Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer
File: dEWTNjfMowmkwWGr_t-HecsqsT8.cer (raw, json)
Hash identifier: zFGWJy1Q/RSH9zVU31XgDilSIw4Ra5CsD2Z+oLV7cz8=
Subject key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 619A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Jan 2025 14:15:42 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.57.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 06:50:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24986 (0x619a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 30 14:15:42 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A912E53C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9a:f3:43:64:c9:2f:c3:52:bf:0c:9d:06:83:
46:1d:bf:03:3c:fd:fa:94:3c:2f:b2:69:aa:f8:da:
f7:19:3a:0f:5b:93:59:28:10:82:52:c6:79:bf:8f:
af:13:92:d7:5b:5c:c0:f3:e1:89:0c:f0:2f:9e:7f:
8d:3a:55:c7:0e:e6:dd:a7:ac:3d:cd:fa:2e:3b:e6:
9d:09:55:97:31:98:53:24:bb:47:e1:c1:c6:9a:6f:
52:b5:d5:bb:d0:1f:b5:99:c3:fe:95:ec:71:1c:93:
38:f7:9a:6a:00:26:bd:a8:3f:7d:39:40:af:8b:be:
e6:d3:1d:9d:6e:53:dc:03:07:2f:fe:09:01:f4:01:
68:2d:91:a2:dd:10:c8:60:50:ca:60:d9:e7:87:8f:
f6:f1:5f:4b:fc:26:68:fd:a5:20:3d:f3:34:79:0a:
e7:8c:ab:29:d9:39:d7:13:83:d4:1b:a3:ea:60:9c:
82:33:d0:eb:11:b7:ae:bf:6c:e9:7c:35:5b:40:c8:
87:31:47:28:ed:47:7e:6d:d9:cd:52:d6:88:68:a1:
1f:e5:c5:4e:9b:a3:70:19:a5:27:c4:21:59:46:2b:
06:ec:ab:7c:4b:19:bc:f5:99:22:83:02:02:b6:98:
c7:6d:01:a6:0d:21:82:35:17:a3:73:17:c6:12:ee:
85:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.57.0/24
Signature Algorithm: sha256WithRSAEncryption
15:3a:0a:c0:58:8c:41:04:53:10:e8:f1:ef:4d:f9:b4:a7:0c:
a4:d2:06:12:72:2d:26:06:bc:93:49:6a:df:02:b6:c3:9e:d9:
b4:69:5a:4b:20:2b:6e:85:31:a4:a8:62:f0:f6:79:be:fc:c1:
24:f2:a7:f5:29:f5:58:90:3c:8d:36:d0:2d:08:5b:b9:0e:6f:
40:77:02:2b:dd:a5:b2:f4:01:38:7b:cc:a1:16:fc:8d:12:66:
34:a3:b3:df:b6:c6:ec:8e:e9:b9:d6:0b:d3:40:b9:78:87:b9:
5b:e7:ed:9f:3a:51:7c:c4:bd:92:f0:0d:f6:db:b1:56:b9:e7:
39:7f:9d:f4:cf:93:77:3e:9f:dd:9e:81:a9:a8:ad:48:92:64:
00:c0:5a:a3:51:3a:13:65:4a:99:6a:66:3c:10:ca:5d:01:e4:
43:14:c9:b0:c0:f1:7e:1a:6e:48:3f:27:51:cd:92:49:a3:a4:
8f:4f:0e:d4:43:56:63:e4:db:04:e7:1f:60:6b:78:2d:a6:b8:
6b:84:1e:74:e5:5d:e7:ec:e8:e4:bb:16:3a:3c:3c:76:14:93:
aa:1d:6b:59:d2:19:e9:f6:a3:0f:6a:2f:03:b3:11:87:63:f7:
11:81:f6:21:fb:22:e0:6b:20:2f:da:0d:b4:1d:cb:88:ed:af:
b8:d8:79:38
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICYZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwMTMwMTQxNTQyWhcNMjYwMzMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEyRTUzQzExMC8GA1UEBRMoNzQ0NTkzMzYzN0NDQTMwOUE0QzE2MUFC
RkVERjg3NzlDQjJBQjEzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALSa80NkyS/DUr8MnQaDRh2/Azz9+pQ8L7Jpqvja9xk6D1uTWSgQglLGeb+PrxOS
11tcwPPhiQzwL55/jTpVxw7m3aesPc36LjvmnQlVlzGYUyS7R+HBxppvUrXVu9Af
tZnD/pXscRyTOPeaagAmvag/fTlAr4u+5tMdnW5T3AMHL/4JAfQBaC2Rot0QyGBQ
ymDZ54eP9vFfS/wmaP2lID3zNHkK54yrKdk51xOD1Buj6mCcgjPQ6xG3rr9s6Xw1
W0DIhzFHKO1Hfm3ZzVLWiGihH+XFTpujcBmlJ8QhWUYrBuyrfEsZvPWZIoMCAraY
x20Bpg0hgjUXo3MXxhLuhaMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBR0RZM2N8yj
CaTBYav+34d5yyqxPzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MkU1M0MvMjlCODY5OTQ5MDNBMTFFRkJGMTU2RDgxQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJFNTNDLzI5Qjg2OTk0OTAzQTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZN
b3dta3dXR3JfdC1IZWNzcXNUOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAKC/OTANBgkqhkiG9w0BAQsFAAOCAQEAFToKwFiMQQRTEOjx7035
tKcMpNIGEnItJga8k0lq3wK2w57ZtGlaSyArboUxpKhi8PZ5vvzBJPKn9Sn1WJA8
jTbQLQhbuQ5vQHcCK92lsvQBOHvMoRb8jRJmNKOz37bG7I7pudYL00C5eIe5W+ft
nzpRfMS9kvAN9tuxVrnnOX+d9M+Tdz6f3Z6BqaitSJJkAMBao1E6E2VKmWpmPBDK
XQHkQxTJsMDxfhpuSD8nUc2SSaOkj08O1ENWY+TbBOcfYGt4Laa4a4QedOVd5+zo
5LsWOjw8dhSTqh1rWdIZ6fajD2ovA7MRh2P3EYH2Ifsi4GsgL9oNtB3LiO2vuNh5
OA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 11:14:28 2025 by rpki-client