Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer
File: W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer (raw, json)
Hash identifier: 4RuUNfWRRKXhuFa1dHN2O9mRP4CVQo8Cp1cF7aiLhuk=
Subject key identifier: 5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 51CF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 Feb 2024 03:59:25 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 157.15.28.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20943 (0x51cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 8 03:59:25 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6a:a4:ee:08:9d:48:cd:90:37:ba:e0:c8:6f:
fa:26:64:ad:68:ea:ce:d9:ee:3b:1c:02:76:0e:41:
27:74:b2:f6:fc:c1:29:09:dd:76:1f:bd:c6:b0:af:
60:2f:e2:25:6d:7d:bf:a1:f0:5b:d9:42:6d:65:b5:
39:dc:26:a2:31:93:a8:95:9b:5e:26:c3:ef:41:56:
6d:e4:bc:5f:7a:8c:43:5b:da:56:10:fc:76:d5:5b:
0a:3f:af:b4:c2:b1:b9:39:fc:67:e3:fd:b5:ec:e8:
cc:63:2f:79:ab:d4:9f:e8:f7:81:b5:17:38:bd:c0:
13:1d:83:5d:e8:d0:7b:a7:d3:2f:ea:92:1a:14:e2:
9a:0c:97:1f:28:40:a8:63:8e:36:7f:89:8b:0a:ce:
ad:0b:eb:23:08:1e:91:47:b7:58:6e:4e:fe:3a:f8:
69:73:ae:f5:a7:0c:b5:46:ac:db:f7:5f:d7:b9:30:
1c:e4:12:bd:56:68:eb:f8:11:c6:2d:41:95:cc:e3:
e3:75:94:c5:89:36:ef:96:1f:c8:b2:8e:cb:00:eb:
a9:c7:32:c4:36:85:d7:d5:9c:d4:cf:b1:ff:9a:33:
39:72:e9:f2:5a:03:80:31:08:9d:2c:7c:bb:87:6a:
be:44:14:ea:14:01:cc:fd:59:ea:e3:a3:b3:71:4a:
47:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.28.0/23
Signature Algorithm: sha256WithRSAEncryption
35:a3:32:55:a4:23:ee:b8:e2:cd:a7:bb:bb:c9:28:a7:05:75:
4a:be:a9:fb:da:80:cb:67:60:01:75:55:71:84:b4:44:53:7b:
63:3e:2e:bf:69:96:f8:4c:7c:90:3f:71:9e:22:57:25:29:13:
1c:c0:db:31:b6:4f:cd:55:fd:6f:77:cc:58:69:e4:5d:fc:d4:
a2:32:d5:7d:e0:ed:4c:74:15:57:23:9c:51:a1:23:ee:aa:6f:
0d:b4:7b:ca:d7:1a:54:fe:23:54:c5:87:b9:3d:28:b1:22:ee:
2f:e1:c4:d6:56:c5:a8:7e:aa:22:7d:fc:f0:47:ee:74:d7:57:
f5:84:93:8b:d4:16:90:69:be:b9:ad:0b:0b:3a:98:ee:68:5d:
11:e1:0d:48:65:32:71:15:cb:53:0d:74:63:d0:6e:7f:3e:34:
4f:2b:5b:1d:99:ed:6e:fe:b1:65:99:77:2c:a8:aa:98:d2:7c:
da:e4:3f:54:e0:94:ba:44:2b:cd:0d:74:f2:65:25:7d:2d:f7:
f8:1b:cd:cc:c1:2a:2a:ca:e4:25:0e:b1:44:33:28:a5:20:bb:
29:95:cb:16:2b:64:82:9d:95:95:48:18:45:16:99:84:94:01:
b2:b4:d0:dc:52:df:11:69:e6:b0:e4:39:02:5e:c9:b5:ac:50:
91:00:fe:97
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICUc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwMjA4MDM1OTI1WhcNMjUwNTAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFFMTkzNjExMC8GA1UEBRMoNUI1Q0M0MDMwOUEwN0MwM0RGMEI2MzA0
RkNEODQwRjk1MEJGQjA0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALFqpO4InUjNkDe64Mhv+iZkrWjqztnuOxwCdg5BJ3Sy9vzBKQnddh+9xrCvYC/i
JW19v6HwW9lCbWW1OdwmojGTqJWbXibD70FWbeS8X3qMQ1vaVhD8dtVbCj+vtMKx
uTn8Z+P9tezozGMveavUn+j3gbUXOL3AEx2DXejQe6fTL+qSGhTimgyXHyhAqGOO
Nn+JiwrOrQvrIwgekUe3WG5O/jr4aXOu9acMtUas2/df17kwHOQSvVZo6/gRxi1B
lczj43WUxYk275YfyLKOywDrqccyxDaF19Wc1M+x/5ozOXLp8loDgDEInSx8u4dq
vkQU6hQBzP1Z6uOjs3FKR10CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRbXMQDCaB8
A98LYwT82ED5UL+wQTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTE5MzYvNkVCOUMwM0VDNjM2MTFFRUFCQ0MwNDBCQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUxOTM2LzZFQjlDMDNFQzYzNjExRUVBQkNDMDQwQkM0RjlBRTAyL1cxekVBd21n
ZkFQZkMyTUVfTmhBLVZDX3NFRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAZ0PHDANBgkqhkiG9w0BAQsFAAOCAQEANaMyVaQj7rjizae7u8ko
pwV1Sr6p+9qAy2dgAXVVcYS0RFN7Yz4uv2mW+Ex8kD9xniJXJSkTHMDbMbZPzVX9
b3fMWGnkXfzUojLVfeDtTHQVVyOcUaEj7qpvDbR7ytcaVP4jVMWHuT0osSLuL+HE
1lbFqH6qIn388EfudNdX9YSTi9QWkGm+ua0LCzqY7mhdEeENSGUycRXLUw10Y9Bu
fz40TytbHZntbv6xZZl3LKiqmNJ82uQ/VOCUukQrzQ108mUlfS33+BvNzMEqKsrk
JQ6xRDMopSC7KZXLFitkgp2VlUgYRRaZhJQBsrTQ3FLfEWnmsOQ5Al7JtaxQkQD+
lw==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:41:39 2024 by rpki-client on console-ams.rpki-client.org