Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZajQiy7I9C1Duap6QjUXK7ftFmU.cer
File: ZajQiy7I9C1Duap6QjUXK7ftFmU.cer (raw, json)
Hash identifier: Ph2wJr78VpNrtqr/JNwbiZbvrrnUWdwD8i3K371UjOE=
Subject key identifier: 65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5FF1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 29 Dec 2024 02:20:00 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.50.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24561 (0x5ff1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 29 02:20:00 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A912C7DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:55:ba:95:9d:a9:af:36:c7:0b:c8:4e:32:11:
22:70:58:5a:f2:dc:0b:1f:8a:d6:88:74:2b:cd:3a:
6d:ed:74:a3:9b:1e:85:30:e0:91:66:4c:47:b0:a2:
e7:64:68:db:78:e6:40:e9:1b:be:1f:a7:ea:f7:42:
25:d6:c0:3d:57:c2:18:9b:99:b3:ef:c1:14:80:dd:
4c:eb:a3:ef:87:7d:0a:8f:1f:17:4b:7b:a4:41:fd:
fb:56:c1:b1:2f:3d:6c:28:1e:5b:72:35:e9:04:3c:
6c:b9:f9:ce:54:aa:d0:e4:ce:ef:bf:7a:30:19:5b:
a8:89:51:70:df:da:f8:49:43:b5:0c:48:ad:6b:08:
d1:fc:6d:db:fa:8d:2b:29:be:ee:d3:68:69:d7:ef:
8a:b2:a0:93:46:28:9e:f0:dd:8d:96:20:58:97:52:
c4:b2:41:26:a3:04:e1:99:84:83:ca:66:9b:23:a3:
20:71:e7:c5:74:22:f6:b4:92:ed:73:6b:74:03:e6:
b4:45:42:c6:e3:6a:c6:63:e4:70:0e:15:c6:50:04:
ae:a6:b1:aa:4f:1c:96:3b:54:4b:97:84:f1:ac:1f:
76:ea:8f:0e:f1:fc:3a:96:b1:1c:ce:ee:e1:3e:44:
24:1a:b4:83:13:48:a0:ff:c0:45:39:4f:3f:a0:9b:
0c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A8:D0:8B:2E:C8:F4:2D:43:B9:AA:7A:42:35:17:2B:B7:ED:16:65
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/64BA4BA8C58B11EFB87E5F33C4F9AE02/ZajQiy7I9C1Duap6QjUXK7ftFmU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.50.0/23
Signature Algorithm: sha256WithRSAEncryption
23:ca:3f:ac:e7:57:ac:e7:8a:5d:ec:b1:3d:a7:c0:49:d8:ea:
a8:aa:32:58:36:a5:df:c6:22:ce:c9:4b:dd:d5:98:fe:dc:c7:
4c:de:89:f7:d6:6a:08:14:62:38:8d:5d:96:8e:36:97:bf:cd:
77:88:13:1c:95:54:27:b8:79:70:3e:ff:94:c1:42:12:4b:3e:
cb:96:f1:d1:30:2c:8c:b9:31:7e:4f:46:68:14:a5:24:55:b0:
5a:24:20:8c:ee:e7:06:c7:c0:d1:4d:49:04:e0:f2:20:15:2b:
09:b3:4d:eb:67:8a:16:8d:15:88:6a:62:b6:c5:b6:98:cd:16:
f5:99:48:06:0e:b6:21:06:9d:f3:2e:34:74:eb:3b:84:b6:1f:
95:8a:cf:24:e5:bb:5d:27:2d:29:a1:2d:cb:f8:46:98:c4:24:
81:5c:65:f6:be:02:db:3f:fc:bb:e5:81:d2:c4:b1:83:68:48:
c8:08:c2:c5:2f:6f:c4:4e:6b:93:a1:2e:51:c6:31:c9:07:7f:
97:8e:a8:b6:08:08:1a:50:a0:de:06:61:9d:b7:cb:ab:df:fc:
82:d9:e9:7c:9f:24:d4:42:09:4e:15:96:d3:f2:af:09:52:9f:
6f:64:c8:55:3b:05:ac:92:60:2f:7f:70:43:74:c7:f7:b4:51:
ab:96:9e:a7
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICX/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQxMjI5MDIyMDAwWhcNMjYwMzMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEyQzdEQzExMC8GA1UEBRMoNjVBOEQwOEIyRUM4RjQyRDQzQjlBQTdB
NDIzNTE3MkJCN0VEMTY2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALhVupWdqa82xwvITjIRInBYWvLcCx+K1oh0K806be10o5sehTDgkWZMR7Ci52Ro
23jmQOkbvh+n6vdCJdbAPVfCGJuZs+/BFIDdTOuj74d9Co8fF0t7pEH9+1bBsS89
bCgeW3I16QQ8bLn5zlSq0OTO7796MBlbqIlRcN/a+ElDtQxIrWsI0fxt2/qNKym+
7tNoadfvirKgk0YonvDdjZYgWJdSxLJBJqME4ZmEg8pmmyOjIHHnxXQi9rSS7XNr
dAPmtEVCxuNqxmPkcA4VxlAErqaxqk8cljtUS5eE8awfduqPDvH8OpaxHM7u4T5E
JBq0gxNIoP/ARTlPP6CbDCcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRlqNCLLsj0
LUO5qnpCNRcrt+0WZTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MkM3REMvNjRCQTRCQThDNThCMTFFRkI4N0U1RjMzQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJDN0RDLzY0QkE0QkE4QzU4QjExRUZCODdFNUYzM0M0RjlBRTAyL1phalFpeTdJ
OUMxRHVhcDZRalVYSzdmdEZtVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaH4MjANBgkqhkiG9w0BAQsFAAOCAQEAI8o/rOdXrOeKXeyxPafA
SdjqqKoyWDal38YizslL3dWY/tzHTN6J99ZqCBRiOI1dlo42l7/Nd4gTHJVUJ7h5
cD7/lMFCEks+y5bx0TAsjLkxfk9GaBSlJFWwWiQgjO7nBsfA0U1JBODyIBUrCbNN
62eKFo0ViGpitsW2mM0W9ZlIBg62IQad8y40dOs7hLYflYrPJOW7XSctKaEty/hG
mMQkgVxl9r4C2z/8u+WB0sSxg2hIyAjCxS9vxE5rk6EuUcYxyQd/l46otggIGlCg
3gZhnbfLq9/8gtnpfJ8k1EIJThWW0/KvCVKfb2TIVTsFrJJgL39wQ3TH97RRq5ae
pw==
-----END CERTIFICATE-----
Generated at Wed Feb 5 16:47:25 2025 by rpki-client