Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer
File: 9ES43awaKuycmNiYFhxzSCwu1Ig.cer (raw, json)
Hash identifier: mqCTdBCyBwxMWX8ICIj2Iq4HH+7ca2f3duysHOBlP2s=
Subject key identifier: F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CFC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 26 Oct 2024 04:12:00 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.166.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23804 (0x5cfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 26 04:12:00 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91427E2/serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f1:4c:96:57:93:e3:30:b6:0e:b9:f7:9c:4f:
fa:0a:a9:38:77:88:db:81:80:9e:bb:d9:c3:9a:98:
f9:e5:7d:d9:b2:95:e3:31:89:2e:a6:2b:40:82:5b:
fe:8f:58:e3:cc:2a:ff:66:ec:b8:f3:f2:ba:65:40:
c8:3e:53:f0:b3:09:dc:61:b1:04:1e:fb:c8:10:5e:
bf:0d:f1:fb:37:47:72:88:7f:c8:3b:ed:49:4c:ba:
70:09:18:e9:2c:d6:5b:a3:5b:39:12:a6:58:06:fb:
dc:41:f0:5e:20:ac:9d:d6:e0:bf:ef:ec:48:3b:60:
d5:a7:36:dd:2c:56:10:73:9b:42:c3:cd:0c:d6:7d:
03:18:4b:d8:10:f5:e3:9c:12:8b:81:65:fb:a1:46:
32:ec:49:4a:5c:ba:56:3c:1b:13:76:15:c1:a5:8f:
31:c1:f2:a9:20:86:df:4d:ce:48:5a:87:4f:27:d4:
c9:a2:59:29:f4:30:82:e5:6f:36:09:c9:3b:0c:56:
6e:37:ec:c0:72:fe:d3:82:81:12:65:d8:8e:a2:04:
a6:76:9e:aa:f0:55:77:fe:d7:e7:6a:bf:80:80:c3:
41:ba:e0:2b:cb:a7:9c:dd:8b:f5:96:d1:8f:49:c2:
aa:4f:b2:10:d9:a1:51:e3:d5:97:5d:4a:03:b6:e7:
e4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.166.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:e0:4b:54:ba:9e:9b:d0:d3:5e:30:e2:d6:1a:04:71:0f:10:
15:8b:da:c3:29:47:0a:ba:04:5e:e9:a5:a7:2c:17:0e:a7:a5:
f5:3c:35:54:f7:2e:ff:13:04:b3:5d:5a:f1:b3:a9:3d:56:89:
47:cb:ed:b5:17:7a:4e:3a:2b:12:df:20:3e:77:8b:3d:61:35:
94:cc:71:4b:6f:06:1c:73:57:07:86:75:8a:6c:0a:37:c7:e9:
b9:e0:4e:a0:c4:66:ca:a6:be:28:5e:16:d3:7d:df:2a:ab:42:
b8:0d:55:60:16:55:c6:ad:08:c0:08:38:7a:7c:b9:e8:2a:76:
0a:97:5d:1f:7e:ed:1b:11:14:ad:7c:12:4c:3c:4b:a1:00:15:
aa:24:40:fa:b4:b1:2f:f0:b3:cf:e3:ef:c5:d7:58:43:1a:d4:
e9:8e:a3:26:f1:d1:93:70:cc:5d:68:7a:e8:7b:a6:77:9b:09:
31:28:bc:25:42:b7:e0:fe:97:18:2a:8a:b7:d8:e8:cd:8a:26:
da:69:fa:84:dd:4b:0d:a0:37:66:40:a1:a8:16:18:aa:dc:08:
16:7d:54:c8:8a:c9:a9:f3:94:b9:ce:1c:dd:2c:37:c2:99:9b:
65:ad:66:9f:1f:00:13:c5:34:7f:d7:32:d2:25:9e:0f:06:4a:
53:7b:dd:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:38 2024 by rpki-client on console-ams.rpki-client.org