Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer
File: EhrxRNkD4_iJffD-0gcaFkd17U8.cer (raw, json)
Hash identifier: rOyFVEQM8h4cS1+puZdwMy2QzJwuMfeAIQezee1XBUs=
Subject key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CDD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Oct 2024 11:02:40 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.80.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23773 (0x5cdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 24 11:02:40 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:26:af:37:0d:76:59:26:57:bc:ba:20:60:
30:d8:77:08:b2:40:56:51:cd:a3:98:52:cf:c5:07:
75:23:ea:ed:10:e5:e6:25:c6:c6:83:2d:3e:b2:db:
f3:8e:20:a3:06:da:e1:f8:fd:42:d7:12:3b:b1:cb:
f7:22:bf:5e:4e:bd:08:cb:93:84:04:8c:75:27:5b:
8e:d1:95:f9:4c:c4:e8:c5:7e:74:6a:ec:76:e4:35:
84:eb:4d:a4:4f:53:5b:51:b3:45:a6:b3:ac:eb:ae:
6d:2a:e4:a9:c9:72:03:c6:09:95:1d:60:fc:f7:9c:
74:d6:c8:dd:1e:d4:6d:8b:2a:34:e6:6b:a9:b6:ca:
8d:e6:f2:f3:05:1d:12:b7:6b:cd:ba:df:79:a0:2e:
fa:fb:6d:e8:a4:c5:5e:64:7b:ff:e8:21:78:6d:76:
b0:d4:2b:16:bf:fb:c6:c2:4f:95:fc:48:c0:89:25:
1c:f8:6c:62:52:5f:59:53:7a:b1:2a:93:b2:84:27:
2e:cd:95:7e:6c:ab:3d:f7:78:ef:49:53:19:02:c3:
28:f8:ab:78:51:68:2e:06:06:df:ee:a0:75:ff:28:
46:06:75:a2:74:ca:a8:9e:56:52:6b:04:aa:5c:35:
49:3f:57:92:43:e5:c3:f0:4f:49:89:ba:6c:0c:54:
0c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.80.0/23
Signature Algorithm: sha256WithRSAEncryption
94:40:30:36:4e:78:e3:34:09:ce:07:b4:b6:d7:02:4d:f0:63:
e6:9d:06:fb:69:34:1f:eb:9f:2c:ed:31:f2:14:35:d8:14:13:
9b:48:4b:95:48:d6:d9:c0:04:3b:9b:8a:5b:1b:77:b6:9d:1f:
d3:fa:be:c3:e5:93:d7:34:9c:12:99:7d:c6:11:64:b1:ae:b8:
a9:5c:76:f8:f0:0a:5c:9a:9f:29:dc:0a:36:a0:b4:56:15:b5:
44:dd:bd:0d:07:e4:54:4b:e7:46:7c:13:c6:86:f6:ba:ff:4d:
e0:64:4a:80:f9:35:69:c4:e9:00:09:1a:ca:c7:b0:2d:36:b9:
df:4f:8a:65:57:c9:6b:a5:75:c8:62:94:d3:12:ca:fb:a3:bc:
af:ae:20:e3:82:b4:31:5f:bc:42:02:a7:c3:d9:e2:e7:c1:26:
8c:e6:f7:d4:6f:ec:00:c0:74:7b:41:36:c9:38:cb:81:ac:83:
cb:82:b0:51:6d:d2:a8:e5:00:fa:e7:f9:2e:9a:a5:2e:e3:56:
7d:d8:c3:5a:41:a2:85:41:3b:8b:43:f3:ba:50:a7:71:85:89:
d9:2c:36:4c:59:98:af:0e:a9:ce:ac:df:d5:ae:11:83:27:ca:
da:b9:33:08:fd:32:11:c9:ba:f0:99:bb:6a:a2:36:10:7d:7c:
59:5f:53:4f
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICXN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDI0MTEwMjQwWhcNMjYwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFFNTU0QTExMC8GA1UEBRMoMTIxQUYxNDREOTAzRTNGODg5N0RGMEZF
RDIwNzFBMTY0Nzc1RUQ0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALi+Jq83DXZZJle8uiBgMNh3CLJAVlHNo5hSz8UHdSPq7RDl5iXGxoMtPrLb844g
owba4fj9QtcSO7HL9yK/Xk69CMuThASMdSdbjtGV+UzE6MV+dGrsduQ1hOtNpE9T
W1GzRaazrOuubSrkqclyA8YJlR1g/PecdNbI3R7UbYsqNOZrqbbKjeby8wUdErdr
zbrfeaAu+vtt6KTFXmR7/+gheG12sNQrFr/7xsJPlfxIwIklHPhsYlJfWVN6sSqT
soQnLs2VfmyrPfd470lTGQLDKPireFFoLgYG3+6gdf8oRgZ1onTKqJ5WUmsEqlw1
ST9XkkPlw/BPSYm6bAxUDMcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQSGvFE2QPj
+Il98P7SBxoWR3XtTzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTU1NEEvNzk1RTczRDA5MUY3MTFFRkFERTExMjY2QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUU1NTRBLzc5NUU3M0QwOTFGNzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtE
NF9pSmZmRC0wZ2NhRmtkMTdVOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaC/UDANBgkqhkiG9w0BAQsFAAOCAQEAlEAwNk544zQJzge0ttcC
TfBj5p0G+2k0H+ufLO0x8hQ12BQTm0hLlUjW2cAEO5uKWxt3tp0f0/q+w+WT1zSc
Epl9xhFksa64qVx2+PAKXJqfKdwKNqC0VhW1RN29DQfkVEvnRnwTxob2uv9N4GRK
gPk1acTpAAkaysewLTa530+KZVfJa6V1yGKU0xLK+6O8r64g44K0MV+8QgKnw9ni
58EmjOb31G/sAMB0e0E2yTjLgayDy4KwUW3SqOUA+uf5LpqlLuNWfdjDWkGihUE7
i0PzulCncYWJ2Sw2TFmYrw6pzqzf1a4RgyfK2rkzCP0yEcm68Jm7aqI2EH18WV9T
Tw==
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org