Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer
File: AtoTJ_UsQCOjghrIeFDJF9joNSc.cer (raw, json)
Hash identifier: +ZugAfXmMJdDOUd7f8kBU+i1ELzIsOyoyjzrN2rhL/k=
Subject key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A30
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Aug 2024 01:27:00 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.208.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23088 (0x5a30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 28 01:27:00 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:95:07:ec:cc:4f:33:0b:ad:ad:fb:d1:96:93:
29:42:3a:2f:27:aa:16:e0:cf:96:34:1c:1e:ae:ed:
cb:50:e2:24:45:01:34:53:96:77:b8:10:cc:0f:a5:
e2:aa:4a:19:4d:e0:de:7e:19:9c:6f:c9:02:05:9b:
40:83:3a:cd:ff:1c:5a:73:98:ba:08:aa:c5:07:09:
2d:3a:cd:f5:9b:34:83:50:54:a6:14:e6:25:eb:0a:
ea:eb:fb:c6:34:04:64:05:49:7e:d6:81:f2:c4:da:
bd:28:3a:03:1d:ca:93:3d:ea:86:4a:38:39:c2:85:
33:ee:27:6a:5e:40:47:34:91:5b:a3:f8:39:4c:7e:
ab:97:b5:fe:ee:a6:65:db:82:bc:5d:dd:78:a8:01:
34:49:da:61:99:0c:e1:08:e2:aa:b6:43:3c:82:2d:
1a:9e:ad:0d:d2:0a:91:2a:bd:7d:eb:96:16:47:ae:
95:b7:c9:a7:d3:b3:b9:b5:7a:64:01:12:d5:50:de:
ff:ce:b5:c8:37:5b:6d:4f:88:d0:f0:6c:35:ac:2d:
c0:d6:82:0a:79:87:21:35:ba:6a:4f:3d:5b:23:08:
22:64:53:c1:6c:25:51:61:06:c3:dc:1a:f0:4c:bb:
69:e3:be:f2:08:3e:ca:97:52:29:80:33:7c:f8:44:
28:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.208.0/24
Signature Algorithm: sha256WithRSAEncryption
52:37:92:24:23:01:79:c8:2e:4e:b2:e4:76:8d:cf:9e:b1:f8:
84:17:eb:6d:ab:b9:04:e5:7b:2c:2d:da:05:6b:3b:97:46:e2:
e6:15:c8:a5:c5:11:1e:2a:2d:40:72:1c:ea:a9:9c:3f:86:e7:
a0:87:7e:92:e8:ff:98:06:7f:99:08:4c:e6:60:ec:a2:86:14:
8f:22:35:7c:b1:31:25:ba:a3:5a:d9:a9:60:3b:63:94:a5:3b:
04:aa:b6:c1:22:be:47:a5:96:2b:07:ec:a0:50:58:6b:29:df:
94:92:60:d2:26:4d:77:f9:89:96:a2:8b:78:17:2a:b1:21:cc:
ef:95:e0:fe:46:4c:f3:a2:33:b6:4c:db:9d:49:4c:11:b4:fa:
a4:4f:76:a4:5e:ef:b4:1d:86:ad:79:70:dc:a8:83:04:24:c4:
c8:a9:9c:c2:7d:14:2f:4d:e7:77:d9:e4:8d:09:c6:4a:32:9b:
3f:60:5a:86:f2:ac:d7:99:2e:26:05:b1:eb:f2:2f:50:9c:5f:
a8:04:31:7f:83:8e:14:97:f6:31:15:74:74:89:df:e1:82:94:
3d:37:19:7b:0a:fa:e8:dc:fb:95:2e:8d:13:38:3b:5e:09:69:
d6:d3:44:90:06:b8:17:6d:99:96:f7:c2:0d:4b:63:a4:5e:a5:
d0:45:a3:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org