Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer
File: lFOfgqNeshWO18Ni1boVQz5-0uE.cer (raw, json)
Hash identifier: R0UaN4pvWIS7CtS3b5Qs2vlwxa9Flhqrtn6SaqNQDZU=
Subject key identifier: 94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5C8B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 18 Oct 2024 05:05:55 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.10.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23691 (0x5c8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 18 05:05:55 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9179EAE/serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4a:9e:1e:75:88:35:bf:04:33:c5:61:5f:b3:
d9:94:36:85:ef:cc:3d:b2:42:74:ab:f2:9a:b7:fa:
c8:a5:da:c5:5d:d1:5e:03:cc:5b:14:06:18:b7:24:
0c:1b:9b:f2:9f:9e:76:00:fe:e4:14:69:50:27:e1:
54:70:2b:f4:14:e1:60:da:7f:99:f7:b1:89:d6:09:
01:6e:1f:af:35:ec:a0:64:4c:cc:ea:f0:9c:ad:17:
7c:fd:53:79:26:72:5f:d3:12:81:bc:8b:76:c3:f4:
6e:04:92:5b:29:4e:ce:ed:b0:c9:5b:21:51:a4:6f:
51:a7:29:54:1a:30:c0:e7:75:64:d8:6b:04:72:a0:
84:59:db:22:86:05:2d:fa:d1:a2:8f:7a:e2:26:8a:
15:4e:16:be:c8:51:9c:aa:2b:5b:58:a2:4e:1b:04:
98:16:f0:98:a1:7a:cb:f5:88:e2:6a:f5:f8:a8:bc:
6e:d0:89:82:0b:87:43:95:90:1f:03:d4:85:95:cd:
48:3e:8d:f1:df:e8:37:76:b0:2e:1d:e7:cd:e4:8c:
a5:da:e7:b3:8d:36:69:8c:9d:e7:88:ea:51:b9:41:
48:33:5f:59:dd:b8:8c:08:fa:17:e1:39:23:70:78:
65:1e:4f:72:56:74:5f:aa:7c:5c:33:83:c0:eb:40:
14:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.10.0/23
Signature Algorithm: sha256WithRSAEncryption
33:79:cd:87:a3:2a:92:6c:ac:7d:1a:9a:f3:9d:aa:be:d3:6d:
a4:9a:79:40:f2:da:15:97:9c:08:9e:8d:da:89:9a:ef:36:15:
d9:be:f8:65:3c:df:e7:11:8f:51:05:59:39:65:28:e5:49:3b:
d8:6c:3b:e9:39:63:36:0f:29:44:e6:42:4d:f2:c6:3b:e9:2f:
db:d2:ea:39:cb:16:09:33:f2:14:db:72:68:8f:eb:81:bd:0e:
2e:55:e3:cd:d5:fb:b8:0e:e8:24:d5:d1:cb:1a:db:cb:57:f4:
ec:ce:99:25:d5:3e:9e:02:65:69:82:a7:06:db:f2:37:14:c7:
04:66:fd:0a:1b:04:7c:53:b9:ac:91:22:45:91:8e:c8:0e:17:
47:5c:fb:80:0a:3e:fa:8c:a7:23:b0:f6:0b:24:59:c5:a0:5e:
85:dc:1e:87:6a:5a:3d:61:1d:80:21:4f:78:40:02:4a:a3:7d:
16:e8:e3:13:ac:11:24:67:db:f2:cb:89:be:b3:9b:b7:8b:ae:
51:81:00:6b:4b:c8:45:8e:e7:fa:c9:57:f1:36:ff:b5:e2:33:
7f:24:0b:aa:aa:b5:46:ff:d9:b8:38:65:52:0d:d5:a7:42:bb:
30:41:6a:6e:16:de:1a:46:7f:3a:c8:b9:29:45:0b:e8:25:00:
1d:e5:c4:fa
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICXIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDE4MDUwNTU1WhcNMjYwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE3OUVBRTExMC8GA1UEBRMoOTQ1MzlGODJBMzVFQjIxNThFRDdDMzYy
RDVCQTE1NDMzRTdFRDJFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALpKnh51iDW/BDPFYV+z2ZQ2he/MPbJCdKvymrf6yKXaxV3RXgPMWxQGGLckDBub
8p+edgD+5BRpUCfhVHAr9BThYNp/mfexidYJAW4frzXsoGRMzOrwnK0XfP1TeSZy
X9MSgbyLdsP0bgSSWylOzu2wyVshUaRvUacpVBowwOd1ZNhrBHKghFnbIoYFLfrR
oo964iaKFU4WvshRnKorW1iiThsEmBbwmKF6y/WI4mr1+Ki8btCJgguHQ5WQHwPU
hZXNSD6N8d/oN3awLh3nzeSMpdrns402aYyd54jqUblBSDNfWd24jAj6F+E5I3B4
ZR5PclZ0X6p8XDODwOtAFEkCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSUU5+Co16y
FY7Xw2LVuhVDPn7S4TAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzlFQUUvQTQ5Q0REQjg4RDBFMTFFRkE4RkU5MzcxQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc5RUFFL0E0OUNEREI4OEQwRTExRUZBOEZFOTM3MUM0RjlBRTAyL2xGT2ZncU5l
c2hXTzE4TmkxYm9WUXo1LTB1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaC/CjANBgkqhkiG9w0BAQsFAAOCAQEAM3nNh6MqkmysfRqa852q
vtNtpJp5QPLaFZecCJ6N2oma7zYV2b74ZTzf5xGPUQVZOWUo5Uk72Gw76TljNg8p
ROZCTfLGO+kv29LqOcsWCTPyFNtyaI/rgb0OLlXjzdX7uA7oJNXRyxrby1f07M6Z
JdU+ngJlaYKnBtvyNxTHBGb9ChsEfFO5rJEiRZGOyA4XR1z7gAo++oynI7D2CyRZ
xaBehdweh2paPWEdgCFPeEACSqN9FujjE6wRJGfb8suJvrObt4uuUYEAa0vIRY7n
+slX8Tb/teIzfyQLqqq1Rv/ZuDhlUg3Vp0K7MEFqbhbeGkZ/Osi5KUUL6CUAHeXE
+g==
-----END CERTIFICATE-----
Generated at Wed Oct 23 20:55:01 2024 by rpki-client on console-ams.rpki-client.org