Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer
File: dNRNlor0Y--xfAgNX60BDErAl6o.cer (raw, json)
Hash identifier: Z3ZIF5A2BPWzkrwsGwIPYuXK3EHPbQopx/oWnIAZQeY=
Subject key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 54F0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Apr 2024 17:17:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 69.161.221.0/24
IP: 192.131.142.0/24
IP: 205.189.160.0/24
IP: 209.17.118.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21744 (0x54f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 25 17:17:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ee:20:2e:13:6a:1c:90:2f:b6:3c:d3:8f:83:
77:fd:27:9d:6a:a3:ee:73:86:fb:fd:18:5c:0d:72:
29:18:17:f6:dc:74:d1:8c:48:58:fa:b4:fe:41:8b:
e8:49:7b:4a:c1:b5:eb:31:70:df:25:0e:b9:9e:30:
b1:ab:a3:62:c4:b9:6d:99:44:5e:c1:dd:86:64:01:
f5:e8:05:2b:b8:9d:69:42:b8:56:5f:18:f2:b5:97:
f7:4a:9c:f1:b2:d1:c7:5f:97:07:46:11:72:e6:10:
99:35:5c:64:9e:98:8c:7c:f6:a5:38:ed:ab:13:4c:
11:30:3a:92:7b:56:dd:0f:75:d5:41:9c:42:48:1c:
47:8c:bb:a2:c0:fd:93:39:45:d3:a9:61:a0:40:8c:
51:b3:08:e8:da:c6:4f:e1:32:d9:8f:60:70:91:eb:
56:3b:a4:42:15:27:90:26:9a:b9:4b:c0:91:7b:0f:
b2:ae:96:3e:1a:c6:ef:3e:d7:45:55:58:8f:5d:b6:
7f:4f:2c:54:f8:67:03:b4:9f:68:ff:8b:e1:b7:a3:
68:32:fb:5c:b7:87:be:9a:7b:2f:d6:9d:88:e6:ed:
4e:09:c2:25:d9:cf:ec:b8:9d:e1:33:83:b0:b2:1e:
96:1e:b5:30:ca:be:59:95:08:ca:a1:40:bb:05:56:
93:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
69.161.221.0/24
192.131.142.0/24
205.189.160.0/24
209.17.118.0/24
Signature Algorithm: sha256WithRSAEncryption
06:dc:bc:80:fa:38:a6:92:62:af:64:c4:66:17:7b:cf:e1:2c:
7d:3e:c8:fc:c0:80:b9:82:e5:bb:ad:01:bd:fc:bf:da:48:01:
cd:17:40:28:94:d9:75:5d:8d:3a:60:c5:da:3a:94:dd:4a:4d:
fc:74:01:38:e0:df:5c:dd:36:bb:d0:71:be:76:ec:22:b1:04:
3c:56:00:cb:57:c6:79:96:f5:84:02:1c:ea:4d:4b:c2:20:6b:
85:92:21:28:9e:55:0b:cb:7e:83:48:bf:95:39:b0:b5:ee:b6:
73:d5:0a:ef:06:5a:2d:36:50:b0:3a:44:ca:ed:6d:c7:36:fe:
d1:2a:3f:c2:cb:18:b0:94:08:f4:3b:f0:bc:1d:ce:bc:a7:c8:
14:23:b4:ad:1a:d7:8b:35:06:99:ff:fc:d7:9f:70:9b:b8:ad:
41:3c:82:f7:5c:b9:93:df:01:d1:c4:b6:c1:43:6f:5c:ba:af:
ae:5c:ae:bb:f8:50:4f:ed:52:5d:df:bf:d5:4c:a9:7a:bd:0e:
f9:99:1d:8b:6b:78:25:ab:bc:50:67:c9:80:19:31:0d:91:72:
f3:73:bd:58:c1:3e:91:eb:4f:ba:4a:3b:3d:5d:9f:86:d8:0d:
a1:84:d8:d0:da:c2:ca:48:18:95:f6:2a:98:09:fd:4c:22:4e:
4d:b4:63:16
-----BEGIN CERTIFICATE-----
MIIGDzCCBPegAwIBAgICVPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwNDI1MTcxNzExWhcNMjUwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE3RTBBODExMC8GA1UEBRMoNzRENDREOTY4QUY0NjNFRkIxN0MwODBE
NUZBRDAxMEM0QUMwOTdBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMbuIC4TahyQL7Y804+Dd/0nnWqj7nOG+/0YXA1yKRgX9tx00YxIWPq0/kGL6El7
SsG16zFw3yUOuZ4wsaujYsS5bZlEXsHdhmQB9egFK7idaUK4Vl8Y8rWX90qc8bLR
x1+XB0YRcuYQmTVcZJ6YjHz2pTjtqxNMETA6kntW3Q911UGcQkgcR4y7osD9kzlF
06lhoECMUbMI6NrGT+Ey2Y9gcJHrVjukQhUnkCaauUvAkXsPsq6WPhrG7z7XRVVY
j122f08sVPhnA7SfaP+L4bejaDL7XLeHvpp7L9adiObtTgnCJdnP7Lid4TODsLIe
lh61MMq+WZUIyqFAuwVWk20CAwEAAaOCAwUwggMBMB0GA1UdDgQWBBR01E2WivRj
77F8CA1frQEMSsCXqjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0UwQTgvNkVGQzBCRUU5ODRDMTFFQjhBNDFGQTIwQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTdFMEE4LzZFRkMwQkVFOTg0QzExRUI4QTQxRkEyMEM0RjlBRTAyL2ROUk5sb3Iw
WS0teGZBZ05YNjBCREVyQWw2by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQiMCAw
HgQCAAEwGAMEAEWh3QMEAMCDjgMEAM29oAMEANERdjANBgkqhkiG9w0BAQsFAAOC
AQEABty8gPo4ppJir2TEZhd7z+EsfT7I/MCAuYLlu60Bvfy/2kgBzRdAKJTZdV2N
OmDF2jqU3UpN/HQBOODfXN02u9BxvnbsIrEEPFYAy1fGeZb1hAIc6k1LwiBrhZIh
KJ5VC8t+g0i/lTmwte62c9UK7wZaLTZQsDpEyu1txzb+0So/wssYsJQI9DvwvB3O
vKfIFCO0rRrXizUGmf/8159wm7itQTyC91y5k98B0cS2wUNvXLqvrlyuu/hQT+1S
Xd+/1Uyper0O+Zkdi2t4Jau8UGfJgBkxDZFy83O9WME+ketPuko7PV2fhtgNoYTY
0NrCykgYlfYqmAn9TCJOTbRjFg==
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:11 2024 by rpki-client on console-ams.rpki-client.org