Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3WpYTTFczGvVN1xTtNj2rMba9A.cer
File: M3WpYTTFczGvVN1xTtNj2rMba9A.cer (raw, json)
Hash identifier: NHPpcmhUXqOD/tPQcCg2CUu3S+5ukR1HJySf4oi6IeM=
Subject key identifier: 33:75:A9:61:34:C5:73:31:AF:54:DD:71:4E:D3:63:DA:B3:1B:6B:D0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A9C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Sep 2024 17:05:47 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.68.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23196 (0x5a9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 5 17:05:47 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9115620/serialNumber=3375A96134C57331AF54DD714ED363DAB31B6BD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:17:c2:fc:6a:eb:98:2c:19:2f:c4:ff:56:f0:
6d:9e:d5:bd:e6:c8:c3:4d:79:6e:6b:09:7a:6a:3d:
b3:38:ad:85:cc:c4:b4:f2:e1:14:fb:b5:e3:e8:3a:
59:f1:a0:8a:f1:bd:58:1e:7e:ce:a6:31:ed:8b:51:
ba:9e:f6:a9:6a:52:bb:89:ab:34:16:32:79:49:96:
49:ac:79:06:9b:59:cc:3d:d9:5f:01:47:3b:e0:a9:
39:fa:94:9c:e6:32:3b:87:cb:df:7a:23:74:86:c5:
22:0b:df:38:28:4b:d3:85:56:b3:c9:71:8f:38:9c:
38:24:ba:af:9a:79:24:d8:b8:69:d2:3f:43:c0:4f:
33:13:3e:01:e9:84:8c:64:6b:b1:67:d9:c7:5a:76:
dc:82:9b:bc:68:e6:89:93:e2:82:8b:22:30:3f:5c:
90:88:6a:aa:75:34:ef:59:52:66:06:38:4b:63:46:
30:64:d1:39:68:3b:eb:84:7c:b5:83:91:9f:7b:73:
6f:1e:42:68:fd:4b:50:35:77:ae:e3:ed:df:c8:86:
18:68:34:bb:39:0e:b1:36:e4:64:a7:7d:bc:7d:cc:
16:20:55:48:d5:fe:15:0b:02:a4:36:31:49:ab:73:
7d:0f:25:90:a8:2a:e3:bf:ee:9a:4f:40:20:2a:1c:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:75:A9:61:34:C5:73:31:AF:54:DD:71:4E:D3:63:DA:B3:1B:6B:D0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.68.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:c6:34:9d:d7:1c:5b:c1:64:19:2e:be:39:ce:71:4e:e3:7a:
12:d3:fc:1a:cf:b0:cb:15:e9:d2:af:b1:41:c2:f2:ec:56:43:
90:44:c6:42:79:f3:c8:aa:56:19:76:ed:ca:87:8e:b9:23:0a:
ad:5c:f8:d8:91:c2:3c:d4:c8:ae:bb:15:1f:9d:03:44:ae:d7:
6c:9e:ec:93:8a:c9:78:09:40:ee:a4:50:b5:3d:93:65:09:6d:
67:5b:14:27:cd:10:f8:37:ff:94:80:12:46:57:aa:2a:ac:2d:
10:94:3e:b3:82:cc:f2:77:25:3b:89:bd:db:56:5e:64:0a:38:
dd:6d:62:3b:23:0f:f1:48:bb:a3:46:aa:25:d3:e8:e4:60:52:
52:17:3f:c1:61:f7:18:d8:19:84:79:57:b8:9a:87:31:ca:59:
db:af:3f:e5:9b:1e:3b:ce:f2:8a:75:7d:0f:78:88:f9:5a:3d:
b6:83:88:9f:9b:cc:fe:fb:90:9a:ad:13:e3:4d:f6:90:51:3f:
5b:0e:8f:48:86:2c:ba:27:38:69:e7:55:24:0e:12:ae:f0:a9:
f7:fa:00:14:a2:c8:7d:31:7f:fc:3b:cb:6f:3e:65:be:45:0b:
71:a9:b3:cc:a8:b9:2f:89:14:c0:2f:62:47:72:50:f5:4c:f7:
04:3d:1a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:15 2024 by rpki-client on console-fra.rpki-client.org