Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/quxIh3HXuUGFyKkP420pfedshLw.cer
File: quxIh3HXuUGFyKkP420pfedshLw.cer (raw, json)
Hash identifier: talpMSQ9q+B13R8NxfpLsIxGbpa3vahx4/+F/0Pjvac=
Subject key identifier: AA:EC:48:87:71:D7:B9:41:85:C8:A9:0F:E3:6D:29:7D:E7:6C:84:BC
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5CD3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/quxIh3HXuUGFyKkP420pfedshLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Oct 2024 10:13:27 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.82.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23763 (0x5cd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 24 10:13:27 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91C60A5/serialNumber=AAEC488771D7B94185C8A90FE36D297DE76C84BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:80:6a:20:65:04:28:3f:b9:6c:e7:7d:1b:7b:
9b:18:a1:19:f4:66:84:a9:f6:e6:7f:5e:63:6d:3a:
11:12:02:4a:1b:de:5c:da:55:fc:e3:c7:9d:d4:3e:
e5:4b:c4:c7:c8:ee:c7:a5:fb:cb:c0:5c:62:75:17:
08:3a:ba:fd:aa:46:4a:e2:64:b9:f6:cf:48:76:70:
85:a9:e0:aa:ed:49:5a:b7:ab:5c:3c:7d:fd:d2:66:
96:dd:47:bb:b7:be:03:af:f9:f8:ff:81:4e:ac:5d:
0b:67:19:4a:4d:4f:8d:0d:0a:ee:2d:94:4c:a1:59:
6f:8c:79:cc:05:4a:b5:a0:b1:37:26:ae:16:bb:36:
1f:58:cb:cc:ed:11:83:26:3a:19:3d:14:63:bb:cd:
f4:fd:90:61:69:b9:8d:b2:20:8c:bb:5f:3d:25:5e:
4c:01:f7:39:43:af:5f:55:a4:89:ba:88:9f:71:6b:
b1:f9:2b:94:8b:52:d8:a5:a8:c0:b6:49:9d:6c:88:
32:1f:99:b3:91:82:b1:1c:47:6c:6a:9b:25:54:57:
4b:20:dc:7a:4c:5f:70:db:85:a2:b6:fc:7a:35:9e:
c9:9a:ec:7a:1a:38:16:72:b8:8f:5c:fa:b2:6b:e8:
8a:39:7b:ad:5f:28:88:4f:2a:81:d2:83:96:ac:54:
48:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:EC:48:87:71:D7:B9:41:85:C8:A9:0F:E3:6D:29:7D:E7:6C:84:BC
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C60A5/997B366E91F011EFB6965C24C4F9AE02/quxIh3HXuUGFyKkP420pfedshLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.82.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:eb:c0:29:54:e7:a2:dc:be:b2:9e:f1:de:a3:f6:cc:99:b6:
75:ae:11:10:8b:de:52:16:f1:36:5f:26:c5:26:6f:29:eb:11:
7a:59:40:61:6c:c6:6b:65:10:90:49:21:96:c2:cb:8d:95:2c:
ae:50:a0:f4:ff:04:71:43:62:57:f3:54:e1:d8:d9:52:2a:38:
7f:66:5f:3d:db:57:09:1a:ed:35:af:b9:27:81:77:d6:73:24:
43:c2:5e:ea:3c:5f:7b:d3:07:8f:e0:ba:9e:e2:47:ef:10:4f:
2d:a9:68:e0:8a:3b:d0:4e:72:aa:67:87:c9:86:db:e2:48:7c:
37:29:3f:0b:d5:8f:65:5f:f1:91:83:83:d0:01:0a:fd:0a:86:
13:f9:d0:85:34:1e:66:c3:87:01:88:b8:65:f4:bd:35:1e:cc:
bc:dc:15:b2:4f:d7:e4:d1:c0:83:c8:dd:84:ef:b0:b7:d1:bd:
f9:96:9b:14:22:77:a0:61:19:15:28:53:3d:00:6d:b0:3b:38:
64:e5:d2:da:0a:33:9c:02:0a:d8:fc:0a:8e:09:c1:f1:4c:51:
3e:ea:22:76:42:d5:45:be:6c:6a:40:03:1a:82:0e:78:a0:e3:
40:8d:f8:f9:92:dd:3d:7e:a5:60:a7:ba:72:ba:a9:c1:10:8b:
cb:68:a6:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:40 2024 by rpki-client on console-ams.rpki-client.org