Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PLSpAEGL6dzcXgSgumKoTahf5uA.cer
File: PLSpAEGL6dzcXgSgumKoTahf5uA.cer (raw, json)
Hash identifier: 7lz2jCX2D+G2SkAotIAUM7kT8LOoj1WH7OsXr2dNEBE=
Subject key identifier: 3C:B4:A9:00:41:8B:E9:DC:DC:5E:04:A0:BA:62:A8:4D:A8:5F:E6:E0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5BB9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/PLSpAEGL6dzcXgSgumKoTahf5uA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Oct 2024 09:26:21 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.178.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23481 (0x5bb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 3 09:26:21 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91D0FCB/serialNumber=3CB4A900418BE9DCDC5E04A0BA62A84DA85FE6E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:72:aa:78:d0:ec:b4:86:94:2a:49:f9:47:b3:
e9:9d:1e:cb:1d:14:ee:b7:36:e4:8e:1a:60:d9:9e:
48:04:15:93:11:63:24:75:ea:7f:1f:72:c3:7c:ca:
94:19:ee:6f:26:3c:94:af:0a:c1:d6:cf:13:10:49:
41:8a:b8:93:72:bd:e5:0d:84:17:12:20:de:6e:bc:
f8:60:3b:08:cd:51:67:c1:cc:a5:cb:de:34:29:32:
f9:51:3d:8d:72:8d:27:a5:5e:bc:8b:1e:d5:79:66:
77:39:9e:21:56:d2:65:e8:57:b1:29:97:fd:76:bd:
2b:f3:2f:ad:a0:9c:dd:c4:19:0e:74:84:57:02:81:
bf:38:3e:86:0a:85:c9:2e:39:54:26:d8:21:69:a4:
56:42:51:e6:f3:78:0f:c1:99:13:ed:e2:89:1b:75:
a2:a2:09:67:1d:b0:8c:e1:31:ea:c2:e3:f1:61:db:
60:36:8d:09:a5:dc:ad:60:3f:b1:bb:c8:c6:c1:ed:
8a:ca:cd:b5:4b:b2:7b:31:ab:a6:4c:4b:66:1f:8e:
3d:57:50:f9:87:5c:cd:31:07:80:ad:b8:1b:60:ba:
ca:75:a3:09:4b:f0:84:1b:17:8f:25:70:63:be:f7:
b5:49:25:33:f2:bf:41:9f:3f:f7:1a:a2:70:f6:02:
62:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B4:A9:00:41:8B:E9:DC:DC:5E:04:A0:BA:62:A8:4D:A8:5F:E6:E0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D0FCB/89C78F70816911EF8213FB0CC4F9AE02/PLSpAEGL6dzcXgSgumKoTahf5uA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.178.0/23
Signature Algorithm: sha256WithRSAEncryption
80:ee:8e:7a:45:7a:32:88:04:e9:0b:26:83:29:71:a1:90:30:
e1:b9:2c:80:5a:0d:5a:d2:3a:09:27:23:ca:ff:13:7e:a8:c9:
23:f1:54:57:45:a2:b1:34:f9:60:64:d1:e0:ab:3e:05:3d:79:
29:ab:87:15:5d:3b:62:43:b4:68:da:2c:8f:5b:30:b4:5b:16:
17:b7:e4:cf:26:20:39:99:02:a4:d8:f7:47:1e:a5:18:07:8a:
ff:c8:42:cd:ea:5e:84:cf:4e:62:01:ca:54:9f:23:c1:38:db:
67:37:18:cd:52:37:78:21:ec:ac:c2:3b:19:ac:01:68:fb:de:
7b:76:eb:96:d6:e4:6d:85:57:2b:95:0e:6d:fb:e3:66:39:4c:
6e:dd:2a:cc:96:4a:6d:14:02:df:9c:77:0d:f7:7e:6c:7a:09:
1f:94:f7:86:d0:2e:58:f2:a1:af:04:20:be:8d:55:61:c2:10:
7d:18:44:1a:18:19:ed:77:1d:2b:e9:f6:f7:96:d5:5b:2f:ab:
ec:92:04:e4:b4:a8:eb:7b:6a:db:62:fb:93:3b:cf:91:97:74:
fc:f9:b3:0f:97:63:47:eb:3d:2e:f9:c4:26:d8:f6:94:11:d2:
3f:72:0d:06:44:51:12:13:59:82:cb:d2:f5:e4:f9:5b:c8:56:
e3:02:5f:62
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICW7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDAzMDkyNjIxWhcNMjUwOTMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFEMEZDQjExMC8GA1UEBRMoM0NCNEE5MDA0MThCRTlEQ0RDNUUwNEEw
QkE2MkE4NERBODVGRTZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALhyqnjQ7LSGlCpJ+Uez6Z0eyx0U7rc25I4aYNmeSAQVkxFjJHXqfx9yw3zKlBnu
byY8lK8KwdbPExBJQYq4k3K95Q2EFxIg3m68+GA7CM1RZ8HMpcveNCky+VE9jXKN
J6VevIse1XlmdzmeIVbSZehXsSmX/Xa9K/MvraCc3cQZDnSEVwKBvzg+hgqFyS45
VCbYIWmkVkJR5vN4D8GZE+3iiRt1oqIJZx2wjOEx6sLj8WHbYDaNCaXcrWA/sbvI
xsHtisrNtUuyezGrpkxLZh+OPVdQ+YdczTEHgK24G2C6ynWjCUvwhBsXjyVwY773
tUklM/K/QZ8/9xqicPYCYk0CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQ8tKkAQYvp
3NxeBKC6YqhNqF/m4DAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RDBGQ0IvODlDNzhGNzA4MTY5MTFFRjgyMTNGQjBDQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQwRkNCLzg5Qzc4RjcwODE2OTExRUY4MjEzRkIwQ0M0RjlBRTAyL1BMU3BBRUdM
NmR6Y1hnU2d1bUtvVGFoZjV1QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaAWsjANBgkqhkiG9w0BAQsFAAOCAQEAgO6OekV6MogE6Qsmgylx
oZAw4bksgFoNWtI6CScjyv8TfqjJI/FUV0WisTT5YGTR4Ks+BT15KauHFV07YkO0
aNosj1swtFsWF7fkzyYgOZkCpNj3Rx6lGAeK/8hCzepehM9OYgHKVJ8jwTjbZzcY
zVI3eCHsrMI7GawBaPvee3brltbkbYVXK5UObfvjZjlMbt0qzJZKbRQC35x3Dfd+
bHoJH5T3htAuWPKhrwQgvo1VYcIQfRhEGhgZ7XcdK+n295bVWy+r7JIE5LSo63tq
22L7kzvPkZd0/PmzD5djR+s9LvnEJtj2lBHSP3INBkRREhNZgsvS9eT5W8hW4wJf
Yg==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org