Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer
File: z8CATaxP_3oipAThDphkpxHeGck.cer (raw, json)
Hash identifier: VUegZhaYnsZSCfaDrMFrJJYaGBGmv194f9AWXpATFDs=
Subject key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5AA4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Sep 2024 06:19:25 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.25.66.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23204 (0x5aa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 6 06:19:25 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2f:b7:f9:76:eb:d0:cd:ae:4a:7f:ea:6c:cd:
80:98:61:ce:ec:8a:92:68:4d:5f:b6:8d:39:34:44:
c0:17:fc:5f:41:8e:72:61:fa:d7:fc:d8:b5:90:8e:
b2:77:6f:53:b1:ea:a9:26:d0:73:98:b3:9a:1e:03:
96:e6:78:9d:04:13:2b:53:06:f0:13:53:34:57:9c:
89:74:4a:f6:cc:bb:50:bf:04:07:23:b8:a8:9b:a2:
2a:f3:43:16:ad:a8:32:b8:53:34:29:ed:e0:35:60:
ed:1c:49:33:8f:0d:b5:35:66:ec:80:f9:31:cf:ab:
55:2c:60:80:4e:4f:c1:89:bf:95:3a:84:3c:08:69:
10:1f:53:28:47:6e:29:75:0e:28:98:ba:66:cb:9f:
37:15:7d:d1:b0:af:03:29:ac:42:ce:c2:c9:24:0e:
67:c5:50:02:f5:31:ce:4a:4d:b0:3e:89:1e:44:0c:
df:b2:0b:de:26:25:3d:c2:6a:63:37:ac:e8:81:67:
51:68:3a:34:91:d1:2b:d1:a4:8e:59:9b:2e:c9:e0:
48:d0:62:0a:15:f6:79:f1:78:5f:8f:97:15:69:fb:
3e:c8:e0:bd:df:b6:75:4e:f6:19:e0:a0:e5:c0:09:
68:05:9e:37:1c:76:4c:9a:69:0d:dd:33:30:a6:18:
01:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.66.0/23
Signature Algorithm: sha256WithRSAEncryption
03:6d:3f:1a:f7:99:28:e6:06:8d:4e:00:9a:c7:c4:b0:07:7f:
58:2a:78:f7:d6:4b:83:3e:b4:ad:78:b7:e4:60:1d:82:5e:fe:
a6:cb:52:8a:40:e8:e0:3f:d7:9d:4e:b0:a0:90:6f:53:d5:43:
24:81:09:bc:fb:f4:a2:ac:da:19:78:48:92:16:db:70:d4:76:
f7:e8:2b:f8:71:14:eb:be:44:8e:c1:4a:60:bd:2c:0d:27:bc:
67:d5:4c:96:6a:a2:6c:f6:32:96:37:5d:78:0e:db:f0:39:24:
0d:02:92:fa:1e:e5:9d:b8:bd:bc:b9:52:23:7c:24:ee:9b:1b:
0b:11:66:1d:10:79:0c:dc:45:50:09:a4:b7:a6:51:b5:4c:8b:
9c:9f:0d:2c:bb:7e:37:c2:f7:67:be:d6:01:87:e1:39:1d:a2:
e1:9e:cf:b8:80:dc:1f:ea:45:13:13:ed:de:78:45:41:64:b7:
9a:ae:bf:d0:68:08:af:d8:ca:83:9c:13:25:a6:26:cb:99:ab:
42:81:df:6c:cc:ac:36:d4:4e:a6:70:68:68:3e:3c:ac:02:da:
a8:0a:c3:83:21:6c:42:dd:19:3e:f7:07:49:61:c1:b2:da:ba:
54:ef:7b:bb:9f:d5:2d:6d:d4:4e:da:14:fd:51:04:e9:cc:da:
f4:77:ce:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:17 2024 by rpki-client on console-fra.rpki-client.org