Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PzbQyAdues-oPQS3IwcXKogp1bM.cer
File: PzbQyAdues-oPQS3IwcXKogp1bM.cer (raw, json)
Hash identifier: VvcKnoJxzvDTMahRUgCImDO7SAyJdd52ZZnq2aP3JNQ=
Subject key identifier: 3F:36:D0:C8:07:6E:7A:CF:A8:3D:04:B7:23:07:17:2A:88:29:D5:B3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 58AC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9172B65/015F6DEE45B711EFA59E1332C4F9AE02/PzbQyAdues-oPQS3IwcXKogp1bM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9172B65/015F6DEE45B711EFA59E1332C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 10:09:43 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 157.10.138.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22700 (0x58ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 19 10:09:43 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9172B65/serialNumber=3F36D0C8076E7ACFA83D04B72307172A8829D5B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6e:e0:9b:b1:ff:10:44:da:47:6b:b7:ab:05:
5e:b8:b0:3e:4c:48:1d:3e:13:97:6f:50:75:d5:63:
cb:2c:48:01:ef:11:63:4f:1a:27:2e:46:4f:a1:2a:
d2:72:69:24:ec:1d:e7:f6:f8:de:de:28:26:f1:93:
53:1e:61:00:71:96:04:e4:a2:c6:e5:ea:2d:2c:04:
d3:7d:9a:45:f0:5b:66:fa:e1:f0:e8:2b:b1:fc:1a:
9b:df:53:93:37:df:54:8e:7c:13:ef:be:be:91:93:
b4:3d:a0:24:ed:6d:bb:a1:7d:84:74:6f:58:5d:5a:
09:c4:d1:e6:f6:c0:ac:7e:0d:4c:0e:bb:ef:52:2d:
0b:a8:c6:89:0a:7e:88:e5:4d:da:10:b7:19:ec:0d:
41:6f:ff:19:02:7c:dd:8d:9f:74:3c:c8:1d:4a:4c:
02:99:69:01:ed:f3:85:01:d8:26:f4:6f:32:b1:b9:
28:03:8b:b9:6e:35:ec:e6:78:ba:1c:b2:44:96:67:
28:4a:89:74:f1:1b:b5:30:dc:ab:38:21:b5:0c:0a:
94:c5:a8:90:12:4e:5d:12:85:a6:76:52:da:b9:72:
1a:d9:1c:09:0a:f8:0c:53:d6:ab:9e:d9:4e:53:e7:
8c:c3:9f:96:27:0d:a1:1e:91:1f:6f:c4:2b:63:ec:
be:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:36:D0:C8:07:6E:7A:CF:A8:3D:04:B7:23:07:17:2A:88:29:D5:B3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9172B65/015F6DEE45B711EFA59E1332C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9172B65/015F6DEE45B711EFA59E1332C4F9AE02/PzbQyAdues-oPQS3IwcXKogp1bM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.138.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:3b:cd:04:1e:10:1d:f7:69:ef:21:0e:f9:85:1e:ea:ef:6f:
d5:2e:c0:ac:e7:ca:88:86:20:1f:0a:fd:ee:dd:87:22:13:68:
36:3b:1d:44:73:47:dc:f9:fe:69:d2:49:6d:98:aa:14:fb:a8:
0b:e2:18:52:3c:ed:45:c8:36:32:4d:92:e5:e7:fa:39:b7:b7:
b4:30:a4:d1:d0:01:7e:13:4e:a7:e9:b0:75:af:ee:9e:4b:01:
b9:e8:58:a0:c7:d0:1d:06:b8:fd:58:08:5e:fd:ea:e9:cd:f0:
3b:ab:8a:1a:a6:60:b9:79:05:93:62:fe:a8:b3:da:2e:6a:81:
ab:ba:86:f7:30:d9:2c:9a:28:5f:41:3b:3e:69:c0:6b:e1:70:
9f:2f:79:d0:5c:63:3d:15:d0:9a:ce:f1:f7:f4:b8:9f:1d:a1:
bf:c3:ab:b8:93:7c:4f:75:fa:a4:b2:1d:94:d9:4d:c7:a7:1d:
19:3b:bd:bc:0e:21:8a:62:49:7a:ed:7e:56:f6:25:48:3d:28:
67:6e:a8:ea:56:dc:f1:0f:2e:61:8b:06:98:95:d1:0e:ad:a1:
f7:1b:c5:ef:8b:e2:55:82:10:fd:c6:0c:62:ae:6a:bc:ce:dc:
73:46:18:5d:6e:e3:b7:03:07:f1:a3:21:5f:c2:fc:f7:f5:01:
37:f3:68:83
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICWKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwNzE5MTAwOTQzWhcNMjUwMzAyMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE3MkI2NTExMC8GA1UEBRMoM0YzNkQwQzgwNzZFN0FDRkE4M0QwNEI3
MjMwNzE3MkE4ODI5RDVCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKlu4Jux/xBE2kdrt6sFXriwPkxIHT4Tl29QddVjyyxIAe8RY08aJy5GT6Eq0nJp
JOwd5/b43t4oJvGTUx5hAHGWBOSixuXqLSwE032aRfBbZvrh8Ogrsfwam99Tkzff
VI58E+++vpGTtD2gJO1tu6F9hHRvWF1aCcTR5vbArH4NTA6771ItC6jGiQp+iOVN
2hC3GewNQW//GQJ83Y2fdDzIHUpMAplpAe3zhQHYJvRvMrG5KAOLuW417OZ4uhyy
RJZnKEqJdPEbtTDcqzghtQwKlMWokBJOXRKFpnZS2rlyGtkcCQr4DFPWq57ZTlPn
jMOflicNoR6RH2/EK2PsvnMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQ/NtDIB256
z6g9BLcjBxcqiCnVszAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzJCNjUvMDE1RjZERUU0NUI3MTFFRkE1OUUxMzMyQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTcyQjY1LzAxNUY2REVFNDVCNzExRUZBNTlFMTMzMkM0RjlBRTAyL1B6YlF5QWR1
ZXMtb1BRUzNJd2NYS29ncDFiTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAZ0KijANBgkqhkiG9w0BAQsFAAOCAQEAoTvNBB4QHfdp7yEO+YUe
6u9v1S7ArOfKiIYgHwr97t2HIhNoNjsdRHNH3Pn+adJJbZiqFPuoC+IYUjztRcg2
Mk2S5ef6Obe3tDCk0dABfhNOp+mwda/unksBuehYoMfQHQa4/VgIXv3q6c3wO6uK
GqZguXkFk2L+qLPaLmqBq7qG9zDZLJooX0E7PmnAa+Fwny950FxjPRXQms7x9/S4
nx2hv8OruJN8T3X6pLIdlNlNx6cdGTu9vA4himJJeu1+VvYlSD0oZ26o6lbc8Q8u
YYsGmJXRDq2h9xvF74viVYIQ/cYMYq5qvM7cc0YYXW7jtwMH8aMhX8L89/UBN/No
gw==
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:40 2024 by rpki-client on console-ams.rpki-client.org