Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer
File: tDxOPTL5W1BV0E_cAfhRljfImm8.cer (raw, json)
Hash identifier: 8bORwd42tw8v4ndVgyhskGWpRsNlw0+rFvXXGs3XpXA=
Subject key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 57E9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Jul 2024 08:52:46 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.182.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22505 (0x57e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 8 08:52:46 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a5:ca:d3:13:ec:b0:05:57:55:e2:f0:d3:62:
50:eb:e4:93:de:da:f0:6a:5a:e2:3c:e1:05:7a:08:
68:cc:6d:57:96:37:e4:aa:af:c7:55:fa:d9:f9:95:
2e:a0:f3:6e:7d:ed:9a:be:24:ba:59:01:42:f6:d8:
9e:9d:a5:9f:2f:6f:b6:68:13:1c:7f:9f:4e:37:c6:
4a:7a:26:a8:3c:9c:7e:cc:39:bb:a3:66:df:cc:f4:
f6:06:2a:96:73:a1:80:82:25:19:be:83:e5:8f:0f:
f4:29:09:05:e9:18:75:dc:93:08:7c:c7:24:aa:21:
dc:76:e0:e9:f8:86:7f:fc:68:ae:d5:75:0c:e0:d4:
87:91:81:15:85:d7:f7:cc:bb:8e:bb:dd:b4:38:28:
71:f4:fe:07:6f:86:0d:45:29:b9:17:d3:ef:c1:74:
34:cd:02:8e:5e:3c:2d:36:aa:f8:67:0b:fe:af:46:
b2:fe:bf:e9:5a:5b:d5:51:53:18:9f:e5:cc:f2:ba:
80:58:8a:91:d5:e2:64:69:f9:c9:1d:06:7c:d4:10:
d6:e3:1c:ed:43:b6:a5:d1:48:ae:fc:01:75:ac:07:
35:65:6b:e4:43:16:99:d3:3f:c8:48:a6:d3:9f:72:
d2:6b:54:bc:47:fd:85:6b:bf:47:e6:07:c9:e9:79:
c5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.182.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:f1:8c:57:eb:12:24:8e:25:bb:f4:22:54:01:9a:0a:d2:6b:
64:c4:88:1b:5b:cf:b8:06:aa:a2:d6:b3:63:8e:a9:2d:ee:98:
57:8d:6d:af:f0:d8:d5:de:45:ae:13:97:fb:83:74:e5:3a:79:
ad:fd:2d:be:d5:c3:a2:17:7d:9f:7c:b6:c5:f2:dc:07:00:10:
6c:be:6d:4c:42:e3:f4:a1:48:09:22:b7:15:0d:01:c6:12:20:
30:9e:07:03:7f:2a:71:c2:e9:b0:63:29:21:ae:c0:4d:3e:b5:
3f:5f:bf:21:9b:c1:6f:64:b2:32:f7:4c:9c:8d:bd:fc:17:1c:
69:c1:b2:54:21:82:2b:d1:cd:c6:13:4b:f1:c9:fa:8f:3a:da:
b3:de:cf:b8:65:b8:ba:69:e0:07:60:d2:c5:5a:54:88:38:15:
bb:94:0a:4c:2b:36:4c:b5:51:7a:1b:a3:e3:5c:26:bb:55:ae:
9d:9c:1a:65:68:13:cc:08:0e:63:c9:c8:f8:89:8e:55:6b:86:
45:82:aa:77:fb:ad:46:2d:a3:f8:ea:4c:58:e1:8d:e7:25:97:
39:dc:6b:81:8e:34:fc:b8:ed:2a:59:42:2b:15:6a:05:49:47:
23:8f:45:e2:68:69:3e:3c:00:fd:f6:26:c1:37:cd:c2:55:c2:
18:b6:49:68
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICV+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwNzA4MDg1MjQ2WhcNMjUwOTMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE2MUY3MzExMC8GA1UEBRMoQjQzQzRFM0QzMkY5NUI1MDU1RDA0RkRD
MDFGODUxOTYzN0M4OUE2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AK2lytMT7LAFV1Xi8NNiUOvkk97a8Gpa4jzhBXoIaMxtV5Y35Kqvx1X62fmVLqDz
bn3tmr4kulkBQvbYnp2lny9vtmgTHH+fTjfGSnomqDycfsw5u6Nm38z09gYqlnOh
gIIlGb6D5Y8P9CkJBekYddyTCHzHJKoh3Hbg6fiGf/xortV1DODUh5GBFYXX98y7
jrvdtDgocfT+B2+GDUUpuRfT78F0NM0Cjl48LTaq+GcL/q9Gsv6/6Vpb1VFTGJ/l
zPK6gFiKkdXiZGn5yR0GfNQQ1uMc7UO2pdFIrvwBdawHNWVr5EMWmdM/yEim059y
0mtUvEf9hWu/R+YHyel5xW8CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBS0PE49Mvlb
UFXQT9wB+FGWN8iabzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjFGNzMvNkRGMEUxMDgzRDA3MTFFRkI1QzlFQzI0QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTYxRjczLzZERjBFMTA4M0QwNzExRUZCNUM5RUMyNEM0RjlBRTAyL3REeE9QVEw1
VzFCVjBFX2NBZmhSbGpmSW1tOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaAWtjANBgkqhkiG9w0BAQsFAAOCAQEAm/GMV+sSJI4lu/QiVAGa
CtJrZMSIG1vPuAaqotazY46pLe6YV41tr/DY1d5FrhOX+4N05Tp5rf0tvtXDohd9
n3y2xfLcBwAQbL5tTELj9KFICSK3FQ0BxhIgMJ4HA38qccLpsGMpIa7ATT61P1+/
IZvBb2SyMvdMnI29/BccacGyVCGCK9HNxhNL8cn6jzras97PuGW4umngB2DSxVpU
iDgVu5QKTCs2TLVRehuj41wmu1WunZwaZWgTzAgOY8nI+ImOVWuGRYKqd/utRi2j
+OpMWOGN5yWXOdxrgY40/LjtKllCKxVqBUlHI49F4mhpPjwA/fYmwTfNwlXCGLZJ
aA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:40 2024 by rpki-client on console-ams.rpki-client.org