Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7iTJi5YTEPUN8Nyy0naWug69fUs.cer
File: 7iTJi5YTEPUN8Nyy0naWug69fUs.cer (raw, json)
Hash identifier: I7d6VwTfW7Kxvav3GrnVezVDtMY9D16dXNWQePdncco=
Subject key identifier: EE:24:C9:8B:96:13:10:F5:0D:F0:DC:B2:D2:76:96:BA:0E:BD:7D:4B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4F6C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/7iTJi5YTEPUN8Nyy0naWug69fUs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Dec 2023 06:40:08 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 134.211.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20332 (0x4f6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 15 06:40:08 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9186883/serialNumber=EE24C98B961310F50DF0DCB2D27696BA0EBD7D4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b8:e9:2e:14:71:4f:9e:03:fd:57:c0:42:d4:
5a:2a:c5:6e:af:e2:e8:84:96:3e:9a:58:2a:aa:ab:
19:bf:44:82:8d:8f:e2:d8:2a:3c:a5:11:67:11:80:
10:d8:bd:89:8a:0a:07:ca:2c:08:f3:de:96:5a:97:
b0:0f:11:73:95:81:2b:85:2d:0a:d8:4b:46:d0:5e:
00:e9:1b:17:25:fd:9d:4f:a1:72:72:54:b9:aa:4a:
73:89:a1:7d:19:6d:64:5c:33:09:3f:49:33:54:7a:
45:a5:7e:eb:39:8d:80:f9:56:78:67:e9:20:d0:c5:
61:89:1a:6d:86:6e:3b:8b:75:d0:8f:30:a9:b7:c0:
90:44:be:af:29:a4:97:98:0e:81:10:b3:bd:42:e5:
a2:a8:58:dc:ce:a1:ab:71:a3:61:ae:3f:54:76:c1:
ec:6b:8b:cd:2c:e7:71:ba:12:8b:a3:54:7b:f2:29:
b2:db:4c:a6:3f:9f:ee:64:ea:ab:b0:bd:f0:f9:56:
37:11:f2:33:3d:85:8a:f5:48:84:08:fd:04:87:a5:
f0:c2:33:d8:03:4a:0e:2a:28:5b:c2:56:21:1f:be:
c4:48:eb:2c:08:8d:ea:c2:f0:6b:7c:34:b3:fe:1f:
ac:f3:03:99:0f:e3:09:67:36:01:9d:90:20:e8:50:
f6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:24:C9:8B:96:13:10:F5:0D:F0:DC:B2:D2:76:96:BA:0E:BD:7D:4B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/7iTJi5YTEPUN8Nyy0naWug69fUs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
134.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
88:6a:0a:94:58:e3:d2:f8:3d:12:aa:c7:ba:44:5e:7b:dc:bf:
bd:b6:ea:62:ae:8a:90:d7:74:d5:98:80:43:13:f0:3c:b5:d9:
b5:d1:fd:57:2c:04:44:91:ad:ed:25:2a:72:dd:70:7a:5d:39:
04:c7:71:ff:db:14:03:4e:4d:b9:13:04:ca:fc:03:a4:3a:62:
a6:fa:1e:d6:d5:c1:0f:ad:cc:e7:3a:b7:d9:98:ba:87:6c:60:
e7:e3:55:18:78:fb:ca:69:2c:30:0c:f5:74:44:c0:d6:55:28:
23:9b:36:14:8c:8b:41:dd:6e:0c:20:3c:b7:be:ae:f0:3b:17:
07:2c:a6:2b:01:48:90:23:e7:80:1f:77:80:d0:12:ad:dc:fe:
86:b9:8e:b6:61:9f:7a:03:d8:fe:b6:a0:5c:1a:0f:2e:a4:16:
73:31:64:d5:f3:70:6d:90:70:ee:84:23:c0:f1:c4:05:e6:a9:
be:45:70:00:cf:70:26:fb:52:24:62:97:e8:24:5f:e0:62:59:
7b:3d:72:52:2b:0b:f8:d7:9a:6c:cb:2c:fb:84:f6:fc:b2:78:
cd:bc:87:0a:5a:d8:32:5b:2c:32:59:f6:86:39:8f:67:ab:29:
b5:29:98:5a:c4:13:ce:15:a9:af:f8:a8:00:87:cc:c9:10:88:
07:32:72:78
-----BEGIN CERTIFICATE-----
MIIF/DCCBOSgAwIBAgICT2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjMxMjE1MDY0MDA4WhcNMjUwMzAyMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE4Njg4MzExMC8GA1UEBRMoRUUyNEM5OEI5NjEzMTBGNTBERjBEQ0Iy
RDI3Njk2QkEwRUJEN0Q0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AM+46S4UcU+eA/1XwELUWirFbq/i6ISWPppYKqqrGb9Ego2P4tgqPKURZxGAENi9
iYoKB8osCPPellqXsA8Rc5WBK4UtCthLRtBeAOkbFyX9nU+hcnJUuapKc4mhfRlt
ZFwzCT9JM1R6RaV+6zmNgPlWeGfpINDFYYkabYZuO4t10I8wqbfAkES+rymkl5gO
gRCzvULloqhY3M6hq3GjYa4/VHbB7GuLzSzncboSi6NUe/IpsttMpj+f7mTqq7C9
8PlWNxHyMz2FivVIhAj9BIel8MIz2ANKDiooW8JWIR++xEjrLAiN6sLwa3w0s/4f
rPMDmQ/jCWc2AZ2QIOhQ9lUCAwEAAaOCAvIwggLuMB0GA1UdDgQWBBTuJMmLlhMQ
9Q3w3LLSdpa6Dr19SzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODY4ODMvQTg4RkZDRjg1QzUzMTFFRTk1MUU5RDU4QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg2ODgzL0E4OEZGQ0Y4NUM1MzExRUU5NTFFOUQ1OEM0RjlBRTAyLzdpVEppNVlU
RVBVTjhOeXkwbmFXdWc2OWZVcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0w
CwQCAAEwBQMDAIbTMA0GCSqGSIb3DQEBCwUAA4IBAQCIagqUWOPS+D0Sqse6RF57
3L+9tupiroqQ13TVmIBDE/A8tdm10f1XLAREka3tJSpy3XB6XTkEx3H/2xQDTk25
EwTK/AOkOmKm+h7W1cEPrcznOrfZmLqHbGDn41UYePvKaSwwDPV0RMDWVSgjmzYU
jItB3W4MIDy3vq7wOxcHLKYrAUiQI+eAH3eA0BKt3P6GuY62YZ96A9j+tqBcGg8u
pBZzMWTV83BtkHDuhCPA8cQF5qm+RXAAz3Am+1IkYpfoJF/gYll7PXJSKwv415ps
yyz7hPb8snjNvIcKWtgyWywyWfaGOY9nqym1KZhaxBPOFamv+KgAh8zJEIgHMnJ4
-----END CERTIFICATE-----
Generated at Fri May 3 21:44:28 2024 by rpki-client on console-fra.rpki-client.org