Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer
File: 0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer (raw, json)
Hash identifier: rxzIFIfbG3AQWEZJotwnfIptB1UsgQ3hTdPOUTn0M1A=
Subject key identifier: D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 592A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 16:05:10 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 162.253.16.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 01 Dec 2024 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22826 (0x592a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 2 16:05:10 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91D1691/serialNumber=D1479EF60341E39ECA172E4376443A471975CBEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c8:b5:94:30:25:47:0c:34:a5:c1:00:a9:4a:
39:83:b4:f9:bf:3d:aa:aa:e4:e2:4f:af:f4:a5:63:
b2:26:6d:2e:2c:26:c3:95:e1:52:17:56:66:cf:71:
99:f4:60:53:e5:70:c8:b3:6c:83:12:e0:88:8b:33:
c7:f7:19:8b:fa:54:21:a8:a7:94:a4:e8:6e:fd:d5:
e9:28:fe:4b:f3:36:c5:10:0d:c0:fe:15:38:f1:02:
3a:0d:ca:6f:fb:2d:a6:93:c7:0b:1d:0d:0f:13:a3:
e2:1c:58:cc:07:c2:04:bc:46:f6:41:94:e9:29:c1:
2a:6a:4d:cd:39:e8:02:8f:e3:81:86:e5:c1:df:75:
d3:ed:a1:93:31:72:be:63:d5:cd:c5:09:32:03:03:
91:e7:da:8b:5f:73:59:83:34:58:e1:9c:70:57:2d:
69:a2:98:19:f3:cc:e2:62:c3:5c:39:eb:30:dd:48:
20:58:3f:7a:da:15:5d:ce:00:1e:9c:53:6e:23:0a:
d2:c4:78:63:3d:fc:18:dd:53:88:68:eb:66:a3:92:
9f:86:3f:04:a0:d8:ee:70:18:a4:ba:50:bd:b2:72:
83:b7:73:bf:b5:5d:cb:ab:12:21:b7:76:d9:18:22:
43:e1:fe:df:48:8d:1c:21:a4:56:72:78:a4:06:99:
57:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
162.253.16.0/22
Signature Algorithm: sha256WithRSAEncryption
04:26:7d:06:d8:40:e8:30:d3:65:ab:e8:1d:ca:4b:db:e4:cd:
e9:34:94:c5:22:7a:48:bc:1f:97:bb:ee:26:02:6e:c8:af:22:
d0:59:a3:ab:9b:be:15:ec:d5:7a:52:5b:81:6d:1c:f9:fd:0e:
81:c4:ee:78:d4:fc:05:af:db:26:1c:6c:87:ce:a8:cf:63:19:
d5:d1:b8:7b:72:56:a0:26:1a:1c:7a:26:c7:1a:f4:2a:b1:16:
85:28:eb:ae:6f:2a:2d:6b:b5:8b:53:87:a2:98:98:4b:18:c0:
66:bc:c9:cd:0c:0e:ab:41:be:1e:93:84:1b:c3:03:9c:99:7d:
76:b1:2d:a2:e9:0b:bf:1c:8f:f7:b7:7d:e4:45:1e:c0:9e:20:
d4:c4:52:2f:94:e2:b2:46:ff:20:47:5a:be:ef:26:fd:a1:03:
29:c8:b4:59:61:42:2e:05:c1:db:24:e7:e0:b2:64:5e:c6:67:
eb:50:68:53:3d:5d:eb:4b:1c:0e:30:08:34:c0:89:75:81:4f:
11:a5:ff:03:d4:b1:52:e0:c3:94:5b:a6:2f:9f:06:2d:6d:0a:
82:f6:df:b1:b9:43:76:27:02:56:83:24:2d:94:c5:b6:84:84:
d8:f7:b5:d2:be:30:6a:99:22:60:27:17:46:a2:67:9c:a7:70:
19:f6:0d:5a
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICWSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwODAyMTYwNTEwWhcNMjUxMDMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFEMTY5MTExMC8GA1UEBRMoRDE0NzlFRjYwMzQxRTM5RUNBMTcyRTQz
NzY0NDNBNDcxOTc1Q0JFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AObItZQwJUcMNKXBAKlKOYO0+b89qqrk4k+v9KVjsiZtLiwmw5XhUhdWZs9xmfRg
U+VwyLNsgxLgiIszx/cZi/pUIainlKTobv3V6Sj+S/M2xRANwP4VOPECOg3Kb/st
ppPHCx0NDxOj4hxYzAfCBLxG9kGU6SnBKmpNzTnoAo/jgYblwd910+2hkzFyvmPV
zcUJMgMDkefai19zWYM0WOGccFctaaKYGfPM4mLDXDnrMN1IIFg/etoVXc4AHpxT
biMK0sR4Yz38GN1TiGjrZqOSn4Y/BKDY7nAYpLpQvbJyg7dzv7Vdy6sSIbd22Rgi
Q+H+30iNHCGkVnJ4pAaZV8kCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTRR572A0Hj
nsoXLkN2RDpHGXXL7zAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RDE2OTEvNDgyQkExNzI5RDI0MTFFNzg2MUEyMjZCQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQxNjkxLzQ4MkJBMTcyOUQyNDExRTc4NjFBMjI2QkM0RjlBRTAyLzBVZWU5Z05C
NDU3S0Z5NURka1E2UnhsMXktOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAqL9EDANBgkqhkiG9w0BAQsFAAOCAQEABCZ9BthA6DDTZavoHcpL
2+TN6TSUxSJ6SLwfl7vuJgJuyK8i0Fmjq5u+FezVelJbgW0c+f0OgcTueNT8Ba/b
Jhxsh86oz2MZ1dG4e3JWoCYaHHomxxr0KrEWhSjrrm8qLWu1i1OHopiYSxjAZrzJ
zQwOq0G+HpOEG8MDnJl9drEtoukLvxyP97d95EUewJ4g1MRSL5Tiskb/IEdavu8m
/aEDKci0WWFCLgXB2yTn4LJkXsZn61BoUz1d60scDjAINMCJdYFPEaX/A9SxUuDD
lFumL58GLW0KgvbfsblDdicCVoMkLZTFtoSE2Pe10r4wapkiYCcXRqJnnKdwGfYN
Wg==
-----END CERTIFICATE-----
Generated at Sun Nov 24 05:19:33 2024 by rpki-client on console-ams.rpki-client.org