Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer
File: 7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer (raw, json)
Hash identifier: HqojTLxaRDB7yoTK6CRabvntew76WNBW0oBH8AuslTc=
Subject key identifier: EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5726
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 24 Jun 2024 06:39:28 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.228.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22310 (0x5726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 24 06:39:28 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A916DB72/serialNumber=ECE2E0160161B6F77FC74976FA7D46C3E4232DEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:90:25:2d:7a:48:53:0f:f9:31:af:6a:54:77:
03:d6:43:48:27:bb:2d:e8:97:d6:1c:06:6b:03:07:
04:8f:bc:23:a1:5f:49:46:80:73:87:e4:01:c5:35:
e5:84:72:8f:4b:29:9c:8f:db:66:33:f0:df:9f:8b:
e8:69:ee:0f:ab:00:4c:92:b9:5b:60:f4:c4:4f:00:
ff:30:f1:e1:21:6d:8b:41:d2:cf:38:83:bf:67:9f:
73:79:86:5b:00:e1:20:5b:90:52:a6:41:ce:73:90:
ff:55:a6:be:64:b7:4d:10:e0:36:e6:ca:82:43:05:
31:aa:16:14:9a:1e:7f:1a:a8:c0:57:bb:64:7e:8b:
c9:42:7a:ce:0b:55:a9:49:e5:1f:e7:63:7d:8c:4f:
11:3e:49:9c:f5:aa:aa:19:e7:8b:54:a0:7a:b2:87:
ae:7d:f9:af:18:b0:fa:fe:43:24:07:3d:66:21:5b:
7a:51:d4:19:70:27:98:53:70:95:cb:69:76:b4:ed:
c3:c1:34:8f:5c:97:6a:e6:4f:ed:db:10:0a:86:cb:
28:a3:07:14:64:9d:2a:92:bc:a4:7f:52:1c:89:bd:
4e:ab:6a:78:d9:8f:6f:72:8e:94:c2:50:42:34:99:
b0:2f:d6:aa:6a:f4:aa:f7:07:cb:c6:b7:cf:63:23:
2d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.228.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:20:6f:9e:16:e7:c7:c5:f3:e9:21:35:8a:7f:55:05:db:7d:
3d:9a:d6:22:61:f9:c0:15:52:53:f6:0e:c2:4e:b6:ac:5f:59:
d9:f1:c7:da:4c:9d:36:f3:42:e2:bc:4a:9d:3e:82:ef:54:df:
d7:c0:27:6e:61:d8:a4:ad:8d:38:31:29:9f:80:a2:78:a2:e4:
14:45:4b:80:77:1a:e5:74:03:d0:3a:76:ad:4f:cc:f2:36:24:
b4:c3:56:74:ec:6d:6e:8a:bd:a0:a1:86:a6:7e:d0:29:0f:aa:
8b:f5:cf:aa:65:1d:bf:6e:ca:b6:90:a6:23:f3:a8:cc:ad:b7:
46:0b:04:5b:38:03:6f:39:40:c1:ac:cb:1b:d2:19:a5:d7:df:
e7:f9:e5:d7:2e:ab:f8:02:e8:6f:f1:a3:7d:32:f8:34:5c:e8:
ba:bf:1f:9e:88:02:c1:33:bb:c9:c4:78:41:6b:55:6e:81:5b:
39:ae:e7:a5:b1:3a:75:b8:52:18:a9:2e:5c:fa:1e:cf:27:26:
d2:21:90:87:95:9c:0c:99:2f:86:3e:c4:b9:d8:c7:4f:dd:fb:
fe:19:8c:db:89:3a:a3:09:8b:9d:84:e4:89:da:08:2b:80:71:
b5:46:67:33:86:5c:19:e9:08:dc:58:e4:78:21:4e:66:8c:97:
ee:21:d0:d7
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICVyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwNjI0MDYzOTI4WhcNMjUwOTMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE2REI3MjExMC8GA1UEBRMoRUNFMkUwMTYwMTYxQjZGNzdGQzc0OTc2
RkE3RDQ2QzNFNDIzMkRFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANWQJS16SFMP+TGvalR3A9ZDSCe7LeiX1hwGawMHBI+8I6FfSUaAc4fkAcU15YRy
j0spnI/bZjPw35+L6GnuD6sATJK5W2D0xE8A/zDx4SFti0HSzziDv2efc3mGWwDh
IFuQUqZBznOQ/1WmvmS3TRDgNubKgkMFMaoWFJoefxqowFe7ZH6LyUJ6zgtVqUnl
H+djfYxPET5JnPWqqhnni1SgerKHrn35rxiw+v5DJAc9ZiFbelHUGXAnmFNwlctp
drTtw8E0j1yXauZP7dsQCobLKKMHFGSdKpK8pH9SHIm9TqtqeNmPb3KOlMJQQjSZ
sC/Wqmr0qvcHy8a3z2MjLc8CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTs4uAWAWG2
93/HSXb6fUbD5CMt7zAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NkRCNzIvN0Q5OUFDQUMzMUY0MTFFRkFFOTFBMDBDQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTZEQjcyLzdEOTlBQ0FDMzFGNDExRUZBRTkxQTAwQ0M0RjlBRTAyLzdPTGdGZ0Zo
dHZkX3gwbDItbjFHdy1RakxlOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaAW5DANBgkqhkiG9w0BAQsFAAOCAQEAoCBvnhbnx8Xz6SE1in9V
Bdt9PZrWImH5wBVSU/YOwk62rF9Z2fHH2kydNvNC4rxKnT6C71Tf18AnbmHYpK2N
ODEpn4CieKLkFEVLgHca5XQD0Dp2rU/M8jYktMNWdOxtboq9oKGGpn7QKQ+qi/XP
qmUdv27KtpCmI/OozK23RgsEWzgDbzlAwazLG9IZpdff5/nl1y6r+ALob/GjfTL4
NFzour8fnogCwTO7ycR4QWtVboFbOa7npbE6dbhSGKkuXPoezycm0iGQh5WcDJkv
hj7EudjHT937/hmM24k6owmLnYTkidoIK4BxtUZnM4ZcGekI3FjkeCFOZoyX7iHQ
1w==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:38 2024 by rpki-client on console-ams.rpki-client.org