Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sunaXrOJa-_A39Wn6zDbKTFLuhI.cer
File: sunaXrOJa-_A39Wn6zDbKTFLuhI.cer (raw, json)
Hash identifier: TGJdaAr4RHv7+M2BKnwdxg46uHQ48U/7J3+S5b12Yfw=
Subject key identifier: B2:E9:DA:5E:B3:89:6B:EF:C0:DF:D5:A7:EB:30:DB:29:31:4B:BA:12
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5DA8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BA941/93ACAB64A0A011EF9052325FC4F9AE02/sunaXrOJa-_A39Wn6zDbKTFLuhI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BA941/93ACAB64A0A011EF9052325FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 Nov 2024 02:48:24 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.30.148.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23976 (0x5da8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 12 02:48:24 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91BA941/serialNumber=B2E9DA5EB3896BEFC0DFD5A7EB30DB29314BBA12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8f:02:ba:1c:86:89:e6:05:6f:f2:31:50:b3:
96:df:bc:bf:d2:bd:40:80:60:a7:f9:f4:b3:5c:0b:
8b:e9:9d:43:55:45:e5:6b:22:bc:3c:57:2d:a2:4c:
f8:83:31:57:e0:2b:f8:1e:43:38:78:e6:01:2a:7e:
e4:bd:05:a5:c1:cc:b7:fe:c2:2e:dc:72:d5:ec:9c:
95:01:ac:4b:6b:eb:f1:be:c2:f7:ba:61:65:b8:83:
80:3b:76:16:9d:2d:2c:68:32:dc:d6:05:89:4a:fd:
1c:76:32:f1:ef:d4:0e:ad:d1:f4:e5:ce:8f:09:6d:
70:14:77:76:d2:f9:0e:34:6d:44:16:6b:7d:09:d3:
59:e8:32:77:96:bb:ef:06:80:18:70:d8:0f:df:c0:
e3:c4:15:1e:80:fc:c3:2f:67:83:fc:02:f6:31:7c:
8b:21:f9:4e:8b:2f:8d:10:9e:81:d5:87:63:2f:fb:
a7:c0:60:a0:14:e5:86:f7:ab:b2:fa:12:7c:25:c5:
c7:83:11:52:6e:96:2f:c8:58:37:1a:97:d5:f2:8b:
a5:43:2b:bc:eb:b6:c9:fc:ee:92:9d:ec:f1:5d:f5:
6e:6a:4a:b6:fe:35:f0:f5:94:59:fe:a8:55:ef:e6:
03:ef:d9:46:73:83:ad:16:ff:2f:fb:88:cf:80:0d:
bf:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E9:DA:5E:B3:89:6B:EF:C0:DF:D5:A7:EB:30:DB:29:31:4B:BA:12
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BA941/93ACAB64A0A011EF9052325FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BA941/93ACAB64A0A011EF9052325FC4F9AE02/sunaXrOJa-_A39Wn6zDbKTFLuhI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.148.0/23
Signature Algorithm: sha256WithRSAEncryption
66:7f:5a:7f:cc:4c:26:d7:92:35:7e:e2:41:af:fb:b0:e5:17:
cc:4b:22:0b:a7:df:32:03:4a:b3:d4:c0:82:31:7a:1a:25:97:
46:f0:13:23:74:fd:28:46:dd:a6:8e:a6:bc:60:e6:4b:17:4e:
c9:fc:b0:93:c7:47:61:83:5b:45:ee:f7:3e:50:b1:d7:0f:79:
0e:60:18:b6:07:ac:ed:3b:eb:7b:f5:67:f6:46:24:d3:9e:da:
94:07:e1:4b:4a:c5:c0:11:ed:d6:74:87:8f:c5:f0:36:aa:43:
e4:00:e8:90:c5:a1:da:9e:02:11:44:a7:c4:90:a2:1d:0d:ac:
e0:87:d9:eb:a1:05:26:9c:66:e1:69:bc:d1:d7:6a:b0:a3:df:
9a:e7:be:cc:20:d8:14:ae:88:db:2a:92:91:b8:cc:e2:ee:d5:
e2:bf:33:f7:35:30:53:71:6f:65:9d:7f:af:6e:11:ad:fc:44:
26:43:2f:28:71:e9:ec:89:46:0f:5e:df:ed:9c:e8:11:9b:55:
4e:dd:40:e0:93:65:a8:3a:6f:8e:71:3c:05:be:4b:95:e2:fc:
5d:ef:3a:d4:34:12:a9:8a:58:3a:92:56:10:31:06:09:5c:aa:
3b:d2:86:d4:f9:a2:46:9d:00:60:19:5e:75:fe:f4:39:72:86:
cd:d1:c1:ef
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICXagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMTEyMDI0ODI0WhcNMjUxMjAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFCQTk0MTExMC8GA1UEBRMoQjJFOURBNUVCMzg5NkJFRkMwREZENUE3
RUIzMERCMjkzMTRCQkExMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANGPArochonmBW/yMVCzlt+8v9K9QIBgp/n0s1wLi+mdQ1VF5WsivDxXLaJM+IMx
V+Ar+B5DOHjmASp+5L0FpcHMt/7CLtxy1eyclQGsS2vr8b7C97phZbiDgDt2Fp0t
LGgy3NYFiUr9HHYy8e/UDq3R9OXOjwltcBR3dtL5DjRtRBZrfQnTWegyd5a77waA
GHDYD9/A48QVHoD8wy9ng/wC9jF8iyH5TosvjRCegdWHYy/7p8BgoBTlhversvoS
fCXFx4MRUm6WL8hYNxqX1fKLpUMrvOu2yfzukp3s8V31bmpKtv418PWUWf6oVe/m
A+/ZRnODrRb/L/uIz4ANv2kCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSy6dpes4lr
78Df1afrMNspMUu6EjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QkE5NDEvOTNBQ0FCNjRBMEEwMTFFRjkwNTIzMjVGQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUJBOTQxLzkzQUNBQjY0QTBBMDExRUY5MDUyMzI1RkM0RjlBRTAyL3N1bmFYck9K
YS1fQTM5V242ekRiS1RGTHVoSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaAelDANBgkqhkiG9w0BAQsFAAOCAQEAZn9af8xMJteSNX7iQa/7
sOUXzEsiC6ffMgNKs9TAgjF6GiWXRvATI3T9KEbdpo6mvGDmSxdOyfywk8dHYYNb
Re73PlCx1w95DmAYtges7Tvre/Vn9kYk057alAfhS0rFwBHt1nSHj8XwNqpD5ADo
kMWh2p4CEUSnxJCiHQ2s4IfZ66EFJpxm4Wm80ddqsKPfmue+zCDYFK6I2yqSkbjM
4u7V4r8z9zUwU3FvZZ1/r24RrfxEJkMvKHHp7IlGD17f7ZzoEZtVTt1A4JNlqDpv
jnE8Bb5LleL8Xe861DQSqYpYOpJWEDEGCVyqO9KG1PmiRp0AYBledf70OXKGzdHB
7w==
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:41 2024 by rpki-client on console-ams.rpki-client.org