Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer
File: 36hgRQpvzrHG57jU_1SxVBobabM.cer (raw, json)
Hash identifier: LW4y31ob/egjw3oHqY3uYEJ8PmFXg4CN7DjitHqpPDE=
Subject key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4DE8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Oct 2023 03:03:51 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 146.144.8.0/23
IP: 152.147.0.0/16
IP: 157.128.0.0/16
IP: 192.189.208.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19944 (0x4de8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 5 03:03:51 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9a:47:5f:13:57:bf:24:05:23:2f:29:3f:90:
af:91:bd:de:43:e0:02:38:68:7d:86:74:a0:10:1c:
03:bf:36:c2:8a:f4:d7:e5:bd:f3:23:8d:f1:d9:0e:
b5:53:2d:18:61:de:c0:8a:a6:77:da:57:73:04:5a:
f5:9a:59:a0:1d:0a:4b:6e:8b:c3:0d:f0:9c:0e:7b:
d4:6b:3c:b9:f9:7a:b3:a0:e0:a0:c0:cb:69:bf:18:
ae:3e:9e:4e:5b:14:df:3b:73:bf:5b:b0:25:8d:bd:
d4:8d:46:58:73:c8:4f:77:29:32:e8:fe:12:c2:e9:
8f:fd:43:89:60:d7:03:a6:f6:8b:e8:db:46:c5:4a:
36:4c:e4:b6:2f:10:7c:82:66:46:c9:9b:6b:ed:00:
b6:d0:43:64:d4:6c:19:48:15:b4:f7:80:cd:36:e4:
c8:7f:35:37:d3:4c:37:26:76:f4:35:9b:9b:72:99:
d3:be:14:a4:d0:df:7f:12:6e:ec:c4:bd:19:02:49:
a2:3d:f5:95:a1:66:72:dd:5f:14:d9:e7:e3:35:c2:
ba:97:0b:e8:f6:11:d2:8c:a0:17:bb:31:b4:12:fe:
54:b9:04:d0:9c:fa:29:8c:21:f8:80:25:88:95:b2:
1e:9f:ca:dd:42:76:30:2a:65:66:76:98:15:a4:ab:
2c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
146.144.8.0/23
152.147.0.0/16
157.128.0.0/16
192.189.208.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ec:9f:07:73:32:98:7e:93:d5:0e:6c:d9:db:f3:87:a5:de:
83:ff:58:33:59:c4:8e:a2:11:82:a4:21:04:75:d1:d7:d4:68:
56:5a:d9:7e:a9:e5:9b:16:8a:69:1c:bc:1c:8d:34:77:3f:0b:
89:fb:b0:f8:b1:bc:10:bd:06:33:50:79:9e:65:5f:08:ff:54:
05:9d:2d:f9:f5:75:df:d6:5d:e9:36:85:73:88:3d:c7:49:05:
1c:99:60:fd:cb:0a:09:28:5c:a6:11:a3:ef:c7:fc:21:1f:25:
77:4e:94:58:9f:48:d8:6d:e3:14:79:6d:a8:7a:7f:36:8c:77:
06:63:77:a1:ec:81:a6:8b:0e:e1:22:0b:40:80:0c:93:0c:8d:
de:b8:15:60:bc:b6:bb:4b:06:d0:09:e1:e8:02:2b:52:f3:47:
b7:df:9d:d5:4b:3a:85:32:44:c4:0e:c3:41:7f:7d:40:5e:cf:
cd:59:a1:98:17:ba:a5:c0:9f:6e:8b:28:b9:7d:e0:6a:cb:5d:
39:12:d9:27:0e:af:6b:a9:11:08:64:ba:b8:a7:97:88:8b:67:
bb:27:40:06:15:cc:37:f9:b2:78:6e:d4:2b:00:11:73:ff:de:
ee:dc:3b:56:1d:f8:e0:56:a3:16:9f:02:98:a0:91:3a:5d:f4:
d2:94:1d:f4
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgICTegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjMxMDA1MDMwMzUxWhcNMjQxMjAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE1MzRCODExMC8GA1UEBRMoREZBODYwNDUwQTZGQ0VCMUM2RTdCOEQ0
RkY1NEIxNTQxQTFCNjlCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMWaR18TV78kBSMvKT+Qr5G93kPgAjhofYZ0oBAcA782wor01+W98yON8dkOtVMt
GGHewIqmd9pXcwRa9ZpZoB0KS26Lww3wnA571Gs8ufl6s6DgoMDLab8Yrj6eTlsU
3ztzv1uwJY291I1GWHPIT3cpMuj+EsLpj/1DiWDXA6b2i+jbRsVKNkzkti8QfIJm
Rsmba+0AttBDZNRsGUgVtPeAzTbkyH81N9NMNyZ29DWbm3KZ074UpNDffxJu7MS9
GQJJoj31laFmct1fFNnn4zXCupcL6PYR0oygF7sxtBL+VLkE0Jz6KYwh+IAliJWy
Hp/K3UJ2MCplZnaYFaSrLHcCAwEAAaOCAwMwggL/MB0GA1UdDgQWBBTfqGBFCm/O
scbnuNT/VLFUGhtpszAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTM0QjgvOUYwM0JCNjAwOTQ0MTFFRDhERDEwOTcxQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTUzNEI4LzlGMDNCQjYwMDk0NDExRUQ4REQxMDk3MUM0RjlBRTAyLzM2aGdSUXB2
enJIRzU3alVfMVN4VkJvYmFiTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAvBggrBgEFBQcBBwEB/wQgMB4w
HAQCAAEwFgMEAZKQCAMDAJiTAwMAnYADBADAvdAwDQYJKoZIhvcNAQELBQADggEB
AEPsnwdzMph+k9UObNnb84el3oP/WDNZxI6iEYKkIQR10dfUaFZa2X6p5ZsWimkc
vByNNHc/C4n7sPixvBC9BjNQeZ5lXwj/VAWdLfn1dd/WXek2hXOIPcdJBRyZYP3L
CgkoXKYRo+/H/CEfJXdOlFifSNht4xR5bah6fzaMdwZjd6HsgaaLDuEiC0CADJMM
jd64FWC8trtLBtAJ4egCK1LzR7ffndVLOoUyRMQOw0F/fUBez81ZoZgXuqXAn26L
KLl94GrLXTkS2ScOr2upEQhkurinl4iLZ7snQAYVzDf5snhu1CsAEXP/3u7cO1Yd
+OBWoxafApigkTpd9NKUHfQ=
-----END CERTIFICATE-----
Generated at Fri Apr 19 16:12:43 2024 by rpki-client on console-ams.rpki-client.org