Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer
File: pRz7iig43CPyh2RKRzXvwT2MMRM.cer (raw, json)
Hash identifier: tIzxGWhKAtO8wSRnZNFixcN5c6+KQPKorHLr3vOeQAQ=
Subject key identifier: A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Oct 2024 08:12:16 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.187.222.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23735 (0x5cb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 22 08:12:16 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9197724/serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7a:57:15:4b:1f:15:69:c6:6e:6a:5b:70:74:
7e:51:d6:66:e1:e0:63:ac:ad:f9:5a:e0:1a:c6:98:
e4:0b:10:50:0b:f1:32:a6:95:19:67:1b:5d:48:e7:
ed:25:ae:cd:11:ac:ec:d8:00:b5:54:e3:c1:7e:46:
b6:56:bb:b6:82:30:e1:6b:15:f7:eb:26:9c:22:f6:
17:4b:be:94:bd:15:c1:67:c1:fd:60:e2:cb:aa:51:
42:59:75:0f:b2:99:cd:cf:97:62:4e:8e:51:81:b1:
49:8f:3e:82:5e:67:8d:31:d5:24:25:12:3f:a4:b5:
67:d0:1f:01:34:34:5c:44:10:d7:4d:b5:09:da:d3:
73:bf:33:73:61:86:2a:1c:6e:0c:c6:57:69:a5:99:
41:65:c8:1a:69:84:b7:1b:07:27:eb:6d:d1:e4:9b:
82:ec:69:23:ec:d1:58:b4:93:e1:99:23:31:c8:e9:
a8:d2:95:8d:60:74:c0:bc:72:d6:43:1e:e3:fd:5b:
a9:1f:81:ec:28:46:13:88:e9:39:76:c1:88:c0:7a:
05:d6:6d:1b:30:fa:71:bd:ad:ec:e4:7f:7b:cb:2b:
49:9f:da:90:23:fc:d0:02:52:e3:23:55:ab:1c:a8:
07:f7:00:d3:f4:55:ad:43:c8:02:10:f1:ed:13:b0:
84:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.222.0/24
Signature Algorithm: sha256WithRSAEncryption
66:27:5e:95:76:a8:fe:b6:26:3d:f0:98:f2:59:2e:d3:99:fd:
c1:6d:fc:03:d3:6f:89:48:94:3f:c7:bc:fd:61:9f:ab:cf:79:
81:5c:10:6b:ee:a0:e7:62:1f:68:f5:99:ef:c7:67:1b:7d:7f:
cf:d7:df:33:a1:8e:84:92:b3:3a:0e:01:ef:c5:12:66:86:f9:
51:f1:bf:95:79:cb:77:6a:80:67:6a:fe:8c:8f:b3:94:bb:c8:
9d:09:43:13:7b:ae:e9:7c:6a:49:7d:49:46:a5:ff:a3:7f:7f:
70:c6:80:2f:34:24:64:69:2a:53:c8:b1:95:3d:fd:59:39:d4:
f9:46:03:65:ce:5a:c6:12:01:70:c4:37:5d:5a:f0:bc:cc:15:
47:98:60:c2:fa:b9:f0:ce:58:71:67:13:0d:71:19:78:29:15:
40:50:e5:20:7b:9f:cc:d6:82:8c:89:1d:d5:c8:3e:31:73:b8:
65:6e:07:b3:88:8b:ef:92:9c:4e:b7:3c:f3:0b:10:91:3a:90:
fe:9b:be:94:df:61:85:0f:9a:a7:60:70:8d:8c:d0:7c:c0:e3:
d6:f3:f3:6a:30:00:b6:6c:69:38:f3:c3:fc:8b:c6:d6:eb:2f:
81:7e:61:b7:53:a6:e8:47:86:88:77:44:99:10:f5:24:cb:bd:
72:20:25:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:41 2024 by rpki-client on console-ams.rpki-client.org