Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer
File: y4244fF7x3I0bdn_uyByz6j9plI.cer (raw, json)
Hash identifier: YMNxaBjoAoO/RMwTdtuInhc3MQE/UoShnFST61b+JaE=
Subject key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6209
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 10 Feb 2025 19:46:23 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 138.211.0.0/16
IP: 165.84.32.0/20
IP: 165.84.64.0/18
IP: 192.203.99.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25097 (0x6209)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 10 19:46:23 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91DB7E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:10:36:e0:7b:48:d5:b9:81:27:4c:be:69:6d:
dd:a5:bd:99:cb:d5:cc:27:d7:28:a1:37:9f:30:68:
d3:52:b5:62:17:e2:8e:a5:14:49:1d:86:ef:68:ab:
f4:12:f6:95:6d:c1:02:c3:ab:a5:2a:18:d1:73:31:
56:17:38:40:40:ea:d0:e9:ad:71:15:f1:87:cb:ca:
0c:34:6a:e8:ad:65:4d:5b:9c:e3:a3:f6:87:6c:09:
d5:e1:a2:7f:4c:28:db:c4:01:61:89:33:ca:4d:5b:
fd:36:d1:52:6e:f9:4e:b4:8e:82:c0:73:a7:55:4f:
d1:be:e6:40:fb:a5:a9:33:e8:71:fa:2f:18:5b:0d:
ad:a3:24:66:3d:97:2d:e5:b4:0d:7d:73:5d:0b:32:
d8:d1:46:59:8d:49:e1:14:d0:5f:69:60:71:ed:aa:
7b:95:b3:d0:0f:4f:54:40:1d:7f:3e:b0:95:25:b5:
c8:9b:d3:38:bc:02:dd:71:5c:e1:8c:28:23:3c:9f:
2b:9e:3e:58:8e:a5:b9:6b:00:dd:43:23:77:4d:3e:
21:0c:7a:cb:ea:29:d5:53:94:76:54:d0:80:20:cd:
de:d3:75:4e:ac:c3:67:5b:3a:27:30:6f:ff:9c:b0:
83:b0:42:ca:22:b8:fb:0e:14:ec:00:a7:0e:eb:ba:
52:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
138.211.0.0/16
165.84.32.0/20
165.84.64.0/18
192.203.99.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:08:f2:00:c4:a6:dd:3d:34:cd:4c:e4:0f:87:d8:37:5a:7f:
b2:c1:a9:59:25:ff:54:54:93:eb:f3:99:ba:ba:e6:fe:1e:64:
29:6d:d2:be:9e:d2:64:e8:2f:30:fe:e5:c7:b7:7f:ab:70:4d:
04:e1:9e:bd:e7:0b:45:87:3f:11:04:03:fe:cc:2b:e6:73:0a:
15:33:34:f8:82:2d:3f:7b:b0:d9:3a:c2:1c:9b:cd:c7:22:c7:
a4:a5:fa:65:c8:65:37:c2:be:76:c2:78:a6:7a:69:d9:1b:cf:
ba:1b:87:0c:42:eb:83:e7:9b:0f:53:95:0c:20:c3:60:e1:b9:
0e:50:0b:3d:eb:b6:f9:bb:9d:50:5e:dc:a1:0a:39:a1:0d:aa:
53:00:02:09:b5:5d:26:1a:5b:b7:62:33:ae:7c:ea:0a:68:a2:
dd:96:43:d0:3e:eb:f1:23:34:39:db:9d:47:8a:bc:ce:e1:9d:
4a:d1:9d:74:4f:5a:0c:f0:7c:58:6c:98:78:5c:5a:23:e7:70:
f6:01:da:53:ff:67:64:f3:17:5b:cc:23:c3:20:25:53:7f:2a:
b5:9b:1b:e9:b1:fd:c1:7b:e1:92:38:e8:6a:60:b8:31:43:18:
e5:bd:81:97:97:b6:15:84:9a:d5:2a:b2:d1:2a:4c:11:2a:70:
37:e3:79:e1
-----BEGIN CERTIFICATE-----
MIIGDjCCBPagAwIBAgICYgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwMjEwMTk0NjIzWhcNMjYwMzMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFEQjdFOTExMC8GA1UEBRMoQ0I4REI4RTFGMTdCQzc3MjM0NkREOUZG
QkIyMDcyQ0ZBOEZEQTY1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AN8QNuB7SNW5gSdMvmlt3aW9mcvVzCfXKKE3nzBo01K1YhfijqUUSR2G72ir9BL2
lW3BAsOrpSoY0XMxVhc4QEDq0OmtcRXxh8vKDDRq6K1lTVuc46P2h2wJ1eGif0wo
28QBYYkzyk1b/TbRUm75TrSOgsBzp1VP0b7mQPulqTPocfovGFsNraMkZj2XLeW0
DX1zXQsy2NFGWY1J4RTQX2lgce2qe5Wz0A9PVEAdfz6wlSW1yJvTOLwC3XFc4Ywo
IzyfK54+WI6luWsA3UMjd00+IQx6y+op1VOUdlTQgCDN3tN1TqzDZ1s6JzBv/5yw
g7BCyiK4+w4U7ACnDuu6UkkCAwEAAaOCAwQwggMAMB0GA1UdDgQWBBTLjbjh8XvH
cjRt2f+7IHLPqP2mUjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REI3RTkvRTBDNDYxMzA2RTJFMTFFRTg1RDkyRDMyQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MURCN0U5L0UwQzQ2MTMwNkUyRTExRUU4NUQ5MkQzMkM0RjlBRTAyL3k0MjQ0ZkY3
eDNJMGJkbl91eUJ5ejZqOXBsSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQhMB8w
HQQCAAEwFwMDAIrTAwQEpVQgAwQGpVRAAwQAwMtjMA0GCSqGSIb3DQEBCwUAA4IB
AQC2CPIAxKbdPTTNTOQPh9g3Wn+ywalZJf9UVJPr85m6uub+HmQpbdK+ntJk6C8w
/uXHt3+rcE0E4Z695wtFhz8RBAP+zCvmcwoVMzT4gi0/e7DZOsIcm83HIsekpfpl
yGU3wr52wnimemnZG8+6G4cMQuuD55sPU5UMIMNg4bkOUAs967b5u51QXtyhCjmh
DapTAAIJtV0mGlu3YjOufOoKaKLdlkPQPuvxIzQ5251HirzO4Z1K0Z10T1oM8HxY
bJh4XFoj53D2AdpT/2dk8xdbzCPDICVTfyq1mxvpsf3Be+GSOOhqYLgxQxjlvYGX
l7YVhJrVKrLRKkwRKnA343nh
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:49:33 2025 by rpki-client