Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer
File: XwTABfKMKFbHu_R2uRxioC8vxRw.cer (raw, json)
Hash identifier: +wXoM6yFASYzAKas2rXaxmhQcsXphtfN2DHgLwL4lS4=
Subject key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D44
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 03 Nov 2024 14:13:21 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.25.140.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23876 (0x5d44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 3 14:13:21 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:87:b1:2b:af:74:6b:47:d7:86:6d:ca:55:c4:
f8:00:59:0e:e6:88:ce:99:56:58:c9:8c:4c:4d:4e:
64:cd:43:3e:8d:19:dd:f2:76:41:f6:44:36:02:7d:
7c:4d:66:d0:1e:10:ad:29:a4:4c:59:27:0b:85:5a:
90:09:d3:59:8c:bf:6c:39:ac:aa:57:2f:2c:4c:3d:
31:35:ed:cb:b8:43:3c:ed:ab:fe:a6:5a:bf:c3:7f:
3f:c5:79:c5:d5:94:73:95:1e:c6:40:f4:01:93:bb:
8a:1d:61:b6:b1:3e:2d:aa:76:36:82:9c:b2:89:70:
e4:09:c6:29:df:ac:db:f1:25:bb:62:4e:1e:51:b2:
af:1d:1a:96:46:a3:8c:72:c4:37:1e:c1:e4:49:5e:
ab:7d:d4:60:cd:95:75:b1:bc:35:5a:81:5f:18:c3:
b1:1f:1e:52:b4:69:8d:5f:4d:dd:16:d9:96:8c:01:
72:f1:91:db:02:ed:65:2f:5a:4e:18:c2:24:44:63:
25:66:bd:f1:d1:9f:30:88:eb:03:fa:d1:a0:3f:37:
68:4e:02:1e:29:4c:b3:9d:eb:05:fc:27:3e:9c:fd:
98:5c:fa:e9:05:60:09:cf:f2:c6:35:bf:21:3c:0d:
0b:7f:67:c0:0d:76:58:b1:cf:a3:cb:b8:f6:bf:6b:
f9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.140.0/24
Signature Algorithm: sha256WithRSAEncryption
59:15:8e:0f:9e:fd:f8:67:e7:88:95:b6:73:b1:83:07:7a:27:
fc:97:53:36:15:4e:dc:56:6b:cc:a7:c0:fc:e3:2d:a0:9b:a7:
b3:e4:8f:6a:87:db:a7:33:93:9f:64:6b:6f:12:2f:af:a6:8a:
8d:71:2e:dd:7e:d5:17:1b:44:dd:e0:3d:b8:63:cb:fe:b8:81:
e3:62:e6:1e:58:83:8b:46:fe:0e:61:a0:0e:af:eb:3c:08:3d:
3d:f6:a4:5e:2c:10:78:44:da:f7:53:67:7f:96:61:1f:1d:33:
a5:8a:2e:06:35:93:2d:6f:3c:d3:c2:85:90:be:23:a3:bf:ec:
b0:8d:21:70:dc:17:3e:d9:6b:dc:82:03:23:11:b4:34:3e:4f:
44:ce:76:07:90:fe:f0:9f:9f:60:11:8d:1d:b8:36:aa:df:39:
f3:10:ee:c8:71:70:d0:d9:2c:0c:8b:57:77:92:6b:5e:ca:f5:
69:0a:4e:9c:50:db:22:84:e4:9a:5e:77:df:03:00:0f:70:68:
a8:2b:76:4e:72:3a:3b:80:cc:49:81:15:bf:fd:43:91:82:17:
05:46:57:b4:d3:40:d4:ec:bc:1d:88:1c:02:c5:a3:dd:06:aa:
96:e7:1e:42:ce:26:46:08:df:0e:c9:22:52:d3:2d:49:86:fa:
5c:98:d2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org