Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer
File: mMl-BS19mtU2CVm50-B22t126gE.cer (raw, json)
Hash identifier: z8GqSuzM14D9eh9n51Hnz+1J5O0QyYd74buFaRLK9/8=
Subject key identifier: 98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 407C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 14 Apr 2023 06:10:35 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 194.180.111.0 -- 194.180.113.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 May 2024 20:58:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16508 (0x407c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 14 06:10:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:5e:fa:3d:88:f5:e2:ef:8b:eb:dc:00:80:
36:8b:07:ed:db:90:e9:2c:36:cb:04:f7:1f:82:3b:
c1:f9:18:a5:a4:37:49:ca:a3:71:a7:84:77:2f:19:
03:a3:78:ba:d6:84:d8:32:ea:49:79:63:07:a4:6e:
02:2e:8e:f4:b3:4f:01:fb:8e:b3:b2:8c:34:2a:c7:
0e:87:84:58:9f:c9:d5:38:f8:44:f2:90:d6:fd:d6:
6f:1b:c1:b0:63:94:0f:b9:9b:0b:cf:fd:2d:d7:00:
72:8b:68:1e:43:1f:8c:94:7f:86:03:ef:86:63:2e:
11:e8:3c:d5:12:f7:df:c7:d6:fb:db:cf:0e:18:f1:
c0:d1:3c:8b:79:6f:b3:93:f8:08:4a:b9:61:d7:5d:
d8:7b:1f:7f:63:3f:40:3e:dd:b9:26:41:d2:45:c0:
37:e4:a6:c2:cc:92:61:d4:60:cf:0c:b1:5a:2f:6b:
05:81:6f:45:0c:e0:00:d9:9a:ff:a7:c2:4f:0e:b2:
8d:24:da:5b:9a:ce:b7:e3:88:fb:50:15:84:d0:0a:
20:83:c4:30:0c:57:f9:7d:27:51:b6:ed:b3:df:2c:
10:6c:69:c7:ed:46:07:a9:17:7d:9f:a9:7a:47:1b:
cb:26:99:64:fb:5a:6f:77:5c:9f:b6:b0:e7:1b:e3:
0c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.180.111.0-194.180.113.255
Signature Algorithm: sha256WithRSAEncryption
ad:10:8e:05:56:f5:51:dc:18:46:d8:32:1a:d9:de:9e:f5:43:
db:83:4d:76:39:6e:d8:25:80:03:49:8a:fd:c1:2b:d3:93:22:
f5:76:88:00:a4:52:ed:62:94:9f:16:c8:94:89:96:e7:62:ff:
e0:a2:2f:e3:96:bf:a4:49:9a:79:5b:1b:37:5e:3e:7b:67:6d:
00:30:c3:66:81:bf:14:87:2d:a6:39:9f:08:cc:52:79:8a:da:
13:42:df:df:73:e0:b9:78:f1:73:9f:02:d4:84:8b:85:39:4f:
a4:5c:4c:6c:ce:af:ee:38:21:a5:78:8d:24:fa:c0:fe:aa:8d:
3a:0f:1e:15:7c:fc:9e:45:35:f7:e1:67:5c:40:06:bc:da:ff:
91:e0:d6:7c:58:f3:5b:bd:9d:a0:01:a4:8d:7b:d9:e5:65:db:
88:90:74:ac:9b:4b:58:c0:2c:55:64:2e:c1:7f:ac:e0:2f:4a:
8c:fb:54:e8:2c:80:b6:2d:0d:a4:f8:3e:29:df:12:59:17:50:
7f:23:8d:18:31:93:ba:4b:bc:32:62:a9:1a:49:8a:01:7e:6d:
09:d6:a6:d1:8c:5c:83:e8:79:08:0e:94:b3:57:e8:1d:e2:0a:
7a:8c:05:8c:0d:d2:30:2d:1f:87:ef:55:d5:05:b7:99:a1:a4:
4f:03:8d:3b
-----BEGIN CERTIFICATE-----
MIIGBTCCBO2gAwIBAgICQHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjMwNDE0MDYxMDM1WhcNMjQwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFDQjQzNTExMC8GA1UEBRMoOThDOTdFMDUyRDdEOUFENTM2MDk1OUI5
RDNFMDc2REFERDc2RUEwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALLVXvo9iPXi74vr3ACANosH7duQ6Sw2ywT3H4I7wfkYpaQ3ScqjcaeEdy8ZA6N4
utaE2DLqSXljB6RuAi6O9LNPAfuOs7KMNCrHDoeEWJ/J1Tj4RPKQ1v3WbxvBsGOU
D7mbC8/9LdcAcotoHkMfjJR/hgPvhmMuEeg81RL338fW+9vPDhjxwNE8i3lvs5P4
CEq5Yddd2Hsff2M/QD7duSZB0kXAN+SmwsySYdRgzwyxWi9rBYFvRQzgANma/6fC
Tw6yjSTaW5rOt+OI+1AVhNAKIIPEMAxX+X0nUbbts98sEGxpx+1GB6kXfZ+pekcb
yyaZZPtab3dcn7aw5xvjDAMCAwEAAaOCAvswggL3MB0GA1UdDgQWBBSYyX4FLX2a
1TYJWbnT4Hba3XbqATAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0I0MzUvRUMwNTkwNDY1QkU5MTFFQjk2NjgwMDFFQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCNDM1L0VDMDU5MDQ2NUJFOTExRUI5NjY4MDAxRUM0RjlBRTAyL21NbC1CUzE5
bXRVMkNWbTUwLUIyMnQxMjZnRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQYMBYw
FAQCAAEwDjAMAwQAwrRvAwQBwrRwMA0GCSqGSIb3DQEBCwUAA4IBAQCtEI4FVvVR
3BhG2DIa2d6e9UPbg012OW7YJYADSYr9wSvTkyL1dogApFLtYpSfFsiUiZbnYv/g
oi/jlr+kSZp5Wxs3Xj57Z20AMMNmgb8Uhy2mOZ8IzFJ5itoTQt/fc+C5ePFznwLU
hIuFOU+kXExszq/uOCGleI0k+sD+qo06Dx4VfPyeRTX34WdcQAa82v+R4NZ8WPNb
vZ2gAaSNe9nlZduIkHSsm0tYwCxVZC7Bf6zgL0qM+1ToLIC2LQ2k+D4p3xJZF1B/
I40YMZO6S7wyYqkaSYoBfm0J1qbRjFyD6HkIDpSzV+gd4gp6jAWMDdIwLR+H71XV
BbeZoaRPA407
-----END CERTIFICATE-----
Generated at Sun May 5 22:37:14 2024 by rpki-client on console-ams.rpki-client.org