Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer
File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer (raw, json)
Hash identifier: tcfeTSYNG1+Q7wTd8uhZGhij1+82KwKlAbnmvaaAYdE=
Subject key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4141
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Jun 2023 15:18:31 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 5.28.32.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 May 2024 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16705 (0x4141)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jun 5 15:18:31 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:00:c4:85:13:8a:ec:85:48:0e:22:dd:cd:
d4:6a:61:45:9c:ba:8b:71:be:c3:ec:5b:68:16:24:
57:4e:26:e9:12:9c:a4:4c:81:67:5e:45:53:d3:42:
0f:4b:49:fa:91:c7:b1:78:b4:9f:bc:d2:45:4e:0b:
e5:04:7a:d0:4e:a8:12:ef:da:8d:73:b1:48:01:40:
b5:8e:4f:ae:fc:a9:ba:a4:1e:7e:23:04:f6:b6:34:
f6:86:83:f9:f1:b4:f8:8d:28:43:32:fa:9a:ee:fa:
72:19:0a:24:7b:61:96:12:77:82:27:ac:e2:6d:e4:
ce:55:db:84:fe:fd:9c:10:a9:06:2a:a9:57:9a:d8:
5b:90:e0:d8:9f:3c:7c:ee:f7:6f:76:85:a0:d7:a6:
f3:8e:6a:0f:02:8b:d1:a3:be:95:8f:f0:1d:c6:58:
85:3f:d3:db:c8:57:18:a8:b0:44:5d:42:2d:e8:45:
d0:04:e6:f1:0e:1f:ec:95:0f:c6:4d:a0:a0:87:99:
68:2e:a1:82:46:c2:60:c7:93:90:42:d9:f3:e2:b4:
2e:fc:9a:a2:25:fe:01:8c:5d:63:61:41:d4:7d:6e:
c9:c1:f1:5e:40:06:0a:c0:0f:65:0b:b1:37:6c:e4:
af:c6:55:24:39:ef:ee:9e:e8:72:0b:46:2d:50:02:
c8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
5.28.32.0/21
Signature Algorithm: sha256WithRSAEncryption
d8:d9:e1:08:ad:e0:6b:61:e7:60:52:14:91:b1:f7:4d:3a:6c:
00:f7:68:14:6e:fa:de:58:e0:5c:29:b1:f6:a5:e3:ad:df:26:
bb:5e:cc:d2:4c:30:f0:05:57:7b:03:4a:a3:92:81:a1:4c:7a:
c0:2e:fe:13:54:5c:e7:b8:28:26:1e:19:72:90:47:a5:1f:08:
49:0d:13:0c:91:dd:e1:ff:9e:37:47:12:80:51:93:bf:5c:ef:
8d:e7:fb:43:8f:86:e3:fe:fb:20:89:a4:9d:6e:c0:06:b7:64:
d8:bb:aa:60:e0:e2:e2:e6:ad:17:a0:03:d2:35:92:3a:d9:9c:
f9:fa:08:87:33:a6:fe:57:1a:db:d8:1a:7f:bf:92:9e:43:60:
03:19:a7:bc:b9:0c:2b:21:62:a8:15:1e:26:f3:c1:3d:9c:ff:
f3:c7:4d:31:77:46:d5:88:4b:92:87:d4:50:6d:e1:f7:97:c6:
42:34:a2:46:cd:6e:b9:3a:09:26:13:1d:a4:8c:bb:bf:6b:6b:
7a:75:e2:b0:27:65:9f:c3:a1:4e:4f:5b:94:dd:03:e1:4b:84:
b8:69:c2:7c:64:1f:08:c8:51:79:96:11:ee:3d:32:e4:80:3d:
ab:1c:ac:e3:d7:c6:ed:f3:f3:e3:4d:3c:c1:f0:08:a6:2f:62:
75:ea:ba:a1
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICQUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjMwNjA1MTUxODMxWhcNMjQwNzMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE0RjVCQTExMC8GA1UEBRMoMTQyMEY4MDcwOURERDNERkMzRjUxMTU2
NTUwM0NFRjQ0NDRCRURDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMjrAMSFE4rshUgOIt3N1GphRZy6i3G+w+xbaBYkV04m6RKcpEyBZ15FU9NCD0tJ
+pHHsXi0n7zSRU4L5QR60E6oEu/ajXOxSAFAtY5PrvypuqQefiME9rY09oaD+fG0
+I0oQzL6mu76chkKJHthlhJ3gies4m3kzlXbhP79nBCpBiqpV5rYW5Dg2J88fO73
b3aFoNem845qDwKL0aO+lY/wHcZYhT/T28hXGKiwRF1CLehF0ATm8Q4f7JUPxk2g
oIeZaC6hgkbCYMeTkELZ8+K0LvyaoiX+AYxdY2FB1H1uycHxXkAGCsAPZQuxN2zk
r8ZVJDnv7p7ocgtGLVACyIUCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQUIPgHCd3T
38P1EVZVA870REvtwzAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEY1QkEvMDQ5RENEMjJBRDYxMTFFQThGMUE4RDYzQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRGNUJBLzA0OURDRDIyQUQ2MTExRUE4RjFBOEQ2M0M0RjlBRTAyL0ZDRDRCd25k
MDlfRDlSRldWUVBPOUVSTDdjTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAwUcIDANBgkqhkiG9w0BAQsFAAOCAQEA2NnhCK3ga2HnYFIUkbH3
TTpsAPdoFG763ljgXCmx9qXjrd8mu17M0kww8AVXewNKo5KBoUx6wC7+E1Rc57go
Jh4ZcpBHpR8ISQ0TDJHd4f+eN0cSgFGTv1zvjef7Q4+G4/77IImknW7ABrdk2Luq
YODi4uatF6AD0jWSOtmc+foIhzOm/lca29gaf7+SnkNgAxmnvLkMKyFiqBUeJvPB
PZz/88dNMXdG1YhLkofUUG3h95fGQjSiRs1uuToJJhMdpIy7v2trenXisCdln8Oh
Tk9blN0D4UuEuGnCfGQfCMhReZYR7j0y5IA9qxys49fG7fPz4008wfAIpi9ideq6
oQ==
-----END CERTIFICATE-----
Generated at Mon May 6 03:47:49 2024 by rpki-client on console-ams.rpki-client.org