Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
File: p65HRBaw6K06iehndKZA_r5pc_k.cer (raw, json)
Hash identifier: aY8Dg6pIkD0NFueuEweo1aAYPPTJPR4fdngRc2qoX4c=
Subject key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 556D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 May 2024 15:37:44 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 67.158.52.0/24
IP: 142.79.224.0/19
IP: 157.10.12.0/22
IP: 157.10.22.0 -- 157.10.27.255
IP: 157.10.40.0/23
IP: 157.10.56.0 -- 157.10.62.255
IP: 157.10.92.0/23
IP: 157.10.96.0/24
IP: 157.10.98.0/23
IP: 157.10.150.0/23
IP: 157.10.168.0/23
IP: 157.10.204.0/24
IP: 157.10.216.0/23
IP: 157.10.240.0/23
IP: 157.10.248.0/23
IP: 157.15.8.0 -- 157.15.13.255
IP: 157.15.17.0/24
IP: 157.15.24.0 -- 157.15.26.255
IP: 157.15.34.0/23
IP: 157.15.81.0/24
IP: 157.15.88.0 -- 157.15.93.255
IP: 157.15.98.0/23
IP: 157.15.130.0 -- 157.15.133.255
IP: 157.15.146.0/23
IP: 157.15.158.0/23
IP: 157.15.176.0/23
IP: 157.15.202.0/23
IP: 157.15.234.0/23
IP: 157.15.250.0/23
IP: 157.20.14.0/23
IP: 157.20.26.0 -- 157.20.29.255
IP: 157.20.51.0/24
IP: 157.20.66.0/23
IP: 157.20.76.0/24
IP: 157.20.84.0/22
IP: 157.20.138.0/23
IP: 157.20.153.0/24
IP: 157.20.160.0/23
IP: 157.20.166.0/24
IP: 157.20.168.0/21
IP: 157.20.180.0 -- 157.20.187.255
IP: 157.20.190.0 -- 157.20.192.255
IP: 157.20.196.0/23
IP: 157.20.202.0/23
IP: 157.20.211.0/24
IP: 157.20.214.0 -- 157.20.216.255
IP: 157.20.226.0 -- 157.20.229.255
IP: 157.20.240.0 -- 157.20.242.255
IP: 157.20.250.0/23
IP: 157.66.28.0/24
IP: 157.66.30.0 -- 157.66.33.255
IP: 157.66.44.0/23
IP: 157.66.74.0 -- 157.66.79.255
IP: 157.66.102.0 -- 157.66.111.255
IP: 157.66.118.0/23
IP: 157.66.143.0 -- 157.66.153.255
IP: 157.66.178.0/23
IP: 157.66.184.0/23
IP: 157.66.191.0/24
IP: 158.144.0.0/16
IP: 159.117.144.0/20
IP: 160.19.34.0/23
IP: 160.19.40.0/23
IP: 162.216.140.0/22
IP: 164.164.0.0/16
IP: 168.220.224.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21869 (0x556d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 8 15:37:44 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8e:6d:9c:f8:84:dd:79:81:26:a0:d8:35:82:
a4:b2:a9:73:15:75:51:ed:35:62:d1:b7:15:29:6d:
75:ea:83:fe:ad:76:50:68:6c:b7:c1:e1:b5:0b:16:
cc:c2:95:fd:9d:ae:df:e8:98:ce:30:b9:1f:a5:38:
80:c1:78:56:a9:e2:97:7d:e3:67:2f:02:37:34:c7:
7d:4f:04:9a:8a:0b:1c:20:49:43:b9:59:f2:45:09:
1c:18:f2:13:8e:47:fe:2b:d0:c5:c6:34:ee:c6:ad:
b5:f5:13:45:eb:2a:15:5f:de:7a:70:6c:c1:81:17:
6e:02:d0:43:88:d1:be:f6:9c:45:a5:a7:2e:f7:cb:
7f:90:e6:28:b7:53:1e:24:ad:bc:be:d2:0a:a6:92:
41:0c:7e:a8:13:42:d7:58:ae:0a:79:50:62:ba:23:
54:ca:ce:4c:d6:78:76:8d:50:18:21:7b:de:df:f2:
48:6b:78:15:2c:17:91:7f:78:68:67:75:35:cc:d4:
0c:c0:ea:83:40:00:71:30:ee:30:ac:d9:02:fe:a2:
f7:9e:19:7e:c5:ad:c2:e3:82:57:ee:4e:cb:29:e0:
38:c5:a7:28:68:ed:2b:ac:1e:1c:40:c6:00:94:0e:
d7:2a:b2:4f:38:a1:29:8b:65:8b:e6:74:22:ca:f4:
69:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
67.158.52.0/24
142.79.224.0/19
157.10.12.0/22
157.10.22.0-157.10.27.255
157.10.40.0/23
157.10.56.0-157.10.62.255
157.10.92.0/23
157.10.96.0/24
157.10.98.0/23
157.10.150.0/23
157.10.168.0/23
157.10.204.0/24
157.10.216.0/23
157.10.240.0/23
157.10.248.0/23
157.15.8.0-157.15.13.255
157.15.17.0/24
157.15.24.0-157.15.26.255
157.15.34.0/23
157.15.81.0/24
157.15.88.0-157.15.93.255
157.15.98.0/23
157.15.130.0-157.15.133.255
157.15.146.0/23
157.15.158.0/23
157.15.176.0/23
157.15.202.0/23
157.15.234.0/23
157.15.250.0/23
157.20.14.0/23
157.20.26.0-157.20.29.255
157.20.51.0/24
157.20.66.0/23
157.20.76.0/24
157.20.84.0/22
157.20.138.0/23
157.20.153.0/24
157.20.160.0/23
157.20.166.0/24
157.20.168.0/21
157.20.180.0-157.20.187.255
157.20.190.0-157.20.192.255
157.20.196.0/23
157.20.202.0/23
157.20.211.0/24
157.20.214.0-157.20.216.255
157.20.226.0-157.20.229.255
157.20.240.0-157.20.242.255
157.20.250.0/23
157.66.28.0/24
157.66.30.0-157.66.33.255
157.66.44.0/23
157.66.74.0-157.66.79.255
157.66.102.0-157.66.111.255
157.66.118.0/23
157.66.143.0-157.66.153.255
157.66.178.0/23
157.66.184.0/23
157.66.191.0/24
158.144.0.0/16
159.117.144.0/20
160.19.34.0/23
160.19.40.0/23
162.216.140.0/22
164.164.0.0/16
168.220.224.0/19
Signature Algorithm: sha256WithRSAEncryption
75:7e:b1:01:0d:f7:f5:ed:24:46:a9:46:a0:d3:e5:28:6f:58:
4e:39:c8:2a:86:1c:e0:a5:32:5e:c9:68:5b:e5:77:35:a7:eb:
47:f6:d9:9d:89:dc:e8:a9:9b:c6:7e:4b:c3:18:65:6d:95:45:
e2:3b:90:bc:92:96:ab:91:0d:ea:41:3d:23:83:92:a8:36:e1:
df:fc:69:d2:12:aa:19:35:b4:48:70:c2:cc:19:ff:6c:54:98:
10:82:f1:5e:30:3f:5a:75:81:85:b5:f4:83:87:ac:57:e1:96:
21:4a:40:83:17:2a:35:1e:5e:09:aa:84:85:85:28:f9:f9:4d:
ca:19:4c:17:70:e9:74:d3:f4:ec:9f:15:f0:7d:1f:b3:e9:dc:
02:9e:1c:56:93:68:84:92:7b:e9:f8:b9:fb:59:e0:af:e9:bb:
8c:41:93:e9:f6:24:34:42:db:96:7b:8c:5d:69:87:c1:18:f1:
47:9c:fb:e5:6c:8f:d3:40:e5:1b:d0:01:7d:88:6f:f1:a0:d3:
aa:d5:83:47:c0:81:bb:40:8d:09:32:6d:d8:8d:89:56:9d:d4:
76:62:eb:d9:b8:c7:cd:70:23:22:40:ba:e4:15:9a:8d:b8:41:
4b:6c:ea:6c:fa:17:d0:26:6a:46:a9:66:48:98:9e:6c:ec:5d:
cb:c0:d9:7a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:11 2024 by rpki-client on console-ams.rpki-client.org