Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer
File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer (raw, json)
Hash identifier: S4N5p6Xp9QIqE01ToAk1X+rvlWI96URtxlDwtz1obrA=
Subject key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5C14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Oct 2024 07:46:19 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.210.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23572 (0x5c14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 10 07:46:19 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:60:d0:01:2f:da:b3:ca:d5:cc:75:3b:a3:cb:
a6:6d:8b:37:4a:94:ae:f1:5a:c7:86:83:93:36:78:
84:54:2b:9d:4e:09:7a:29:86:da:fc:15:2c:03:f0:
10:d6:4b:b5:49:76:7c:71:66:8a:07:ad:49:83:70:
ab:e4:c6:c8:76:50:90:ef:d2:38:d5:46:8b:da:66:
fb:b8:c3:05:55:43:94:40:c7:dd:c2:09:b1:1d:71:
e5:eb:6b:84:6a:a6:cb:61:b0:c0:81:8d:d7:dd:3d:
3f:b5:fc:b6:33:4b:f0:a4:93:42:08:1a:05:5a:52:
00:48:b5:c7:40:d6:fd:1d:da:6c:ab:f5:36:64:6d:
01:12:79:e2:d9:27:b8:56:7d:b4:d0:98:20:0c:23:
5b:a8:8a:19:a4:1d:a3:94:ec:b9:f9:bf:13:e3:32:
27:95:57:f8:a8:55:33:19:88:e3:37:06:eb:80:d8:
8d:72:6e:c2:be:e5:4e:eb:6e:a6:ac:bd:09:29:e4:
57:6f:54:1f:ed:64:1a:46:32:09:a9:f5:cb:9c:54:
0b:ae:34:a7:ee:96:ea:93:77:82:f8:72:97:be:74:
df:28:cd:a4:20:f0:51:13:5a:73:fa:15:90:a5:c4:
9a:9f:1c:7f:20:0c:89:39:5b:43:0d:81:70:e6:bf:
c9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.210.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:76:41:16:16:a3:c7:bb:d6:c4:67:6f:8e:33:cf:d0:f6:95:
2d:e3:ec:49:5b:61:48:3c:3d:3c:db:77:e0:8a:e8:33:a3:cb:
85:ce:d2:99:20:54:2b:34:84:94:62:0b:11:92:d9:3a:a9:32:
2f:4a:b3:4c:4a:e5:b1:0c:e1:9c:9b:9e:48:84:7d:59:d3:79:
83:e3:c7:86:97:4b:d8:2c:40:c2:3a:9a:45:9f:dc:60:90:f6:
94:8d:03:be:b6:b7:78:dc:e7:a7:39:56:d3:0a:8f:d7:7b:60:
3e:83:da:85:bc:1c:c4:59:5a:3f:87:47:02:47:a9:62:d0:f2:
58:4f:ff:59:c1:5e:45:84:6c:8c:d9:f5:de:6e:5d:9a:0e:a4:
48:e4:14:e9:19:3c:62:6f:bf:76:08:f9:60:b6:5a:ce:fd:18:
e2:91:67:62:b1:ad:64:22:d5:3e:ef:a3:60:23:88:6d:22:86:
18:cf:2a:5c:c8:e9:c2:ae:f7:db:2a:aa:a3:98:3f:c5:dd:6f:
90:2c:3c:55:71:83:77:85:db:78:d2:87:03:a0:a4:50:eb:98:
22:39:1d:e9:45:2d:45:10:22:e0:31:7f:b5:df:3a:e1:c8:05:
6a:3d:3a:b5:ab:8a:93:a5:22:4d:ea:99:b3:7d:47:e0:8f:ed:
94:32:1f:35
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICXBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMDEwMDc0NjE5WhcNMjUwODMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEzNjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZB
QTIwMzA3RURFREExOUM5RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKRg0AEv2rPK1cx1O6PLpm2LN0qUrvFax4aDkzZ4hFQrnU4JeimG2vwVLAPwENZL
tUl2fHFmigetSYNwq+TGyHZQkO/SONVGi9pm+7jDBVVDlEDH3cIJsR1x5etrhGqm
y2GwwIGN1909P7X8tjNL8KSTQggaBVpSAEi1x0DW/R3abKv1NmRtARJ54tknuFZ9
tNCYIAwjW6iKGaQdo5Tsufm/E+MyJ5VX+KhVMxmI4zcG64DYjXJuwr7lTutupqy9
CSnkV29UH+1kGkYyCan1y5xUC640p+6W6pN3gvhyl7503yjNpCDwURNac/oVkKXE
mp8cfyAMiTlbQw2BcOa/yXcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRGQZB/5fRz
8YkG1GqiAwft7aGcnTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MzY0N0YvQjkxQUFBNzQ4NkRCMTFFRkJBNEQ1RjI2QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTM2NDdGL0I5MUFBQTc0ODZEQjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgw
Y19HSkJ0UnFvZ01IN2UyaG5KMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaAW0jANBgkqhkiG9w0BAQsFAAOCAQEAK3ZBFhajx7vWxGdvjjPP
0PaVLePsSVthSDw9PNt34IroM6PLhc7SmSBUKzSElGILEZLZOqkyL0qzTErlsQzh
nJueSIR9WdN5g+PHhpdL2CxAwjqaRZ/cYJD2lI0Dvra3eNznpzlW0wqP13tgPoPa
hbwcxFlaP4dHAkepYtDyWE//WcFeRYRsjNn13m5dmg6kSOQU6Rk8Ym+/dgj5YLZa
zv0Y4pFnYrGtZCLVPu+jYCOIbSKGGM8qXMjpwq732yqqo5g/xd1vkCw8VXGDd4Xb
eNKHA6CkUOuYIjkd6UUtRRAi4DF/td864cgFaj06tauKk6UiTeqZs31H4I/tlDIf
NQ==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org