Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T0X6adnl9VCE3ckiiVJ2pkAjnBw.cer
File: T0X6adnl9VCE3ckiiVJ2pkAjnBw.cer (raw, json)
Hash identifier: 4GlXoC3p1op/HMsLnbVydUY0M8c3V1WbVekmA14T3DA=
Subject key identifier: 4F:45:FA:69:D9:E5:F5:50:84:DD:C9:22:89:52:76:A6:40:23:9C:1C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CC0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/T0X6adnl9VCE3ckiiVJ2pkAjnBw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Oct 2024 17:45:47 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.40.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23744 (0x5cc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 22 17:45:47 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9190818/serialNumber=4F45FA69D9E5F55084DDC922895276A640239C1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0d:58:87:ef:13:fd:f4:72:1c:6b:b7:0f:89:
1a:51:24:69:5e:a1:c4:8d:fc:4c:1f:5b:8e:fc:fa:
6e:da:1f:a2:de:31:58:ce:03:a5:12:d5:9c:d7:32:
e5:23:92:d9:be:b4:1a:14:a4:bd:92:d4:74:a5:f5:
6b:c3:69:6f:56:a3:c5:5c:3a:91:b5:f8:c2:9b:ee:
cf:04:f1:48:25:9a:8a:0f:7d:47:fb:f3:4c:3e:6e:
58:fd:22:34:dc:01:65:4c:35:f8:a4:67:e0:a2:8f:
1f:e6:2c:df:b2:9c:54:8e:05:be:53:70:f0:0a:5b:
9a:08:ea:50:e5:27:e7:a3:40:e9:c6:9e:b0:5f:93:
a8:e4:01:fe:cb:dd:9e:09:ce:3c:cb:b9:96:4d:15:
ec:ea:ff:6e:e5:35:d1:dd:43:e4:ba:93:9a:1a:93:
94:24:fe:ca:05:15:b4:f6:20:5e:c7:73:e3:22:b4:
ed:e5:a9:40:79:fe:07:3d:64:73:d9:14:05:8f:74:
39:a9:f6:59:75:4a:9a:da:de:08:61:55:b7:16:80:
73:b4:c8:19:ab:1c:41:51:12:7f:b4:3c:69:df:a8:
61:56:af:1d:c1:f7:57:05:30:e3:35:a6:b5:26:14:
b5:14:90:b6:52:04:94:c2:a3:9d:b4:7d:e4:21:7f:
4d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:45:FA:69:D9:E5:F5:50:84:DD:C9:22:89:52:76:A6:40:23:9C:1C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/T0X6adnl9VCE3ckiiVJ2pkAjnBw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.40.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:0f:96:51:b5:92:6f:45:c8:f0:6b:e0:00:dd:fb:b6:bc:5a:
fa:9f:aa:8f:f1:52:3a:9e:40:06:b0:58:2a:91:47:13:53:b8:
c0:49:2a:2e:fb:6f:a8:eb:35:1d:82:7c:3d:ce:0e:14:cd:40:
71:b2:f4:76:96:7a:24:d0:1e:f0:a9:f3:de:90:ac:78:79:05:
d3:21:f9:d3:c1:98:44:6f:3c:fc:2d:e2:0d:31:70:c9:1c:ba:
b0:80:3b:72:8e:91:41:d4:08:60:f2:3b:45:32:11:74:5a:da:
19:a9:40:6a:52:97:56:53:8b:28:3b:6a:2d:27:40:83:cd:be:
36:c3:2d:f8:c3:e3:7d:74:c7:0c:b8:76:3f:f7:97:e6:47:f7:
74:4e:1d:8b:a4:e7:6e:4b:44:59:c6:43:cf:5b:16:d8:59:9d:
79:ae:31:83:43:11:07:28:b9:92:74:dd:c5:9b:92:22:8e:25:
70:ee:2f:9b:47:76:b1:ff:6d:68:f5:9a:73:b8:7a:ad:2b:a7:
d5:3a:00:2d:13:a1:80:4b:58:bc:05:82:72:3f:09:7e:c3:70:
c6:b7:1b:64:c3:98:0f:c1:60:73:39:df:c4:31:1f:77:5b:c2:
d4:ba:c8:0f:3a:4e:74:bf:17:6d:d9:78:92:43:e7:ff:6d:4a:
59:13:de:45
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICXMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDIyMTc0NTQ3WhcNMjYwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE5MDgxODExMC8GA1UEBRMoNEY0NUZBNjlEOUU1RjU1MDg0RERDOTIy
ODk1Mjc2QTY0MDIzOUMxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMANWIfvE/30chxrtw+JGlEkaV6hxI38TB9bjvz6btofot4xWM4DpRLVnNcy5SOS
2b60GhSkvZLUdKX1a8Npb1ajxVw6kbX4wpvuzwTxSCWaig99R/vzTD5uWP0iNNwB
ZUw1+KRn4KKPH+Ys37KcVI4FvlNw8ApbmgjqUOUn56NA6caesF+TqOQB/svdngnO
PMu5lk0V7Or/buU10d1D5LqTmhqTlCT+ygUVtPYgXsdz4yK07eWpQHn+Bz1kc9kU
BY90Oan2WXVKmtreCGFVtxaAc7TIGascQVESf7Q8ad+oYVavHcH3VwUw4zWmtSYU
tRSQtlIElMKjnbR95CF/TbMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRPRfpp2eX1
UITdySKJUnamQCOcHDAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTA4MTgvNzUzQzMwMTg5MDlEMTFFRjk3MTdGNjUwQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTkwODE4Lzc1M0MzMDE4OTA5RDExRUY5NzE3RjY1MEM0RjlBRTAyL1QwWDZhZG5s
OVZDRTNja2lpVkoycGtBam5Cdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaC/KDANBgkqhkiG9w0BAQsFAAOCAQEAPQ+WUbWSb0XI8GvgAN37
trxa+p+qj/FSOp5ABrBYKpFHE1O4wEkqLvtvqOs1HYJ8Pc4OFM1AcbL0dpZ6JNAe
8Knz3pCseHkF0yH508GYRG88/C3iDTFwyRy6sIA7co6RQdQIYPI7RTIRdFraGalA
alKXVlOLKDtqLSdAg82+NsMt+MPjfXTHDLh2P/eX5kf3dE4di6TnbktEWcZDz1sW
2Fmdea4xg0MRByi5knTdxZuSIo4lcO4vm0d2sf9taPWac7h6rSun1ToALROhgEtY
vAWCcj8JfsNwxrcbZMOYD8FgcznfxDEfd1vC1LrIDzpOdL8Xbdl4kkPn/21KWRPe
RQ==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org