Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.cer
File: 6TZ0sfO2kWsrY2O4Yda3ezkF3dg.cer (raw, json)
Hash identifier: r2O//zmmZb/EmhAn3fT0+qE0fv2xt0iCv4tAu51lI5Q=
Subject key identifier: E9:36:74:B1:F3:B6:91:6B:2B:63:63:B8:61:D6:B7:7B:39:05:DD:D8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5C5E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 15 Oct 2024 16:35:56 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 192.173.16.0 -- 192.173.24.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23646 (0x5c5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 15 16:35:56 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91889B6/serialNumber=E93674B1F3B6916B2B6363B861D6B77B3905DDD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:22:38:8d:20:d7:29:34:14:de:88:f9:69:d1:
ac:2f:f0:0b:2c:62:57:c0:35:b8:de:be:0c:e0:92:
c3:4e:9f:f9:5c:24:1b:bd:aa:3c:46:3a:49:59:02:
25:d1:4e:60:d6:09:d2:f9:4e:18:fd:9e:77:06:d2:
c7:b1:fe:33:c9:06:85:88:bc:92:ae:23:ef:3c:2a:
37:7b:2c:a9:50:af:b0:22:95:e9:7f:f5:ce:cf:ce:
c5:88:5c:2b:40:9f:04:1c:0d:d1:68:64:e1:bb:b2:
fc:2b:45:89:c6:33:49:cb:49:1b:44:56:07:da:00:
ec:b9:28:09:a8:61:4f:67:ad:5c:99:bc:3c:8d:a5:
b3:23:0d:44:33:6d:ae:fc:f7:15:98:a2:30:04:9a:
02:2c:c9:8c:15:4c:db:7c:9d:f1:06:31:ee:a6:ca:
88:bf:48:e1:65:eb:50:c3:f5:0f:63:4b:12:ae:5e:
09:8c:ee:ce:8c:c2:31:99:1f:71:a7:ce:c6:56:81:
d3:ca:f1:58:f1:86:fe:8b:74:9f:f9:f6:1e:bc:4a:
e7:67:40:61:77:c8:70:fb:5e:07:ba:a1:cf:66:2e:
51:2f:28:58:64:4e:c3:ef:52:19:b5:9c:d6:55:31:
2d:44:c4:66:81:f1:2a:30:8a:54:98:95:ae:5c:32:
45:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:36:74:B1:F3:B6:91:6B:2B:63:63:B8:61:D6:B7:7B:39:05:DD:D8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91889B6/2C4EF9761D9611E2A6548E7E08B02CD2/6TZ0sfO2kWsrY2O4Yda3ezkF3dg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.173.16.0-192.173.24.255
Signature Algorithm: sha256WithRSAEncryption
4e:d9:8e:5f:52:03:90:48:0d:db:3d:de:58:9a:b2:34:9e:a3:
bd:47:23:41:1d:f9:f9:94:d0:49:84:5e:89:1d:a0:ec:86:99:
c0:d6:5b:99:e7:a1:9e:6a:39:23:e1:3f:dc:eb:e5:99:bc:ed:
f8:23:8c:3d:2a:51:7f:13:c9:76:94:ba:a1:3b:39:23:ef:fd:
b9:de:e0:2b:65:20:93:ff:ad:84:c0:0a:ea:b9:9e:ed:e8:60:
65:6b:c4:87:1d:fc:e7:dc:b9:be:37:94:26:13:a7:c2:d4:d8:
6f:94:ab:88:b0:b3:2d:c9:35:45:05:be:7f:b4:d0:d4:f0:58:
97:d0:fa:5c:b0:f0:b5:bd:b8:31:42:d3:46:73:05:44:c8:72:
5e:09:83:33:53:d0:c4:b0:2d:42:ca:08:d6:06:6b:7b:59:66:
cb:4e:82:1d:02:40:22:3e:02:b1:f7:ee:f6:df:69:2f:6d:17:
90:71:c7:1c:7e:af:42:86:92:65:2c:0c:1f:13:f2:ac:70:9b:
3f:52:d4:35:cc:52:94:ee:c0:d0:d6:49:ab:86:28:d5:05:8b:
c6:bf:8a:b4:f7:f7:2a:71:1d:7d:4b:62:79:be:b5:dc:90:cf:
7d:09:79:f6:da:d6:0f:d3:cc:15:b3:d4:62:43:40:11:8d:04:
fb:ee:1f:82
-----BEGIN CERTIFICATE-----
MIIGBTCCBO2gAwIBAgICXF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDE1MTYzNTU2WhcNMjUxMjMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE4ODlCNjExMC8GA1UEBRMoRTkzNjc0QjFGM0I2OTE2QjJCNjM2M0I4
NjFENkI3N0IzOTA1REREODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMIiOI0g1yk0FN6I+WnRrC/wCyxiV8A1uN6+DOCSw06f+VwkG72qPEY6SVkCJdFO
YNYJ0vlOGP2edwbSx7H+M8kGhYi8kq4j7zwqN3ssqVCvsCKV6X/1zs/OxYhcK0Cf
BBwN0Whk4buy/CtFicYzSctJG0RWB9oA7LkoCahhT2etXJm8PI2lsyMNRDNtrvz3
FZiiMASaAizJjBVM23yd8QYx7qbKiL9I4WXrUMP1D2NLEq5eCYzuzozCMZkfcafO
xlaB08rxWPGG/ot0n/n2HrxK52dAYXfIcPteB7qhz2YuUS8oWGROw+9SGbWc1lUx
LUTEZoHxKjCKVJiVrlwyRcECAwEAAaOCAvswggL3MB0GA1UdDgQWBBTpNnSx87aR
aytjY7hh1rd7OQXd2DAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODg5QjYvMkM0RUY5NzYxRDk2MTFFMkE2NTQ4RTdFMDhCMDJDRDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg4OUI2LzJDNEVGOTc2MUQ5NjExRTJBNjU0OEU3RTA4QjAyQ0QyLzZUWjBzZk8y
a1dzclkyTzRZZGEzZXprRjNkZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQYMBYw
FAQCAAEwDjAMAwQEwK0QAwQAwK0YMA0GCSqGSIb3DQEBCwUAA4IBAQBO2Y5fUgOQ
SA3bPd5YmrI0nqO9RyNBHfn5lNBJhF6JHaDshpnA1luZ56Geajkj4T/c6+WZvO34
I4w9KlF/E8l2lLqhOzkj7/253uArZSCT/62EwArquZ7t6GBla8SHHfzn3Lm+N5Qm
E6fC1NhvlKuIsLMtyTVFBb5/tNDU8FiX0PpcsPC1vbgxQtNGcwVEyHJeCYMzU9DE
sC1CygjWBmt7WWbLToIdAkAiPgKx9+7232kvbReQccccfq9ChpJlLAwfE/KscJs/
UtQ1zFKU7sDQ1kmrhijVBYvGv4q09/cqcR19S2J5vrXckM99CXn22tYP08wVs9Ri
Q0ARjQT77h+C
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org