Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer
File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer (raw, json)
Hash identifier: +ep9ZVs4iR7czi+8+QZjCgG/OYUDQ+hBS7WAJP6pSDk=
Subject key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 516A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 31 Jan 2024 15:23:55 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 137.83.12.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20842 (0x516a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 31 15:23:55 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:fd:0c:98:12:91:91:ca:fc:97:4d:3d:43:
bc:bb:c2:55:75:a7:7b:8b:bb:c2:6b:aa:e8:9b:40:
08:98:2f:7b:f4:e8:3e:fc:08:a1:75:3e:3a:76:fe:
7b:76:33:5c:db:ed:23:af:cb:65:4c:e1:86:6d:09:
db:b8:46:03:15:94:0e:34:74:2c:dd:48:ea:40:f5:
97:54:df:0c:d2:b0:37:8d:6c:9f:3f:65:a7:76:1e:
5d:be:fb:67:09:94:c8:1d:b9:b8:e5:a9:a0:52:d5:
ca:31:63:14:88:62:02:17:88:33:6f:a7:3b:47:f2:
48:5f:27:4d:ae:c2:69:59:52:f2:ea:aa:43:15:22:
b3:88:86:75:99:be:af:b7:86:4e:a6:69:67:54:53:
36:35:b1:6b:3e:d5:45:a7:35:9c:1b:1e:91:bd:7d:
e8:eb:2d:86:4c:3c:fe:2d:b5:b8:4b:54:19:12:96:
2e:52:3a:eb:b4:9f:9a:5f:8d:78:43:cc:10:8c:20:
63:d0:23:58:21:36:6d:55:69:63:76:0b:5e:3d:e4:
43:a4:80:e4:ea:f0:a6:ec:15:61:18:e9:46:9b:42:
03:c7:ec:41:cd:c6:9e:d2:86:4e:05:57:2e:78:a1:
32:3b:13:b3:f4:51:d1:27:4d:c2:4f:06:3f:bc:3b:
6b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
137.83.12.0/24
Signature Algorithm: sha256WithRSAEncryption
28:9a:c0:52:1f:8b:9d:86:8c:b0:dc:8d:83:5a:22:2c:93:a4:
46:74:7f:c3:d7:a8:71:c3:a8:fc:bc:6c:6d:5a:c1:14:05:04:
4c:ac:55:3a:40:08:ed:b8:61:9b:1f:97:16:90:c2:c5:8a:24:
ab:1d:ea:1f:5c:6f:9b:50:26:67:0b:62:f2:a6:34:0f:bb:50:
47:0c:01:81:8b:8f:03:d8:bf:2d:db:9a:5d:9d:cc:9e:ed:a2:
98:81:6e:fe:12:4e:e0:9a:60:5c:38:9f:28:bd:56:dc:64:b7:
c5:69:08:2d:ec:05:92:d5:5d:7d:9a:79:40:a2:02:ba:80:ec:
16:9e:7f:21:3b:d6:b0:6a:79:ea:5e:ad:33:b4:e0:82:14:5c:
34:af:19:c1:64:76:64:df:cd:ac:c0:d6:83:ed:2a:f7:cc:50:
27:9b:c1:86:f2:ec:d3:6f:17:7c:ca:57:f2:94:d9:27:3c:7a:
c9:8e:76:fb:00:b3:5f:06:f1:b0:df:cf:55:f2:6b:9d:4c:33:
90:71:71:f2:e5:f9:12:b7:10:87:b2:b6:b5:fe:79:9f:a0:38:
e4:c1:43:ac:bc:57:f7:9c:12:f7:6a:85:7c:26:de:21:f7:fc:
94:b4:0c:aa:58:3a:d1:37:d5:7d:77:d5:2d:0e:73:05:de:b9:
d8:71:6f:7e
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICUWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwMTMxMTUyMzU1WhcNMjUwMzMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE5NzFDQjExMC8GA1UEBRMoN0QwNDUxNjVCMjlBNjhBRkNCOEJBODE1
OTlDRTMwNjc0NTQ0RkQ4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKho/QyYEpGRyvyXTT1DvLvCVXWne4u7wmuq6JtACJgve/ToPvwIoXU+Onb+e3Yz
XNvtI6/LZUzhhm0J27hGAxWUDjR0LN1I6kD1l1TfDNKwN41snz9lp3YeXb77ZwmU
yB25uOWpoFLVyjFjFIhiAheIM2+nO0fySF8nTa7CaVlS8uqqQxUis4iGdZm+r7eG
TqZpZ1RTNjWxaz7VRac1nBsekb196Osthkw8/i21uEtUGRKWLlI667Sfml+NeEPM
EIwgY9AjWCE2bVVpY3YLXj3kQ6SA5OrwpuwVYRjpRptCA8fsQc3GntKGTgVXLnih
MjsTs/RR0SdNwk8GP7w7a6sCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBR9BFFlsppo
r8uLqBWZzjBnRUT9jzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTcxQ0IvN0E3NTBBMEEyREQ4MTFFQTlDMzUyMDVEQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTk3MUNCLzdBNzUwQTBBMkREODExRUE5QzM1MjA1REM0RjlBRTAyL2ZRUlJaYkth
YUtfTGk2Z1ZtYzR3WjBWRV9ZOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAIlTDDANBgkqhkiG9w0BAQsFAAOCAQEAKJrAUh+LnYaMsNyNg1oi
LJOkRnR/w9eoccOo/LxsbVrBFAUETKxVOkAI7bhhmx+XFpDCxYokqx3qH1xvm1Am
Zwti8qY0D7tQRwwBgYuPA9i/LduaXZ3Mnu2imIFu/hJO4JpgXDifKL1W3GS3xWkI
LewFktVdfZp5QKICuoDsFp5/ITvWsGp56l6tM7TgghRcNK8ZwWR2ZN/NrMDWg+0q
98xQJ5vBhvLs028XfMpX8pTZJzx6yY52+wCzXwbxsN/PVfJrnUwzkHFx8uX5ErcQ
h7K2tf55n6A45MFDrLxX95wS92qFfCbeIff8lLQMqlg60TfVfXfVLQ5zBd652HFv
fg==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org