Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TNneNy0DSKwzsWel144wE_wDVx8.cer
File: TNneNy0DSKwzsWel144wE_wDVx8.cer (raw, json)
Hash identifier: j4xU6ocs08XiQc+6dF1nJIyAY19fQ/1aCcNwQQ1Dq18=
Subject key identifier: 4C:D9:DE:37:2D:03:48:AC:33:B1:67:A5:D7:8E:30:13:FC:03:57:1F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B4B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/TNneNy0DSKwzsWel144wE_wDVx8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Sep 2024 21:35:49 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 45.157.168.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23371 (0x5b4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 23 21:35:49 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91DCD09/serialNumber=4CD9DE372D0348AC33B167A5D78E3013FC03571F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7e:86:7a:79:22:1b:bd:f3:b6:5a:20:15:3d:
b4:51:c1:78:a8:03:1c:6a:2c:f1:c9:ee:9c:e8:d3:
8f:0b:f5:65:de:50:14:36:f8:65:29:78:86:9d:54:
c4:c1:dc:bd:25:f5:0f:89:c4:c8:62:03:81:1a:37:
73:dc:f3:60:22:60:fc:65:b8:f7:d6:36:93:2f:6f:
f6:b2:f0:c2:ae:3d:c6:7d:9d:26:f4:e6:1e:25:da:
6c:7b:1c:48:e3:ab:fa:af:df:a1:a9:bf:1c:77:be:
83:15:24:b7:7c:7a:f7:f7:f2:05:1a:47:53:b6:07:
0e:95:8a:0e:85:5b:72:52:d6:b8:c8:c1:3e:37:48:
70:01:d5:71:e4:36:48:64:ff:23:fb:1a:5e:89:e8:
d7:11:31:98:9f:79:6f:a6:35:7c:bd:a8:ee:0e:32:
54:18:ad:c0:f3:bc:e8:12:b3:d6:08:ca:6a:e2:56:
e3:71:18:15:e8:a3:fe:fe:9d:ca:cb:55:55:2f:73:
ec:21:5d:d0:67:16:da:84:b2:e0:d0:4e:c7:cf:6c:
b4:55:2b:07:62:1e:64:66:a4:c4:c2:70:e1:80:fe:
f6:6a:3f:1c:6c:e2:3f:29:de:9e:d5:1c:94:ea:8a:
42:8d:6e:d9:59:9f:0b:20:9f:26:2f:31:8c:d1:3c:
7f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D9:DE:37:2D:03:48:AC:33:B1:67:A5:D7:8E:30:13:FC:03:57:1F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/578B06CC886411EDBF995F42C4F9AE02/TNneNy0DSKwzsWel144wE_wDVx8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.157.168.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:6c:dc:f9:3c:fb:7b:cc:d1:c5:8e:28:55:54:2b:e8:36:88:
88:41:4e:2b:45:cd:59:8b:24:c4:cd:d7:cf:28:93:09:93:4b:
68:de:39:13:5f:e3:64:55:48:04:5b:51:3f:fa:ed:a5:e4:3e:
7d:d0:58:17:e4:6a:60:16:75:19:06:1a:1b:fc:b5:61:53:dd:
2b:1b:b2:1a:7a:65:2f:75:8c:a8:82:51:1f:a4:87:3a:db:07:
64:38:7c:58:66:31:9c:6c:35:36:4f:97:3e:00:4b:54:28:c0:
6d:e3:38:cd:28:ce:d5:c2:e2:51:c6:88:db:b0:fe:ea:5c:ca:
43:c6:19:dc:34:e0:b1:2a:eb:ae:d0:0c:d4:4d:13:db:6e:55:
fe:14:04:73:6c:05:a6:b8:82:53:2e:40:4a:b3:7b:1a:52:4c:
63:ce:38:b5:8c:dd:98:6b:60:a3:79:68:c8:dd:af:20:94:ae:
51:73:06:03:86:ef:e6:22:02:e8:a3:a1:f2:ac:d3:76:28:aa:
47:ee:ad:73:e5:80:3e:2b:47:91:07:89:bd:30:55:0f:a0:c5:
51:a5:d1:ad:e4:28:74:7f:49:46:7d:bb:27:53:c5:67:8e:7e:
aa:03:df:42:f4:b3:61:d6:e0:24:6d:27:0c:cb:2a:5f:91:d0:
42:8e:a1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org