Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FSUB4tXSvcrhiMNKZT5A9Amittc.cer
File: FSUB4tXSvcrhiMNKZT5A9Amittc.cer (raw, json)
Hash identifier: YcoBbsOe5waRduYZCdbH2LiErxQDDvgbR8AYsQKjICQ=
Subject key identifier: 15:25:01:E2:D5:D2:BD:CA:E1:88:C3:4A:65:3E:40:F4:09:A2:B6:D7
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 58DF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913D3CE/142A2B08495E11EFBE8F2079C4F9AE02/FSUB4tXSvcrhiMNKZT5A9Amittc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913D3CE/142A2B08495E11EFBE8F2079C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Jul 2024 01:43:14 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.138.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22751 (0x58df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 24 01:43:14 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A913D3CE/serialNumber=152501E2D5D2BDCAE188C34A653E40F409A2B6D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:7c:e5:65:5c:f6:8f:3e:92:15:64:89:a0:39:
8a:b2:d8:e5:4c:33:3a:29:f1:43:74:52:3f:5e:d4:
e7:92:00:ab:61:53:23:46:d5:22:11:4c:79:83:c2:
bd:98:99:70:3b:09:07:7f:e0:7d:0a:09:32:69:b8:
9c:8f:7d:d3:e0:cc:01:fe:42:26:e5:7c:5b:ae:ed:
c8:9b:7d:2e:71:13:d7:13:71:d0:ce:06:ee:f3:5e:
48:9e:43:1d:a1:18:96:58:e0:cd:62:e7:0c:eb:29:
46:4a:df:4a:f8:d9:55:8a:c3:9d:5c:21:b7:63:f4:
27:2f:61:75:9c:74:05:fe:00:e7:14:6d:c5:7a:70:
f2:c1:73:b5:7d:1f:c5:11:45:6b:f7:e3:9a:3b:6c:
f2:15:98:88:2b:16:ec:df:52:62:20:49:dd:8e:b1:
2a:de:c5:d6:43:5e:b9:79:f8:ed:cc:54:60:cc:0f:
af:24:30:04:34:2f:28:b7:02:bb:2f:b9:7f:db:c5:
38:63:bb:a2:4f:2d:22:ee:44:1a:a6:c3:1d:f2:ce:
31:f5:f8:50:df:40:2c:92:8e:85:eb:5e:7b:bc:08:
b0:fa:eb:12:b8:e7:35:8b:21:63:ed:a2:ad:b5:28:
87:eb:b2:b7:3d:5f:96:94:b9:75:d0:ea:e0:cf:2f:
6a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:25:01:E2:D5:D2:BD:CA:E1:88:C3:4A:65:3E:40:F4:09:A2:B6:D7
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913D3CE/142A2B08495E11EFBE8F2079C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913D3CE/142A2B08495E11EFBE8F2079C4F9AE02/FSUB4tXSvcrhiMNKZT5A9Amittc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.138.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ce:bf:04:8b:bd:bf:94:4b:4c:d7:82:24:0d:ec:0c:dd:0d:
03:9f:d4:2d:15:2f:25:e9:ab:ca:2e:f9:16:8f:0c:92:0f:1d:
5a:bd:e4:6d:ff:66:7d:94:17:8f:57:31:7b:59:87:66:e1:cb:
78:16:c6:07:f4:ff:5f:a1:56:50:84:4f:a4:9b:70:25:e9:72:
55:5d:c1:59:37:85:ad:9d:88:31:db:92:6e:00:bf:79:38:e3:
1c:ec:81:e0:08:ca:87:0b:08:09:29:a5:fd:2f:3d:51:a9:0e:
ae:ea:e9:54:69:b9:65:fd:6c:4c:1f:22:7a:fa:38:76:c6:26:
62:14:7e:d8:ab:f7:92:4d:de:e7:5a:d8:9a:85:02:60:28:53:
af:94:2b:27:3d:5f:ae:90:38:49:6b:e1:6b:ea:10:aa:92:af:
45:b5:31:6d:9a:fe:fa:74:3c:ae:2c:68:3d:ca:8b:ce:49:f6:
db:64:19:1c:68:03:83:b8:e3:04:c8:f0:f0:c3:c9:f9:13:e6:
22:65:08:7d:31:8b:d3:d0:ed:68:b7:ec:0d:d8:86:96:0b:1b:
ba:cc:6f:88:5f:6c:09:6f:57:36:c6:99:1f:ae:a6:38:f8:0d:
de:41:c5:ca:3c:9f:61:0b:dd:53:43:7b:e3:5f:3a:3e:8b:c9:
ad:60:98:24
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICWN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwNzI0MDE0MzE0WhcNMjUwOTMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEzRDNDRTExMC8GA1UEBRMoMTUyNTAxRTJENUQyQkRDQUUxODhDMzRB
NjUzRTQwRjQwOUEyQjZENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
APx85WVc9o8+khVkiaA5irLY5UwzOinxQ3RSP17U55IAq2FTI0bVIhFMeYPCvZiZ
cDsJB3/gfQoJMmm4nI990+DMAf5CJuV8W67tyJt9LnET1xNx0M4G7vNeSJ5DHaEY
lljgzWLnDOspRkrfSvjZVYrDnVwht2P0Jy9hdZx0Bf4A5xRtxXpw8sFztX0fxRFF
a/fjmjts8hWYiCsW7N9SYiBJ3Y6xKt7F1kNeuXn47cxUYMwPryQwBDQvKLcCuy+5
f9vFOGO7ok8tIu5EGqbDHfLOMfX4UN9ALJKOhetee7wIsPrrErjnNYshY+2irbUo
h+uytz1flpS5ddDq4M8vaiUCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQVJQHi1dK9
yuGIw0plPkD0CaK21zAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0QzQ0UvMTQyQTJCMDg0OTVFMTFFRkJFOEYyMDc5QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNEM0NFLzE0MkEyQjA4NDk1RTExRUZCRThGMjA3OUM0RjlBRTAyL0ZTVUI0dFhT
dmNyaGlNTktaVDVBOUFtaXR0Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAKAWijANBgkqhkiG9w0BAQsFAAOCAQEAec6/BIu9v5RLTNeCJA3s
DN0NA5/ULRUvJemryi75Fo8Mkg8dWr3kbf9mfZQXj1cxe1mHZuHLeBbGB/T/X6FW
UIRPpJtwJelyVV3BWTeFrZ2IMduSbgC/eTjjHOyB4AjKhwsICSml/S89UakOrurp
VGm5Zf1sTB8ievo4dsYmYhR+2Kv3kk3e51rYmoUCYChTr5QrJz1frpA4SWvha+oQ
qpKvRbUxbZr++nQ8rixoPcqLzkn222QZHGgDg7jjBMjw8MPJ+RPmImUIfTGL09Dt
aLfsDdiGlgsbusxviF9sCW9XNsaZH66mOPgN3kHFyjyfYQvdU0N74186PovJrWCY
JA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org