Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer
File: TnWast4kVGn4MRuSc7VVOH51CpA.cer (raw, json)
Hash identifier: k8Xm/B2BKBSNzG8iha5FRweYiphHZ79OS0Y8Iw6WSHg=
Subject key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5F00
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 02:16:05 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.144.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 05 Jan 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24320 (0x5f00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 6 02:16:05 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f6:06:b1:d7:a7:2d:ba:a1:c1:84:3b:6f:22:
3d:79:ee:09:02:e6:90:ae:58:f6:7c:7d:a3:62:82:
e6:23:1c:85:89:cc:bc:ac:ac:d0:8a:e8:90:90:be:
ea:3b:84:48:1a:e8:be:c3:8a:92:e6:9d:a2:5e:37:
a0:79:32:0b:0c:1f:b5:47:b6:2e:4a:1c:20:dd:6e:
26:22:22:03:6b:37:b7:b9:05:a5:50:bd:ac:8e:25:
ad:b7:e5:ac:78:4d:d8:d2:76:31:b4:1e:44:1d:66:
80:0e:75:93:92:e2:5c:e0:a7:1f:7b:c0:ce:1c:4a:
9e:95:9f:48:ba:4c:d0:a0:ae:93:db:eb:89:21:b1:
a9:06:1b:5b:6f:67:0b:2b:af:49:92:a4:99:e1:bc:
d9:f3:8d:05:5b:cd:49:96:44:4d:51:be:aa:3a:5a:
08:a7:3c:2d:10:33:56:45:b8:97:95:99:28:86:a7:
88:98:0f:dd:27:88:83:ee:69:4a:51:aa:81:21:07:
f2:dc:6f:f2:f8:c5:85:97:6c:ea:be:eb:2b:63:b9:
f9:b9:bc:df:f4:f0:f6:14:be:c8:7a:d9:66:a4:ea:
82:ac:b7:8a:d3:a4:1c:cc:a0:ce:bb:62:38:6c:50:
e0:78:b1:f9:dd:b2:e1:58:e9:f0:b3:a6:c1:bc:6b:
ed:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.144.0/23
Signature Algorithm: sha256WithRSAEncryption
67:e9:99:b1:7f:2c:05:ce:0c:d1:34:44:fc:67:9b:8e:f9:f8:
b6:3b:a5:8f:b0:94:77:e2:7f:60:ef:5c:20:7b:ba:c6:e3:5b:
fb:19:22:65:a7:34:51:0a:e9:5b:a7:d2:2c:ec:5b:ad:d0:1e:
de:25:4a:67:40:8e:b8:a6:96:5b:9d:14:eb:cc:a7:b9:e8:7f:
d4:32:be:2d:19:f5:6d:04:cd:bd:18:00:da:88:50:92:d0:79:
8c:eb:c2:90:36:26:9a:d6:81:f4:85:a2:4b:71:63:6d:f7:9d:
69:08:79:46:e2:0e:c8:e0:dc:e3:9c:8c:75:51:b4:6c:4c:04:
42:0c:85:23:44:f1:96:9d:c5:b9:8d:bb:b2:fc:1f:4e:84:2b:
a9:71:54:da:b0:1d:37:97:f9:d8:f4:69:63:15:4f:c3:95:7d:
8a:54:e1:66:30:c3:c8:36:67:ee:b1:03:32:cf:69:e0:f9:ed:
b0:41:95:34:56:56:67:cb:2e:88:db:38:14:41:8f:81:bd:32:
a5:bb:28:a9:70:2c:54:57:b4:90:00:ea:24:8f:a3:35:9e:36:
19:ce:a2:f9:79:57:f8:5f:06:b9:15:97:91:2e:e1:ab:62:7e:
2f:ac:41:fc:aa:d2:8d:64:e0:bd:73:5c:81:73:09:71:0c:6a:
06:f3:1b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 29 15:42:09 2024 by rpki-client on console-fra.rpki-client.org