Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer
File: TiWbqHpAtm2EKsjOCup4TkvXOC4.cer (raw, json)
Hash identifier: Q8QnPg/KVyxeuiJYv5A1MxkjuU5GeldIr1OLPLdjYWk=
Subject key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 564D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 01 Jun 2024 08:46:55 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.40.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22093 (0x564d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 1 08:46:55 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ab:95:48:31:79:30:e5:74:7e:c4:bc:49:04:
2d:1d:a9:4f:83:89:cb:0e:ce:1b:09:de:61:87:1f:
8a:4f:ed:78:1e:47:97:9b:d3:39:b5:98:ad:99:36:
6c:1e:0a:7f:a9:0a:e0:77:de:85:37:6f:35:56:90:
e1:5c:46:d8:b4:39:d9:2d:d2:40:64:86:86:ea:18:
fc:0b:84:ae:13:4c:b6:47:33:3b:a9:fa:63:ee:1a:
01:7a:61:95:b7:e1:97:a2:62:d2:4a:78:5b:21:a3:
6c:d7:44:cd:aa:13:07:dc:6f:b9:b9:8d:e4:7d:09:
2e:2e:a0:ba:aa:5d:fd:84:2f:d8:b0:0a:1d:f5:37:
d1:b2:50:e2:98:a6:2b:f2:89:df:42:86:cc:97:e5:
89:4a:f2:52:0f:92:0d:be:99:0a:2f:51:b2:40:97:
0e:0f:98:dc:6c:2e:c8:28:7f:df:35:c1:11:e4:6a:
d7:1b:3b:f5:15:ec:1f:d1:82:57:41:98:0d:da:df:
51:b2:cd:d8:3f:26:be:15:6c:0a:6e:83:cd:81:a1:
5a:2f:19:da:ba:3a:75:fe:e7:d1:a6:54:20:89:39:
a2:be:f4:6b:aa:6a:d3:94:a9:ed:3a:da:8f:b7:21:
df:34:7e:23:6b:29:81:0f:d4:b7:c9:94:60:48:34:
c1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.40.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:54:b1:3b:0c:98:ac:ca:8b:2e:a3:c3:64:35:3e:06:74:57:
94:a2:fe:27:98:b3:eb:f6:8f:14:84:52:83:21:01:41:98:07:
27:f2:d1:f5:e0:29:7f:64:9d:18:62:93:d4:fd:81:59:0d:96:
21:18:2d:1c:bc:41:59:6c:0f:c1:e7:fe:b8:50:e3:65:74:e6:
70:fa:30:fe:00:13:0b:8f:01:99:9a:b7:53:c0:eb:40:51:f3:
d7:3b:7e:a8:02:bd:d9:9f:7d:3b:2a:5e:06:d2:5d:4d:d6:6a:
b4:77:18:b1:fe:c7:f2:de:0e:f3:84:6d:78:64:f9:48:4b:04:
6c:70:2b:e2:b0:f4:c1:c3:50:0a:4a:2a:55:5d:cc:b8:cd:9e:
dd:4c:c5:81:2b:16:d4:f6:01:11:6c:3b:5d:4c:76:1d:4a:08:
00:76:08:7d:3d:f1:d3:41:91:5c:14:2e:f7:7c:36:b8:a5:5c:
bf:cc:c8:77:ab:eb:b7:ea:0c:bc:1f:56:68:53:a9:18:7a:6b:
5d:3f:a9:f9:21:03:d0:3f:8a:58:7e:b2:7b:e4:46:ae:1f:f6:
16:7c:79:10:71:4c:16:30:68:30:76:e3:03:c4:d5:b5:10:06:
f6:7a:4e:2f:97:c4:47:fa:f3:12:26:e9:ac:b3:13:ad:56:cf:
eb:99:26:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org