Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer
File: 18ttHdz5NKH1nk_-SYLwtMUsNfU.cer (raw, json)
Hash identifier: rehqXyhzGsUMP4FHS1EbBo2x2j4lpho0y5ZLkPuYpmk=
Subject key identifier: D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4AB4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 May 2023 14:06:40 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 64.119.16.0/20
IP: 66.181.160.0/19
IP: 192.82.64.0/19
IP: 192.82.100.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 09:10:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19124 (0x4ab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 10 14:06:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A914DA2D/serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:2f:f0:f5:0f:22:45:50:29:45:c6:bd:19:
ab:c1:1f:be:c1:15:0a:d9:eb:19:95:89:92:dc:9a:
70:3f:f0:63:6b:dd:48:e6:4c:6c:79:82:6b:a2:dc:
d6:ff:26:12:2a:fa:dc:8a:63:d3:d9:4b:0d:a0:24:
8e:e2:62:c6:27:79:66:d2:a3:e5:16:d2:18:5e:56:
30:87:28:1f:af:25:6d:db:12:d1:8c:07:fe:b9:93:
e6:d4:d6:42:af:4f:df:f6:43:cd:2a:f0:48:df:1a:
0f:29:5f:6c:07:a7:ea:4e:9d:d7:96:de:61:c6:d8:
eb:54:f8:cf:35:2c:83:e8:d0:b7:e4:1e:6a:b2:61:
97:a8:8a:2e:63:97:68:97:21:28:a7:74:50:4f:3c:
65:e4:aa:85:75:76:a7:b6:9b:dc:b4:ad:26:f7:df:
47:d6:14:4c:5f:5a:f9:f8:32:68:0b:9b:0c:6d:3e:
42:ec:17:79:81:03:08:53:83:09:c2:14:8f:4e:08:
64:11:a1:9b:bb:4d:01:4d:a8:65:a3:1f:0e:6e:79:
d9:1e:ff:4d:7d:f6:8c:2d:bd:9b:7c:00:26:06:c2:
7b:0e:18:f0:df:2e:99:74:93:79:c3:13:b7:62:8a:
f6:b3:ad:30:a6:0f:3e:d6:71:f6:ed:42:f0:85:e1:
81:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
64.119.16.0/20
66.181.160.0/19
192.82.64.0/19
192.82.100.0/24
Signature Algorithm: sha256WithRSAEncryption
25:ed:d0:90:46:23:d8:69:1b:c8:00:f6:35:93:69:7b:19:cd:
92:3a:a0:f1:98:f4:99:37:73:10:91:02:d5:c1:45:9b:c0:f4:
2a:38:42:6c:12:5a:3b:b9:7a:d4:55:7a:5b:5c:b2:15:4f:73:
7c:99:44:0b:15:99:31:c7:ed:6f:05:28:0d:b2:0c:20:1d:3b:
7a:2d:1f:79:b4:1b:78:9d:f1:d1:8c:7b:8f:0c:1a:c9:a2:a7:
d1:32:7a:43:c4:48:3b:d7:01:ad:21:cc:39:b2:c0:d3:51:d2:
c4:1d:45:dc:0c:b7:2f:f5:b4:33:ba:0c:08:e5:26:85:7e:62:
8f:70:68:b7:a5:c2:b1:4d:90:e4:f0:dd:92:f4:eb:52:24:1e:
f3:82:50:3b:2f:6c:63:d9:ed:75:18:99:90:16:ca:9b:b0:92:
13:c8:29:5f:4e:34:2c:95:76:b8:1b:e8:1a:58:01:72:9a:ad:
da:99:7c:fa:31:0f:52:e7:4e:0e:68:ef:2e:1c:b0:0a:fc:33:
19:58:32:85:29:bb:b2:f9:0c:23:6a:d2:94:bb:b7:ce:45:37:
36:ec:5a:d9:fd:b4:97:6f:b7:3a:41:42:98:b9:2c:78:01:39:
b0:2c:8a:3f:ab:45:d7:9f:72:67:3e:b9:47:d9:d2:9b:57:47:
c4:b7:47:4d
-----BEGIN CERTIFICATE-----
MIIGDzCCBPegAwIBAgICSrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjMwNTEwMTQwNjQwWhcNMjQwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE0REEyRDExMC8GA1UEBRMoRDdDQjZEMUREQ0Y5MzRBMUY1OUU0RkZF
NDk4MkYwQjRDNTJDMzVGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALiCL/D1DyJFUClFxr0Zq8EfvsEVCtnrGZWJktyacD/wY2vdSOZMbHmCa6Lc1v8m
Eir63Ipj09lLDaAkjuJixid5ZtKj5RbSGF5WMIcoH68lbdsS0YwH/rmT5tTWQq9P
3/ZDzSrwSN8aDylfbAen6k6d15beYcbY61T4zzUsg+jQt+QearJhl6iKLmOXaJch
KKd0UE88ZeSqhXV2p7ab3LStJvffR9YUTF9a+fgyaAubDG0+QuwXeYEDCFODCcIU
j04IZBGhm7tNAU2oZaMfDm552R7/TX32jC29m3wAJgbCew4Y8N8umXSTecMTt2KK
9rOtMKYPPtZx9u1C8IXhgccCAwEAAaOCAwUwggMBMB0GA1UdDgQWBBTXy20d3Pk0
ofWeT/5JgvC0xSw19TAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NERBMkQvNzJCNUYyOTJEMjdEMTFFQ0E3M0VGMTU0QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTREQTJELzcyQjVGMjkyRDI3RDExRUNBNzNFRjE1NEM0RjlBRTAyLzE4dHRIZHo1
TktIMW5rXy1TWUx3dE1Vc05mVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQiMCAw
HgQCAAEwGAMEBEB3EAMEBUK1oAMEBcBSQAMEAMBSZDANBgkqhkiG9w0BAQsFAAOC
AQEAJe3QkEYj2GkbyAD2NZNpexnNkjqg8Zj0mTdzEJEC1cFFm8D0KjhCbBJaO7l6
1FV6W1yyFU9zfJlECxWZMcftbwUoDbIMIB07ei0febQbeJ3x0Yx7jwwayaKn0TJ6
Q8RIO9cBrSHMObLA01HSxB1F3Ay3L/W0M7oMCOUmhX5ij3Bot6XCsU2Q5PDdkvTr
UiQe84JQOy9sY9ntdRiZkBbKm7CSE8gpX040LJV2uBvoGlgBcpqt2pl8+jEPUudO
DmjvLhywCvwzGVgyhSm7svkMI2rSlLu3zkU3Nuxa2f20l2+3OkFCmLkseAE5sCyK
P6tF159yZz65R9nSm1dHxLdHTQ==
-----END CERTIFICATE-----
Generated at Wed Apr 24 11:03:36 2024 by rpki-client on console-ams.rpki-client.org