Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer
File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer (raw, json)
Hash identifier: A5BSwmvO/HcZn6ZZcXgWTsY+U6X9VbJ9rNkk/HpJQFE=
Subject key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 467C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 May 2024 15:35:26 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 5.28.32.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 14:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18044 (0x467c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 28 15:35:26 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:00:c4:85:13:8a:ec:85:48:0e:22:dd:cd:
d4:6a:61:45:9c:ba:8b:71:be:c3:ec:5b:68:16:24:
57:4e:26:e9:12:9c:a4:4c:81:67:5e:45:53:d3:42:
0f:4b:49:fa:91:c7:b1:78:b4:9f:bc:d2:45:4e:0b:
e5:04:7a:d0:4e:a8:12:ef:da:8d:73:b1:48:01:40:
b5:8e:4f:ae:fc:a9:ba:a4:1e:7e:23:04:f6:b6:34:
f6:86:83:f9:f1:b4:f8:8d:28:43:32:fa:9a:ee:fa:
72:19:0a:24:7b:61:96:12:77:82:27:ac:e2:6d:e4:
ce:55:db:84:fe:fd:9c:10:a9:06:2a:a9:57:9a:d8:
5b:90:e0:d8:9f:3c:7c:ee:f7:6f:76:85:a0:d7:a6:
f3:8e:6a:0f:02:8b:d1:a3:be:95:8f:f0:1d:c6:58:
85:3f:d3:db:c8:57:18:a8:b0:44:5d:42:2d:e8:45:
d0:04:e6:f1:0e:1f:ec:95:0f:c6:4d:a0:a0:87:99:
68:2e:a1:82:46:c2:60:c7:93:90:42:d9:f3:e2:b4:
2e:fc:9a:a2:25:fe:01:8c:5d:63:61:41:d4:7d:6e:
c9:c1:f1:5e:40:06:0a:c0:0f:65:0b:b1:37:6c:e4:
af:c6:55:24:39:ef:ee:9e:e8:72:0b:46:2d:50:02:
c8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
5.28.32.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:ce:d0:7c:68:da:a0:a2:2d:51:c8:bc:8b:4e:59:70:69:a4:
73:f9:68:14:6a:25:7c:16:7b:34:6e:c8:2b:da:d9:94:94:cc:
e6:bc:7a:2d:3d:b2:26:17:2d:0e:f1:df:f6:cb:d3:d8:69:9c:
a6:9d:41:5d:62:59:55:86:22:15:bf:e3:97:da:b3:40:de:1e:
15:60:d0:9f:65:6a:00:04:72:b1:16:9d:e4:df:c5:04:ec:32:
40:64:bc:e8:f4:60:24:8d:85:4c:19:41:ca:8b:df:4c:2c:73:
d3:2c:f7:ca:a3:8d:c4:5c:c1:32:eb:c0:5f:c4:6e:4f:02:e2:
b8:46:b4:dc:fe:dc:aa:b5:93:1b:eb:9b:45:af:ed:ea:f7:b1:
e5:33:63:b7:1f:40:39:50:0f:d8:61:20:73:73:ea:9d:1f:8b:
be:34:2c:1e:3a:2b:45:0a:b9:a3:be:3a:90:42:15:62:55:ed:
95:3e:6d:3d:a1:5c:54:e8:4c:49:ea:69:1c:d7:81:25:a1:f2:
ce:49:c1:68:de:df:a1:c2:de:c8:05:53:59:fa:8c:da:73:00:
fe:c9:b5:2b:ba:0a:d0:d5:91:75:f5:eb:92:a4:98:e7:dd:21:
c2:7e:de:9f:f0:03:1b:5d:d6:f5:cd:7b:bd:77:35:88:2d:18:
75:1f:5c:2f
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICRnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjQwNTI4MTUzNTI2WhcNMjUwNzMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE0RjVCQTExMC8GA1UEBRMoMTQyMEY4MDcwOURERDNERkMzRjUxMTU2
NTUwM0NFRjQ0NDRCRURDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMjrAMSFE4rshUgOIt3N1GphRZy6i3G+w+xbaBYkV04m6RKcpEyBZ15FU9NCD0tJ
+pHHsXi0n7zSRU4L5QR60E6oEu/ajXOxSAFAtY5PrvypuqQefiME9rY09oaD+fG0
+I0oQzL6mu76chkKJHthlhJ3gies4m3kzlXbhP79nBCpBiqpV5rYW5Dg2J88fO73
b3aFoNem845qDwKL0aO+lY/wHcZYhT/T28hXGKiwRF1CLehF0ATm8Q4f7JUPxk2g
oIeZaC6hgkbCYMeTkELZ8+K0LvyaoiX+AYxdY2FB1H1uycHxXkAGCsAPZQuxN2zk
r8ZVJDnv7p7ocgtGLVACyIUCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQUIPgHCd3T
38P1EVZVA870REvtwzAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEY1QkEvMDQ5RENEMjJBRDYxMTFFQThGMUE4RDYzQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRGNUJBLzA0OURDRDIyQUQ2MTExRUE4RjFBOEQ2M0M0RjlBRTAyL0ZDRDRCd25k
MDlfRDlSRldWUVBPOUVSTDdjTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAwUcIDANBgkqhkiG9w0BAQsFAAOCAQEAnc7QfGjaoKItUci8i05Z
cGmkc/loFGolfBZ7NG7IK9rZlJTM5rx6LT2yJhctDvHf9svT2Gmcpp1BXWJZVYYi
Fb/jl9qzQN4eFWDQn2VqAARysRad5N/FBOwyQGS86PRgJI2FTBlByovfTCxz0yz3
yqONxFzBMuvAX8RuTwLiuEa03P7cqrWTG+ubRa/t6vex5TNjtx9AOVAP2GEgc3Pq
nR+LvjQsHjorRQq5o746kEIVYlXtlT5tPaFcVOhMSeppHNeBJaHyzknBaN7focLe
yAVTWfqM2nMA/sm1K7oK0NWRdfXrkqSY590hwn7en/ADG13W9c17vXc1iC0YdR9c
Lw==
-----END CERTIFICATE-----
Generated at Mon Nov 25 15:54:06 2024 by rpki-client on console-ams.rpki-client.org