Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e5ztyDKAKKdFbpxBS7d9r-vOdl8.cer
File: e5ztyDKAKKdFbpxBS7d9r-vOdl8.cer (raw, json)
Hash identifier: Rz5D9KLYA4IvYDx7MlwRyJr8YXnnWcMdu4P6w5QLcXI=
Subject key identifier: 7B:9C:ED:C8:32:80:28:A7:45:6E:9C:41:4B:B7:7D:AF:EB:CE:76:5F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4E48
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/e5ztyDKAKKdFbpxBS7d9r-vOdl8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 25 Oct 2023 19:50:47 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 161.121.128.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 17:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20040 (0x4e48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Oct 25 19:50:47 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A916D36A/serialNumber=7B9CEDC8328028A7456E9C414BB77DAFEBCE765F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:99:e3:e8:9e:3a:55:3d:3c:48:b0:4c:3f:
96:b0:0f:dd:31:9b:8e:76:29:db:6d:01:bc:9c:8f:
15:75:1b:31:5b:30:ea:1e:b1:2e:c8:69:4a:70:c1:
57:18:e7:64:a3:f3:5d:e4:1a:6e:a9:4e:1a:fd:d9:
ed:41:30:74:10:e5:61:b6:4f:31:64:24:59:97:48:
63:4d:08:67:71:6a:8b:86:c9:2b:c0:81:30:f2:fa:
7b:e1:74:7d:1a:d6:b9:ad:0a:35:5a:65:8b:d3:76:
96:e1:db:fa:a7:15:a5:24:ff:84:4a:e1:2e:7b:ad:
30:10:2d:bb:09:62:8f:51:6b:cd:bf:4d:ea:c1:03:
7d:90:d0:3c:b1:a2:83:2e:71:14:04:ca:bd:5b:5f:
12:5f:25:55:e0:cf:88:ca:3d:92:70:f8:c1:b7:bc:
3f:39:75:76:3e:10:1d:f5:7b:4b:bc:f9:1c:19:e7:
4c:66:fb:74:0c:88:6a:88:82:9d:87:07:81:b2:46:
1f:01:62:e0:4f:55:51:21:29:50:71:0f:78:9c:86:
b8:25:cc:51:97:a1:92:c0:f3:00:37:52:c5:34:03:
d3:1a:d3:49:a7:ca:3f:d3:72:9b:d2:de:04:69:12:
c0:e4:ae:c8:e9:6e:14:26:49:58:8c:10:81:28:20:
b3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9C:ED:C8:32:80:28:A7:45:6E:9C:41:4B:B7:7D:AF:EB:CE:76:5F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/e5ztyDKAKKdFbpxBS7d9r-vOdl8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.121.128.0/19
Signature Algorithm: sha256WithRSAEncryption
21:d3:e2:fb:d0:05:bd:99:0c:88:3b:c1:68:e0:9d:b1:12:13:
fb:7a:dd:f9:54:fa:9c:79:d9:6e:15:50:ce:ec:f9:a0:7b:9b:
df:41:a7:de:d3:be:98:4a:1e:79:f6:cd:54:b1:72:e1:55:d4:
16:bf:50:87:23:22:a5:a3:07:39:c0:c2:f6:ff:e4:c5:c2:6e:
0c:b9:08:52:3a:3e:4c:49:c0:8a:84:d7:0d:e3:1f:11:62:9a:
a2:5c:7d:7b:3d:83:bc:04:be:7b:d5:06:bb:c5:e4:be:58:ea:
5c:fe:f9:fb:02:45:37:25:bc:9b:75:09:36:4e:22:da:c3:7f:
98:18:03:dd:bb:53:2a:a7:12:62:16:f4:fa:7c:7a:b6:8b:1e:
10:1b:6b:73:99:4b:37:af:7c:27:99:a5:79:e0:1d:4b:82:42:
2b:33:50:8f:36:54:35:72:d2:90:95:8f:9b:df:85:46:04:56:
45:79:27:06:e8:e4:d9:50:da:70:73:c8:34:94:99:9d:6f:fa:
81:5b:21:70:e8:21:83:fd:1f:21:a6:7c:bf:51:12:8f:f4:39:
73:6d:99:12:10:79:b7:ff:10:08:40:22:0d:33:f8:7f:d2:02:
48:86:a1:77:e6:a7:cf:05:9a:5d:e0:76:9c:61:76:07:fe:66:
e6:28:b9:b5
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICTkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjMxMDI1MTk1MDQ3WhcNMjQwOTMwMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE2RDM2QTExMC8GA1UEBRMoN0I5Q0VEQzgzMjgwMjhBNzQ1NkU5QzQx
NEJCNzdEQUZFQkNFNzY1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKbSmePonjpVPTxIsEw/lrAP3TGbjnYp220BvJyPFXUbMVsw6h6xLshpSnDBVxjn
ZKPzXeQabqlOGv3Z7UEwdBDlYbZPMWQkWZdIY00IZ3Fqi4bJK8CBMPL6e+F0fRrW
ua0KNVpli9N2luHb+qcVpST/hErhLnutMBAtuwlij1Frzb9N6sEDfZDQPLGigy5x
FATKvVtfEl8lVeDPiMo9knD4wbe8Pzl1dj4QHfV7S7z5HBnnTGb7dAyIaoiCnYcH
gbJGHwFi4E9VUSEpUHEPeJyGuCXMUZehksDzADdSxTQD0xrTSafKP9Nym9LeBGkS
wOSuyOluFCZJWIwQgSggs4UCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBR7nO3IMoAo
p0VunEFLt32v6852XzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NkQzNkEvQzZERDUxQjQ3MzZGMTFFRTkxN0QwMzM0QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTZEMzZBL0M2REQ1MUI0NzM2RjExRUU5MTdEMDMzNEM0RjlBRTAyL2U1enR5REtB
S0tkRmJweEJTN2Q5ci12T2RsOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEBaF5gDANBgkqhkiG9w0BAQsFAAOCAQEAIdPi+9AFvZkMiDvBaOCd
sRIT+3rd+VT6nHnZbhVQzuz5oHub30Gn3tO+mEoeefbNVLFy4VXUFr9QhyMipaMH
OcDC9v/kxcJuDLkIUjo+TEnAioTXDeMfEWKaolx9ez2DvAS+e9UGu8XkvljqXP75
+wJFNyW8m3UJNk4i2sN/mBgD3btTKqcSYhb0+nx6toseEBtrc5lLN698J5mleeAd
S4JCKzNQjzZUNXLSkJWPm9+FRgRWRXknBujk2VDacHPINJSZnW/6gVshcOghg/0f
IaZ8v1ESj/Q5c22ZEhB5t/8QCEAiDTP4f9ICSIahd+anzwWaXeB2nGF2B/5m5ii5
tQ==
-----END CERTIFICATE-----
Generated at Fri May 3 17:55:01 2024 by rpki-client on console-fra.rpki-client.org