Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer
File: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer (raw, json)
Hash identifier: vCU8wCwgQjCHdDbD0pI/OdyZKtXFhxKFIeQcDft8LW0=
Subject key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 45DD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 15 Apr 2024 14:02:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 194.26.72.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17885 (0x45dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 15 14:02:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:14:9c:db:eb:3d:6d:7b:43:3b:79:45:b9:bc:
ae:eb:e9:cf:43:eb:cd:bc:ec:46:98:30:8b:ab:fe:
d1:41:0c:1a:0e:90:d5:08:10:37:e7:25:1b:7a:22:
fd:ba:26:20:3c:70:5f:42:3c:91:72:7e:d8:8c:51:
30:b8:55:27:93:37:e3:7b:a7:db:6e:e3:9e:f5:b5:
eb:01:de:d6:4b:da:34:36:97:6a:1b:eb:dd:98:eb:
fd:41:38:0b:3c:10:53:7e:02:db:cc:13:10:9c:38:
49:54:1c:8d:80:67:c6:a3:04:fc:51:cc:4d:30:6d:
15:87:18:1f:96:0a:fc:b0:32:2b:a2:80:ab:f9:fc:
4d:f9:b4:1b:51:8d:91:86:26:4f:ce:ae:de:9c:eb:
14:07:dc:02:3c:ef:52:f7:05:a3:0a:6d:3d:ff:09:
3a:4d:17:dc:3a:bd:00:1c:8a:74:62:a5:19:a4:1a:
7d:10:e9:a7:a6:0d:a1:10:9b:00:16:0b:b4:64:d4:
4a:17:27:47:41:30:dc:37:9a:ec:89:da:f9:e2:4f:
af:f0:1d:6e:ec:f9:52:5d:82:a4:c2:c2:6b:95:58:
c4:55:9f:7a:b7:a7:a9:72:70:3b:5e:bd:2b:16:a7:
7a:04:83:02:fe:06:a3:eb:30:46:ea:58:e0:f0:ad:
64:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.26.72.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:e1:13:50:56:06:da:04:4b:44:6e:35:5c:d9:33:34:36:ce:
fa:01:7d:db:01:b9:4b:1d:a6:88:0c:4a:49:1e:95:6c:e8:01:
aa:22:3f:c4:13:3a:35:83:7b:21:fb:96:46:94:4b:58:6c:a4:
fd:ff:ab:b5:54:9c:1c:18:96:8b:5f:1b:40:2a:00:a1:89:11:
27:b1:9a:31:ad:40:45:c5:b9:4a:4f:17:70:b3:f0:20:07:bb:
b8:77:72:23:78:5a:44:13:ce:6f:d8:e6:6a:b8:f7:96:59:9a:
0c:66:e4:3c:6e:31:65:f2:ef:c8:46:bc:86:ea:cf:2a:4f:0b:
2f:a9:e7:5a:7e:1a:28:e3:01:e7:b9:23:b6:0e:db:f9:23:02:
cc:7b:2f:bc:bb:b2:2f:0c:8a:f6:07:6e:ff:26:49:de:50:8e:
53:b0:e2:0d:0c:3d:d6:ab:5f:b8:fa:bb:e5:6a:cf:5e:ef:d5:
9f:eb:ba:c6:42:cf:7c:2d:6d:46:cc:cb:5b:d9:af:82:bf:10:
b1:bf:09:0a:1b:56:c7:3c:5c:47:38:d2:5f:ec:38:b4:aa:2b:
9d:fc:91:f7:f8:12:71:a7:64:2d:e9:22:d9:26:11:a7:e3:69:
8f:26:6c:33:50:00:d9:8d:5e:f1:dd:93:8d:67:ea:f3:17:08:
ef:4d:a6:12
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICRd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjQwNDE1MTQwMjM5WhcNMjUwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEyQzhBRjExMC8GA1UEBRMoNDI0RTBBMzg0M0YzRkExRjQ0QjZBRjJF
RjNFRTExODE1QzRCNTIwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKMUnNvrPW17Qzt5Rbm8ruvpz0PrzbzsRpgwi6v+0UEMGg6Q1QgQN+clG3oi/bom
IDxwX0I8kXJ+2IxRMLhVJ5M343un227jnvW16wHe1kvaNDaXahvr3Zjr/UE4CzwQ
U34C28wTEJw4SVQcjYBnxqME/FHMTTBtFYcYH5YK/LAyK6KAq/n8Tfm0G1GNkYYm
T86u3pzrFAfcAjzvUvcFowptPf8JOk0X3Dq9AByKdGKlGaQafRDpp6YNoRCbABYL
tGTUShcnR0Ew3Dea7Ina+eJPr/Adbuz5Ul2CpMLCa5VYxFWferenqXJwO169Kxan
egSDAv4Go+swRupY4PCtZBMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRCTgo4Q/P6
H0S2ry7z7hGBXEtSCTAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MkM4QUYvRUUwQUVFQ0EzRTgxMTFFQjlBQkQ5MjBGQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJDOEFGL0VFMEFFRUNBM0U4MTExRUI5QUJEOTIwRkM0RjlBRTAyL1FrNEtPRVB6
LWg5RXRxOHU4LTRSZ1Z4TFVnay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAsIaSDANBgkqhkiG9w0BAQsFAAOCAQEAn+ETUFYG2gRLRG41XNkz
NDbO+gF92wG5Sx2miAxKSR6VbOgBqiI/xBM6NYN7IfuWRpRLWGyk/f+rtVScHBiW
i18bQCoAoYkRJ7GaMa1ARcW5Sk8XcLPwIAe7uHdyI3haRBPOb9jmarj3llmaDGbk
PG4xZfLvyEa8hurPKk8LL6nnWn4aKOMB57kjtg7b+SMCzHsvvLuyLwyK9gdu/yZJ
3lCOU7DiDQw91qtfuPq75WrPXu/Vn+u6xkLPfC1tRszLW9mvgr8Qsb8JChtWxzxc
RzjSX+w4tKornfyR9/gScadkLeki2SYRp+NpjyZsM1AA2Y1e8d2TjWfq8xcI702m
Eg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:04 2024 by rpki-client on console-fra.rpki-client.org