Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer
File: IRoCHoq99NvyBwgibMgyj9JBMd8.cer (raw, json)
Hash identifier: Il3FMrMoQ8feEg4UPrJ7nxHttE5FiHBJ4h5dsFm+kfM=
Subject key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D49
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Nov 2024 07:17:47 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.148.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23881 (0x5d49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 4 07:17:47 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:65:4c:22:9c:75:85:aa:61:51:30:69:99:35:
b3:b9:28:37:3b:e7:69:23:0a:c6:92:2a:30:2c:50:
95:91:16:b9:43:c6:bd:4d:1a:8f:c4:f9:70:f9:00:
2b:ba:7c:86:0d:61:3b:d5:47:b0:1b:e4:26:44:57:
2c:40:b1:7f:47:15:7c:fb:50:d0:64:89:26:39:d2:
41:88:59:54:6c:8f:cf:8f:96:ce:38:64:64:9c:da:
7e:61:fa:b1:3f:fd:f0:4e:9c:eb:a9:b9:39:90:33:
8d:28:d6:86:8f:dc:7e:11:0c:51:65:90:37:6b:ca:
bc:b7:d6:a3:29:e7:61:58:6e:e2:3a:13:1b:aa:58:
c8:05:ce:38:b5:a5:81:02:bf:1c:14:e8:03:82:61:
6a:7d:50:9a:cd:5d:17:0e:52:04:f9:49:e9:95:1f:
a7:32:b3:97:6b:9f:aa:b4:22:ea:fc:d9:bf:2e:86:
2f:10:3d:3d:0b:f4:df:a9:2b:00:fc:92:db:22:e1:
f0:7a:78:82:65:d2:90:0b:7c:c4:6b:7c:f1:3f:59:
9a:d7:c7:7e:78:dd:d3:3b:83:44:29:e4:d2:b1:8a:
94:0a:c8:64:48:6a:72:22:1c:c4:49:a7:c5:c5:1c:
78:e7:0c:fe:3f:03:04:f2:fd:66:e1:d2:4d:85:4b:
de:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.148.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:f7:b9:5d:bf:5e:4f:f2:3c:4e:6f:27:19:f7:bd:ce:e2:cd:
cf:33:1c:5f:40:c9:63:12:e6:9a:61:f7:e6:a1:22:c3:05:a8:
93:88:a1:00:29:93:eb:c9:dc:f7:dd:13:f1:52:cd:3a:a6:e4:
f9:7f:35:dc:df:95:aa:ee:17:78:c8:85:e2:00:d9:9d:73:7e:
8c:45:2f:6a:2b:96:38:e1:c5:7a:de:6d:ee:19:b3:7d:a6:bc:
e2:28:60:91:cd:65:a8:cf:e2:9a:b8:2b:2f:09:2d:f3:7f:64:
d7:a5:31:d8:bc:ec:64:15:5c:19:cf:43:90:af:8e:53:48:04:
b6:05:95:84:8b:5e:27:5b:9e:15:79:7d:b7:a2:7b:b9:b9:c1:
45:af:9c:00:cf:75:ed:d3:01:b3:c3:80:8e:40:b5:d6:66:c3:
16:f6:d1:85:f7:95:0b:ac:0b:35:d8:bb:ed:76:38:15:36:b4:
4a:be:4a:dc:c8:f7:65:95:fa:40:1f:ed:3f:0c:9d:41:63:0b:
3f:16:94:ed:25:52:b9:1f:8c:b1:09:f4:88:08:14:28:95:a9:
83:3d:ff:e7:b5:0d:c3:28:b1:88:16:04:84:4b:9c:ed:57:27:
88:84:56:de:fb:c0:4e:8d:c8:10:1d:03:55:ad:90:34:53:b8:
20:4c:bb:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org