Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer
File: cI8eBxM4VcgHTu1fjIO0RmpgesI.cer (raw, json)
Hash identifier: h59rOGPImZfwDWC70Z+xIt01M8YOwRVO/b3rMANndTk=
Subject key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5024
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Jan 2024 03:08:50 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 157.10.38.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 13:10:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20516 (0x5024)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 9 03:08:50 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ef:bc:7f:5c:ca:29:05:cf:2c:e4:e8:55:1e:
32:e9:c9:4e:1a:de:5d:45:e3:e1:06:73:60:fb:33:
2a:a8:87:7f:f4:49:45:6e:56:7e:e8:25:54:5f:fc:
5f:ac:c2:6b:a6:d3:64:de:34:94:9d:29:27:bb:df:
16:3a:96:01:fc:eb:ac:bb:96:70:dd:a6:4d:25:ad:
f0:a5:a5:91:d1:3a:5e:09:b0:3e:a6:6a:4d:4b:5f:
f7:4c:e8:e8:89:a5:df:1d:e7:5f:56:0d:9b:ab:f2:
0b:36:fe:91:bc:f0:97:fb:0d:92:83:4d:1e:f9:8c:
6c:96:41:21:53:bd:cd:15:ac:7a:17:bf:2b:65:a8:
b8:7b:0f:e6:15:22:cd:39:a2:59:f7:1d:11:fc:57:
57:0c:8d:52:4c:54:5c:6e:e7:ca:b2:6d:b9:ae:56:
5b:99:7d:c0:b6:f2:0a:f7:4a:ae:23:7b:18:67:2c:
54:c1:a7:f6:b8:d8:14:14:c3:ea:70:2e:98:ec:e7:
1c:fd:9a:81:4d:39:76:2c:6f:64:a4:b5:4c:4b:39:
33:b8:c2:e5:a7:5d:d4:17:f4:45:af:2b:c9:65:94:
40:c4:2f:25:92:7a:13:4a:31:d8:02:a4:75:ce:0e:
13:58:c9:72:86:9d:fc:62:8a:19:9f:91:19:c5:58:
fa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.38.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:92:24:ef:67:5d:e4:c3:12:45:5c:32:56:60:dc:8e:75:39:
75:d0:86:2e:09:d1:94:e6:f1:76:df:4e:4e:ce:ed:00:f4:73:
99:11:d1:df:83:1a:99:19:95:35:70:97:8e:ec:51:1c:63:c1:
ee:6d:8f:eb:a5:b9:d8:97:42:c6:f3:fb:a9:c7:33:fe:ca:98:
29:d5:23:99:3f:90:d9:2c:fd:e2:ac:bf:73:1b:78:ae:26:7e:
58:29:5c:89:11:7e:0b:18:69:38:80:37:65:b5:3d:a3:b9:28:
c3:3f:3a:0e:b6:bd:a1:89:f4:09:ea:b2:3f:c4:93:e8:3e:d4:
47:10:61:63:df:26:40:6d:33:6d:36:67:60:60:8c:e3:97:94:
66:d6:a6:6e:9e:c6:d2:ce:b6:fc:f9:bd:4f:4c:db:70:d5:b5:
51:da:05:5e:e9:5c:1b:9d:a2:6e:26:11:25:7f:07:e5:5f:c4:
93:16:ee:0b:d7:59:31:6f:fb:02:11:45:ef:20:6c:fa:92:fc:
9c:06:a4:08:ec:f5:be:11:31:81:84:27:f3:a9:f0:39:51:65:
5a:81:43:6d:f0:cd:7d:ef:6f:ac:91:5c:f0:68:bb:ce:c5:07:
f9:21:59:46:eb:53:08:e3:ec:62:0d:0a:dd:15:60:64:c2:23:
0c:5b:39:01
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICUCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwMTA5MDMwODUwWhcNMjUwMzMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE3MUQxNjExMC8GA1UEBRMoNzA4RjFFMDcxMzM4NTVDODA3NEVFRDVG
OEM4M0I0NDY2QTYwN0FDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
APXvvH9cyikFzyzk6FUeMunJThreXUXj4QZzYPszKqiHf/RJRW5WfuglVF/8X6zC
a6bTZN40lJ0pJ7vfFjqWAfzrrLuWcN2mTSWt8KWlkdE6XgmwPqZqTUtf90zo6Iml
3x3nX1YNm6vyCzb+kbzwl/sNkoNNHvmMbJZBIVO9zRWsehe/K2WouHsP5hUizTmi
WfcdEfxXVwyNUkxUXG7nyrJtua5WW5l9wLbyCvdKriN7GGcsVMGn9rjYFBTD6nAu
mOznHP2agU05dixvZKS1TEs5M7jC5add1Bf0Ra8ryWWUQMQvJZJ6E0ox2AKkdc4O
E1jJcoad/GKKGZ+RGcVY+lUCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRwjx4HEzhV
yAdO7V+Mg7RGamB6wjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzFEMTYvNjU2RDE3QThBRTlDMTFFRTkxMUFGQjYzQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTcxRDE2LzY1NkQxN0E4QUU5QzExRUU5MTFBRkI2M0M0RjlBRTAyL2NJOGVCeE00
VmNnSFR1MWZqSU8wUm1wZ2VzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAZ0KJjANBgkqhkiG9w0BAQsFAAOCAQEAipIk72dd5MMSRVwyVmDc
jnU5ddCGLgnRlObxdt9OTs7tAPRzmRHR34MamRmVNXCXjuxRHGPB7m2P66W52JdC
xvP7qccz/sqYKdUjmT+Q2Sz94qy/cxt4riZ+WClciRF+CxhpOIA3ZbU9o7kowz86
Dra9oYn0CeqyP8ST6D7URxBhY98mQG0zbTZnYGCM45eUZtambp7G0s62/Pm9T0zb
cNW1UdoFXulcG52ibiYRJX8H5V/EkxbuC9dZMW/7AhFF7yBs+pL8nAakCOz1vhEx
gYQn86nwOVFlWoFDbfDNfe9vrJFc8Gi7zsUH+SFZRutTCOPsYg0K3RVgZMIjDFs5
AQ==
-----END CERTIFICATE-----
Generated at Fri May 3 14:52:46 2024 by rpki-client on console-fra.rpki-client.org