlBRTAyLzViUk1hZWpl
Y3ozMkdXWUZibjVCWHNmSERTby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaAZRjANBgkqhkiG9w0BAQsFAAOCAQEAblIEFWQVA93seAbfIpq5
CVmqifPrDaq6mp74j5GO6XnDMM/ICgd3J5IMIFD6s3pXrTlmfWdOSfbIzSaOtp1z
SUtpUu96wH0f4I61hQTLs/cYsRlopbnVpwFVJ5zIEYY8zpsUtFRav/Y5DxAHAnhU
SSYqpY0c+Dht29Imr4Fj8omEMQXIxavLcsn7w0xWbHMYHfSwlodf8EYyvq75OY8F
QOvfz7C+kjeIY6CFihU1x1sm6EwuCa4Krb1xx9wrgLhu3loDLtb89NuVr2LqVZVH
vBLMP+FflrqGORhPEWXLMg5RCcFEBUfkBb6ZM1VE28nFKHA9k+5L86gRXV6rqKJ+
wA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:38 2024 by rpki-client on console-ams.rpki-client.org