Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer
File: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer (raw, json)
Hash identifier: 4KT8rZ47paPqw9R5f5WwvIQAMJeMyAr94H+tS1jBYYc=
Subject key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 529E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 23 Feb 2024 19:46:01 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 104.250.32.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21150 (0x529e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 23 19:46:01 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:38:68:7b:ac:73:bc:24:0f:c0:e4:03:eb:cd:
94:5e:0f:d0:a7:2d:43:50:81:f7:76:87:d2:e1:7e:
b1:d1:3e:ea:5c:e1:ef:59:11:0c:08:19:ef:77:d8:
1f:27:47:86:0c:49:b2:c0:8a:32:5f:8d:0c:75:c0:
69:48:57:c4:b0:85:46:ce:d4:18:16:8a:09:fa:e3:
4f:ff:97:c1:5c:5e:c4:fc:32:f6:6b:b0:53:bd:b7:
43:e4:be:b9:ae:0c:6a:d9:75:f1:96:85:83:ce:d5:
98:9f:b7:10:ad:55:81:b7:84:74:09:6a:ae:28:b3:
d2:1f:41:29:12:ee:75:a2:dc:15:ea:f9:8f:d8:be:
87:07:5b:24:72:9b:4e:1f:cc:e8:92:58:5c:00:77:
e4:91:5e:d8:91:4d:21:78:dd:55:8d:bd:41:0b:60:
ac:66:d9:7e:17:d9:53:49:3e:e1:d3:96:c2:d7:b8:
85:53:65:73:79:6a:90:30:21:5d:36:82:35:9f:e9:
92:3a:fe:89:e7:78:1a:3f:1d:51:b3:5e:4c:8d:b6:
e6:b2:9a:29:a2:36:94:bd:9c:e1:97:7a:65:1e:dc:
e8:fc:e1:f8:a5:af:25:ab:14:59:e4:4a:3a:cf:30:
20:6a:55:35:d0:e3:7c:06:1c:0f:35:f3:40:9d:df:
92:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
104.250.32.0/19
Signature Algorithm: sha256WithRSAEncryption
13:9d:0c:2f:fb:cb:1f:13:64:ca:95:85:73:1d:93:14:c4:b8:
d8:cc:12:5d:0e:da:1c:83:20:58:1f:a5:01:87:72:1f:ec:3a:
9f:a8:5f:c5:d4:5e:50:a6:cb:86:22:d9:eb:b9:ba:3c:e5:d3:
12:27:64:8e:f8:7a:ca:e7:ae:a1:95:f8:44:d8:5a:e5:24:c3:
66:d8:ac:05:f9:3b:40:e3:c8:b4:6d:b7:17:bb:ec:88:fe:21:
f0:59:d3:6c:0f:ca:92:44:a8:52:f3:5f:bf:a4:df:eb:bf:a3:
e4:54:ed:63:6e:05:d5:44:57:aa:61:42:b2:b7:36:b5:d1:ec:
12:4d:04:da:d8:7d:b3:df:ce:ea:72:fb:da:00:65:38:5d:3e:
31:d7:9a:52:63:02:07:82:e0:2c:6c:fc:e4:b6:e9:dc:24:c0:
e3:c1:bb:14:75:79:5a:bb:ae:4a:44:88:38:ca:88:87:4c:9a:
c0:95:7f:c4:88:ed:e3:d7:14:fa:1e:e5:e9:eb:3b:3b:20:7b:
3a:66:cc:a8:43:82:15:62:98:ee:2c:ce:10:78:f8:40:0c:ea:
d4:09:b6:99:dd:64:fb:9b:94:4d:b0:28:7c:38:5e:fe:00:19:
b3:c6:cc:b6:fd:5d:ab:4a:a4:ee:f4:51:c7:b7:0e:06:1c:84:
fc:4b:19:ea
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICUp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwMjIzMTk0NjAxWhcNMjUwMzMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFDQjhCQTExMC8GA1UEBRMoNDcwQTkzNDQ5RTYxMUZBOUFEMDVBMjg5
RDYxODgyMjBCNUZDRkMzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKo4aHusc7wkD8DkA+vNlF4P0KctQ1CB93aH0uF+sdE+6lzh71kRDAgZ73fYHydH
hgxJssCKMl+NDHXAaUhXxLCFRs7UGBaKCfrjT/+XwVxexPwy9muwU723Q+S+ua4M
atl18ZaFg87VmJ+3EK1VgbeEdAlqriiz0h9BKRLudaLcFer5j9i+hwdbJHKbTh/M
6JJYXAB35JFe2JFNIXjdVY29QQtgrGbZfhfZU0k+4dOWwte4hVNlc3lqkDAhXTaC
NZ/pkjr+ied4Gj8dUbNeTI225rKaKaI2lL2c4Zd6ZR7c6Pzh+KWvJasUWeRKOs8w
IGpVNdDjfAYcDzXzQJ3fkusCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRHCpNEnmEf
qa0FoonWGIIgtfz8OjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0I4QkEvMkI3MzJFNzBCQTg1MTFFQUJBODM4RTMwQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCOEJBLzJCNzMyRTcwQkE4NTExRUFCQTgzOEUzMEM0RjlBRTAyL1J3cVRSSjVo
SDZtdEJhS0oxaGlDSUxYOF9Eby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEBWj6IDANBgkqhkiG9w0BAQsFAAOCAQEAE50ML/vLHxNkypWFcx2T
FMS42MwSXQ7aHIMgWB+lAYdyH+w6n6hfxdReUKbLhiLZ67m6POXTEidkjvh6yueu
oZX4RNha5STDZtisBfk7QOPItG23F7vsiP4h8FnTbA/KkkSoUvNfv6Tf67+j5FTt
Y24F1URXqmFCsrc2tdHsEk0E2th9s9/O6nL72gBlOF0+MdeaUmMCB4LgLGz85Lbp
3CTA48G7FHV5WruuSkSIOMqIh0yawJV/xIjt49cU+h7l6es7OyB7OmbMqEOCFWKY
7izOEHj4QAzq1Am2md1k+5uUTbAofDhe/gAZs8bMtv1dq0qk7vRRx7cOBhyE/EsZ
6g==
-----END CERTIFICATE-----
Generated at Thu May 9 03:29:32 2024 by rpki-client on console-fra.rpki-client.org