Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer
File: JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer (raw, json)
Hash identifier: HZxEZDAJvnTjisfOL2QViwGLplLMrqCSctXvN5GKKIg=
Subject key identifier: 25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CC8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 23 Oct 2024 14:12:18 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.70.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23752 (0x5cc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 23 14:12:18 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91AF4CC/serialNumber=252A5A58C2C2393682BBF2BBC4612341C11D8419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c4:fe:0c:ec:ba:c4:61:a4:46:e4:e3:f3:08:
67:c9:09:99:51:83:c6:5d:a7:6e:e9:64:19:e8:43:
aa:f9:55:85:24:e0:db:e7:b4:cd:e7:f1:26:b4:60:
24:9c:21:9f:bf:35:2c:6a:56:e4:35:98:53:07:e6:
83:65:95:4f:5a:6c:1e:ad:30:ac:99:8b:2a:3c:77:
f8:e8:35:3f:c1:8f:ba:42:4b:30:a3:b9:59:88:98:
73:f1:14:8a:db:ad:b8:99:26:93:20:e2:0a:e5:30:
f1:29:c0:20:b9:ac:aa:3b:de:ad:53:a9:4d:69:a9:
a9:b2:f0:3e:2e:1c:fb:f0:96:5e:37:d4:1f:fe:bc:
85:e7:bd:2e:61:42:8d:96:a9:36:3a:fe:eb:7c:bc:
0a:3d:db:8b:26:bb:2e:90:db:27:96:97:14:6e:2d:
ad:f2:b4:4b:19:40:33:f6:a4:81:9f:03:0f:cf:20:
31:2b:99:42:4b:4e:6c:fb:a5:83:80:9a:78:a2:c2:
2c:15:41:23:de:2d:17:9b:10:07:71:a7:c1:64:ca:
5d:d5:f4:48:37:37:01:87:c6:5b:93:cc:8c:db:72:
53:5e:af:09:4b:42:ef:d4:ee:1b:69:63:78:13:8a:
9c:cb:94:3c:fc:38:a7:c8:74:2b:ca:55:dd:67:b8:
f7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.70.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:65:52:d3:6c:1a:bc:6e:b0:05:92:1c:8a:db:99:33:db:94:
3b:81:ed:b2:74:0e:03:5a:bc:20:66:27:a7:e3:68:a7:66:cf:
b3:75:e4:57:e5:1a:fd:7f:b2:52:07:86:31:44:1a:f4:10:7c:
70:13:09:69:fe:17:a3:bf:d5:be:bd:d7:e3:2e:d6:7b:8d:23:
4c:62:c3:52:ea:f3:57:cc:7e:6b:23:77:cc:64:6f:49:5d:94:
4d:a4:b1:3c:35:55:f5:a1:6d:3c:91:f5:10:77:4e:03:7c:f5:
be:92:9f:86:d1:b5:c5:98:9f:c2:46:bf:cf:ab:b6:62:72:c9:
d2:93:78:57:1e:08:e6:8e:e5:2c:08:94:81:29:55:57:c9:5f:
3d:53:a8:2d:0f:00:4a:25:df:f1:8b:8e:40:5f:01:9a:d3:a8:
44:86:03:8d:77:d4:d1:1e:51:22:af:a7:e4:cd:b2:e5:ef:2e:
d1:b2:0e:2e:44:ab:e5:3d:67:d7:b1:52:88:5e:a6:b7:07:b6:
0f:13:82:5c:b7:70:25:da:5b:f5:6d:c1:0d:7c:79:ea:0e:7c:
ef:b0:d1:46:6d:52:e4:6b:10:3f:bb:66:d0:ee:5e:cf:f8:b5:
65:7d:e5:1e:bc:bf:fb:f8:5c:ed:26:28:e6:67:93:0a:75:cc:
b1:9a:5f:77
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICXMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDIzMTQxMjE4WhcNMjYwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFBRjRDQzExMC8GA1UEBRMoMjUyQTVBNThDMkMyMzkzNjgyQkJGMkJC
QzQ2MTIzNDFDMTFEODQxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AJDE/gzsusRhpEbk4/MIZ8kJmVGDxl2nbulkGehDqvlVhSTg2+e0zefxJrRgJJwh
n781LGpW5DWYUwfmg2WVT1psHq0wrJmLKjx3+Og1P8GPukJLMKO5WYiYc/EUitut
uJkmkyDiCuUw8SnAILmsqjverVOpTWmpqbLwPi4c+/CWXjfUH/68hee9LmFCjZap
Njr+63y8Cj3biya7LpDbJ5aXFG4trfK0SxlAM/akgZ8DD88gMSuZQktObPulg4Ca
eKLCLBVBI94tF5sQB3GnwWTKXdX0SDc3AYfGW5PMjNtyU16vCUtC79TuG2ljeBOK
nMuUPPw4p8h0K8pV3We49+UCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQlKlpYwsI5
NoK78rvEYSNBwR2EGTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUY0Q0MvQ0M2OEUzREE5MTQ4MTFFRjg3RUFERDUyQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFGNENDL0NDNjhFM0RBOTE0ODExRUY4N0VBREQ1MkM0RjlBRTAyL0pTcGFXTUxD
T1RhQ3VfSzd4R0VqUWNFZGhCay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaC/RjANBgkqhkiG9w0BAQsFAAOCAQEAT2VS02wavG6wBZIcituZ
M9uUO4HtsnQOA1q8IGYnp+Nop2bPs3XkV+Ua/X+yUgeGMUQa9BB8cBMJaf4Xo7/V
vr3X4y7We40jTGLDUurzV8x+ayN3zGRvSV2UTaSxPDVV9aFtPJH1EHdOA3z1vpKf
htG1xZifwka/z6u2YnLJ0pN4Vx4I5o7lLAiUgSlVV8lfPVOoLQ8ASiXf8YuOQF8B
mtOoRIYDjXfU0R5RIq+n5M2y5e8u0bIOLkSr5T1n17FSiF6mtwe2DxOCXLdwJdpb
9W3BDXx56g5877DRRm1S5GsQP7tm0O5ez/i1ZX3lHry/+/hc7SYo5meTCnXMsZpf
dw==
-----END CERTIFICATE-----
Generated at Wed Oct 23 20:55:00 2024 by rpki-client on console-ams.rpki-client.org