Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TfrxJZm8ip9x2mCrOSDgofQBWOU.cer
File: TfrxJZm8ip9x2mCrOSDgofQBWOU.cer (raw, json)
Hash identifier: FgbYXicKQliP5UYLbRpsWTKdp3WQJFxMciGLAYZFbuU=
Subject key identifier: 4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CC3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Oct 2024 23:34:00 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.20.77.0/24
IP: 160.191.66.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23747 (0x5cc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 22 23:34:00 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9186249/serialNumber=4DFAF12599BC8A9F71DA60AB3920E0A1F40158E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:f6:55:70:fa:5a:39:b4:8d:fb:17:f7:92:
61:b6:2c:4d:29:3c:2b:12:08:42:e4:bf:79:af:53:
49:41:92:d2:0a:a9:72:1a:4a:89:77:0c:d0:21:d7:
a5:9b:dc:97:66:8e:aa:b0:0d:ff:57:48:b5:01:79:
35:eb:4c:e9:34:d9:ab:ff:2e:59:8e:5e:a3:a8:a5:
78:67:73:d6:fc:2d:2a:7e:0e:d0:07:dd:67:7a:99:
ad:ee:9b:13:31:0f:ed:dc:e9:23:5c:a8:19:15:ab:
44:90:69:ef:70:a0:9b:49:16:8c:22:12:b4:4b:a9:
5b:d6:7a:66:1b:93:33:10:23:e2:87:55:bd:b0:15:
d4:7c:32:2f:3c:2e:38:4d:c7:5e:5e:29:41:cf:dd:
79:62:2d:4e:b1:d7:f9:01:e1:e1:1e:46:49:03:b5:
d7:ca:e7:34:66:50:5e:bb:1f:40:d3:4f:1b:bf:7d:
03:51:46:0d:6f:62:9b:ae:8f:5f:75:24:19:c7:8d:
8a:b5:d8:8b:cc:75:51:7b:61:fb:1e:9f:83:35:9a:
be:05:a5:41:b8:55:d5:d0:a1:04:9d:45:7c:ba:f0:
1d:cd:e0:9c:96:02:83:b9:37:5a:59:cd:8f:eb:75:
a4:ca:ae:b2:75:a2:ee:41:8f:7b:e0:79:c1:7d:61:
64:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:FA:F1:25:99:BC:8A:9F:71:DA:60:AB:39:20:E0:A1:F4:01:58:E5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186249/98726D6ED17011EEA6151C4DC4F9AE02/TfrxJZm8ip9x2mCrOSDgofQBWOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.77.0/24
160.191.66.0/24
Signature Algorithm: sha256WithRSAEncryption
32:a4:01:6b:68:b9:0b:6f:8f:f2:e1:59:83:2e:58:3d:92:01:
43:38:4d:bc:19:85:87:f9:3b:8e:07:31:b7:a5:fc:6c:b4:3a:
de:9e:ad:8a:83:2e:b5:65:ba:d9:50:9c:55:4a:99:14:ac:23:
43:38:8b:ae:e1:38:83:c3:b8:2c:a6:c7:df:cb:3d:71:fc:fd:
a9:ee:5d:0a:2c:f7:ac:fe:ae:8a:57:7a:04:e7:8c:24:93:e7:
3f:6c:e6:b0:7e:7f:ad:fd:8e:e6:2f:36:cd:66:be:c2:fc:dd:
57:f4:36:0f:58:5f:96:68:ba:16:37:df:1a:15:0f:d7:ce:0d:
7d:14:f3:d7:5a:8a:f5:84:94:2e:b1:3c:7e:6c:7f:01:d2:b4:
da:84:7c:b4:5e:70:99:67:78:70:44:2f:48:c3:89:40:1c:81:
0e:be:f0:a7:98:b7:1a:e3:e3:67:34:2b:a5:0a:c8:2e:22:04:
76:b6:27:76:87:03:fd:d6:aa:9d:95:b2:d5:b0:5f:b1:4b:89:
c7:b3:66:d8:7f:c6:f4:5e:8c:b2:20:a0:86:59:42:b3:ae:a0:
00:1a:7c:d8:fe:ab:d1:4c:fb:bf:35:12:20:b5:59:26:9b:c9:
a4:d4:30:03:b8:1f:4d:5d:5f:75:e3:0f:8f:31:ed:2d:8b:a9:
ae:73:c0:47
-----BEGIN CERTIFICATE-----
MIIGAzCCBOugAwIBAgICXMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDIyMjMzNDAwWhcNMjUwNTI4MDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE4NjI0OTExMC8GA1UEBRMoNERGQUYxMjU5OUJDOEE5RjcxREE2MEFC
MzkyMEUwQTFGNDAxNThFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALuc9lVw+lo5tI37F/eSYbYsTSk8KxIIQuS/ea9TSUGS0gqpchpKiXcM0CHXpZvc
l2aOqrAN/1dItQF5NetM6TTZq/8uWY5eo6ileGdz1vwtKn4O0AfdZ3qZre6bEzEP
7dzpI1yoGRWrRJBp73Cgm0kWjCIStEupW9Z6ZhuTMxAj4odVvbAV1HwyLzwuOE3H
Xl4pQc/deWItTrHX+QHh4R5GSQO118rnNGZQXrsfQNNPG799A1FGDW9im66PX3Uk
GceNirXYi8x1UXth+x6fgzWavgWlQbhV1dChBJ1FfLrwHc3gnJYCg7k3WlnNj+t1
pMqusnWi7kGPe+B5wX1hZI8CAwEAAaOCAvkwggL1MB0GA1UdDgQWBBRN+vElmbyK
n3HaYKs5IOCh9AFY5TAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODYyNDkvOTg3MjZENkVEMTcwMTFFRUE2MTUxQzREQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg2MjQ5Lzk4NzI2RDZFRDE3MDExRUVBNjE1MUM0REM0RjlBRTAyL1RmcnhKWm04
aXA5eDJtQ3JPU0Rnb2ZRQldPVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQWMBQw
EgQCAAEwDAMEAJ0UTQMEAKC/QjANBgkqhkiG9w0BAQsFAAOCAQEAMqQBa2i5C2+P
8uFZgy5YPZIBQzhNvBmFh/k7jgcxt6X8bLQ63p6tioMutWW62VCcVUqZFKwjQziL
ruE4g8O4LKbH38s9cfz9qe5dCiz3rP6uild6BOeMJJPnP2zmsH5/rf2O5i82zWa+
wvzdV/Q2D1hflmi6FjffGhUP184NfRTz11qK9YSULrE8fmx/AdK02oR8tF5wmWd4
cEQvSMOJQByBDr7wp5i3GuPjZzQrpQrILiIEdrYndocD/daqnZWy1bBfsUuJx7Nm
2H/G9F6MsiCghllCs66gABp82P6r0Uz7vzUSILVZJpvJpNQwA7gfTV1fdeMPjzHt
LYuprnPARw==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org