Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer
File:                     0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer (raw, json)
Hash identifier:          52w4BfAV7f9k5/uaN+ysONkNeWe2uTJ+Bn7bXMrx9w4=
Subject key identifier:   D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer:       /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial:       4C81
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Tue 01 Aug 2023 22:58:18 +0000
Certificate not after:    Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources:    IP: 162.253.16.0/22

Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 04 Apr 2024 15:53:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19585 (0x4c81)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
        Validity
            Not Before: Aug  1 22:58:18 2023 GMT
            Not After : Oct 31 00:00:00 2024 GMT
        Subject: CN=A91D1691/serialNumber=D1479EF60341E39ECA172E4376443A471975CBEF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:c8:b5:94:30:25:47:0c:34:a5:c1:00:a9:4a:
                    39:83:b4:f9:bf:3d:aa:aa:e4:e2:4f:af:f4:a5:63:
                    b2:26:6d:2e:2c:26:c3:95:e1:52:17:56:66:cf:71:
                    99:f4:60:53:e5:70:c8:b3:6c:83:12:e0:88:8b:33:
                    c7:f7:19:8b:fa:54:21:a8:a7:94:a4:e8:6e:fd:d5:
                    e9:28:fe:4b:f3:36:c5:10:0d:c0:fe:15:38:f1:02:
                    3a:0d:ca:6f:fb:2d:a6:93:c7:0b:1d:0d:0f:13:a3:
                    e2:1c:58:cc:07:c2:04:bc:46:f6:41:94:e9:29:c1:
                    2a:6a:4d:cd:39:e8:02:8f:e3:81:86:e5:c1:df:75:
                    d3:ed:a1:93:31:72:be:63:d5:cd:c5:09:32:03:03:
                    91:e7:da:8b:5f:73:59:83:34:58:e1:9c:70:57:2d:
                    69:a2:98:19:f3:cc:e2:62:c3:5c:39:eb:30:dd:48:
                    20:58:3f:7a:da:15:5d:ce:00:1e:9c:53:6e:23:0a:
                    d2:c4:78:63:3d:fc:18:dd:53:88:68:eb:66:a3:92:
                    9f:86:3f:04:a0:d8:ee:70:18:a4:ba:50:bd:b2:72:
                    83:b7:73:bf:b5:5d:cb:ab:12:21:b7:76:d9:18:22:
                    43:e1:fe:df:48:8d:1c:21:a4:56:72:78:a4:06:99:
                    57:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF
            X509v3 Authority Key Identifier:
                keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  162.253.16.0/22

    Signature Algorithm: sha256WithRSAEncryption
         1d:61:4d:59:f9:5d:d0:91:de:a1:79:6e:5f:93:d5:96:1e:2d:
         f4:c1:93:c1:3f:53:b2:04:36:a4:0c:c6:76:21:f5:e5:5d:78:
         fe:ee:0b:79:d5:78:dc:18:b6:fa:1c:46:12:df:63:85:5c:7d:
         c4:7e:9b:31:53:89:0a:df:f1:70:73:90:76:f7:96:81:7a:34:
         dc:e1:e7:a8:71:cb:ab:98:4e:fc:50:30:98:a2:35:24:d5:ef:
         87:28:4d:42:68:05:de:13:57:92:0a:1b:0c:56:b5:54:79:bf:
         9f:94:b9:9c:21:85:29:35:c0:38:f1:20:84:e8:2d:52:31:4f:
         df:cb:85:6c:0c:de:6f:31:ad:24:14:aa:89:3b:0e:d6:14:bd:
         bb:f7:8d:cc:c3:64:a2:56:f9:30:08:8a:95:26:6c:42:6f:8c:
         03:5f:93:05:99:0e:52:04:c7:94:fa:d7:d8:bf:11:3b:2b:36:
         a1:75:c0:34:bc:31:76:f9:ca:d0:23:d0:35:40:9e:55:e8:e3:
         bf:fd:85:f7:84:e9:35:b9:9d:e7:c0:cd:96:53:f0:45:14:69:
         c5:e3:43:7a:3d:c8:50:f6:78:92:a4:03:42:1e:d7:12:1d:be:
         df:b5:95:01:c6:2e:ee:24:41:34:39:78:2f:7c:cc:30:19:08:
         49:70:bb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 18:54:45 2024 by rpki-client on console-ams.rpki-client.org