Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer
File: XZRtT0edN7zhcAywut1RosPfYg8.cer (raw, json)
Hash identifier: HOw0QiUJZg6WT+psxCWASn0W3gZpl8nltFKo0rSvK8g=
Subject key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Oct 2024 06:53:15 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 157.20.65.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23724 (0x5cac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 21 06:53:15 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:ed:e1:07:c1:fc:a2:86:23:86:3d:fd:e5:
6b:4c:9f:97:d4:be:2d:56:7e:5b:b1:f1:7f:2c:20:
85:39:ad:08:a6:3b:cf:94:f0:0e:66:49:fc:f0:4e:
6e:dc:5d:44:cc:43:e7:d7:56:1c:ff:4d:ef:f3:bd:
ce:d3:b4:30:c7:6a:75:ce:00:23:1d:5a:6b:3a:15:
28:27:d6:d9:b0:40:14:9f:53:3c:03:a7:06:f9:57:
eb:b0:53:b5:5f:02:9c:91:c1:23:8e:fb:19:ec:bd:
97:d3:77:45:f3:52:1f:28:17:1b:d8:ef:1c:73:96:
0d:76:4d:e4:d9:82:80:0d:d9:7d:65:c1:1c:8a:d9:
29:e1:51:a0:cc:50:d0:75:d2:12:7e:89:94:ec:80:
fa:d7:2a:2a:3c:f1:a5:18:1f:6b:de:1a:f8:2c:3c:
10:ca:83:ef:52:da:cf:10:e6:ad:4f:cf:09:ad:b6:
75:f8:d6:3d:bc:50:d0:7a:1b:e5:bf:bc:1b:ec:84:
51:44:5a:7f:6d:bc:5c:30:a8:e4:55:12:ff:0c:a0:
61:8b:4f:82:5c:03:45:54:32:f4:82:34:f7:53:36:
4d:45:d2:76:45:70:df:68:9d:2b:f5:47:69:55:09:
86:f0:71:cd:89:25:fa:b6:7f:76:c2:e1:12:03:8e:
2a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.65.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:ba:0a:46:d7:ba:7d:0e:b2:e6:4f:32:c9:ca:e3:3b:bf:1c:
8c:59:84:c5:72:3d:39:4f:4a:c9:49:60:ac:a9:53:8d:01:1d:
25:43:e8:1a:02:3e:15:4a:3f:17:39:e0:b0:53:59:69:2a:b8:
01:d5:a6:d7:09:f4:7f:06:7c:89:7e:b2:cb:10:d8:a1:dd:ac:
54:bf:5e:e1:21:8e:13:58:3d:75:ac:56:24:f9:5b:10:e5:98:
20:ca:47:5a:75:94:e9:5e:f8:38:56:f8:9a:1b:88:0c:f7:15:
ad:8b:8a:79:ff:cc:79:11:1f:e1:cc:67:1c:fb:9a:37:15:4b:
ee:f7:f9:f8:3e:69:18:4d:c9:47:d6:b9:78:1c:47:a7:6b:07:
c2:67:d1:4b:66:32:fe:11:85:1f:47:b9:72:aa:78:90:1b:f3:
1f:89:e8:9a:d3:62:b4:cb:72:02:44:cd:ba:a3:3d:fb:2c:2f:
ba:59:68:a1:41:ab:2d:fd:da:58:6d:10:d5:da:7c:6c:2b:b5:
4a:ea:22:5f:c1:7a:d7:06:07:41:bc:e6:b6:56:24:1d:23:8d:
28:73:d3:83:2a:16:4d:d0:02:2e:4a:65:52:04:b2:5f:58:55:
43:d1:5c:ed:df:87:bd:30:fa:f0:bc:08:a6:af:5e:86:bb:6f:
a2:ce:00:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:16 2024 by rpki-client on console-fra.rpki-client.org