Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer
File: hwGGtlfRGymKhLAkIO504fu1woI.cer (raw, json)
Hash identifier: Ba/cnBlBZnEnWD8rOxULAexOkKyDs/9Lq/NGtULXp6Y=
Subject key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 520C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 Feb 2024 23:24:21 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 157.15.213.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 20:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21004 (0x520c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 12 23:24:21 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a0:e9:7e:5f:5b:16:1a:3c:90:18:dc:00:25:
f8:b6:6e:e3:67:42:7e:cd:0a:58:24:c7:e7:5c:5b:
4b:9f:04:c3:46:ef:f6:68:7d:93:58:f1:43:d8:9e:
30:f4:bf:a9:fc:2f:a0:bf:1f:38:4c:98:a9:3e:83:
13:a9:2c:85:e4:4e:2b:be:49:ce:f4:a2:9f:20:85:
54:6f:77:01:97:0e:75:53:03:d6:a1:ed:a3:ba:9d:
f2:60:b6:e8:c6:98:0b:99:19:97:63:de:f3:ab:d6:
65:9b:8c:e0:e7:4f:2d:50:4f:b3:46:7d:e9:fc:10:
54:a7:aa:40:0e:a0:e0:ac:40:1b:e9:b1:5b:bc:d6:
79:fc:3b:ef:6e:b9:e0:8e:54:2d:38:3c:54:7d:0d:
8e:3a:ac:fb:bc:90:21:9c:dc:ef:83:76:a7:67:07:
74:b8:1c:2f:7e:c0:89:ce:8f:0e:27:eb:3f:a4:39:
e6:f6:92:f9:2b:80:af:8f:b7:14:3d:1c:e6:d3:84:
05:3e:9f:df:da:f2:54:b9:2d:5a:99:43:21:3a:0f:
03:de:c5:3b:79:2e:d3:01:a7:cb:79:45:ef:14:13:
fb:75:d8:c1:1b:e4:63:8f:31:9d:99:38:8f:8c:0e:
9b:58:07:55:fc:78:ee:95:46:45:75:fd:a4:1d:9f:
eb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.213.0/24
Signature Algorithm: sha256WithRSAEncryption
58:e1:d1:b1:3b:4f:89:21:39:c9:51:4e:cc:e9:07:59:13:19:
fd:62:71:44:7b:bf:4a:f2:c9:3b:5c:65:29:21:f7:33:7b:d9:
b0:02:fd:56:cd:d4:60:d4:66:a5:e9:df:5f:9b:7b:c1:bd:9b:
44:7b:ba:2e:65:ec:b2:07:14:55:0d:78:ea:ac:81:2e:ee:1b:
2f:14:1f:12:91:fa:3f:a1:74:fb:91:fa:c2:f3:07:fc:0a:76:
50:42:4c:93:f2:fb:f2:6a:85:92:18:da:42:01:34:a5:e1:70:
86:e5:8c:85:d0:c5:3e:37:b1:fc:3f:a4:a9:59:c6:d9:7a:0d:
23:8e:90:62:92:59:34:d3:14:9f:c1:00:eb:d8:62:fb:d0:09:
d1:a4:7e:11:fc:fc:98:6e:00:93:87:e4:1e:6e:11:ac:4e:55:
fd:c0:00:77:67:b5:6a:34:6b:54:2e:40:0f:71:10:fa:38:4c:
83:fe:67:36:ff:29:ff:1b:f0:55:5b:61:4f:5e:f9:ae:54:14:
c1:8d:43:82:2e:a6:b8:ad:83:2a:3d:9b:55:60:36:8b:2f:a8:
4e:e9:0e:c4:4c:33:16:ec:cb:90:a1:79:8d:5a:29:0d:4a:50:
93:4a:7c:fa:7d:b7:06:5d:86:fe:13:a4:09:2a:8c:30:9a:1d:
35:97:48:cf
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICUgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwMjEyMjMyNDIxWhcNMjQxMDMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE5MTg4NTExMC8GA1UEBRMoODcwMTg2QjY1N0QxMUIyOThBODRCMDI0
MjBFRTc0RTFGQkI1QzI4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANKg6X5fWxYaPJAY3AAl+LZu42dCfs0KWCTH51xbS58Ew0bv9mh9k1jxQ9ieMPS/
qfwvoL8fOEyYqT6DE6ksheROK75JzvSinyCFVG93AZcOdVMD1qHto7qd8mC26MaY
C5kZl2Pe86vWZZuM4OdPLVBPs0Z96fwQVKeqQA6g4KxAG+mxW7zWefw772654I5U
LTg8VH0Njjqs+7yQIZzc74N2p2cHdLgcL37Aic6PDifrP6Q55vaS+SuAr4+3FD0c
5tOEBT6f39ryVLktWplDIToPA97FO3ku0wGny3lF7xQT+3XYwRvkY48xnZk4j4wO
m1gHVfx47pVGRXX9pB2f6/sCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSHAYa2V9Eb
KYqEsCQg7nTh+7XCgjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTE4ODUvRDVGRUEzREVDOUZEMTFFRUE2Nzc3OTNCQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTkxODg1L0Q1RkVBM0RFQzlGRDExRUVBNjc3NzkzQkM0RjlBRTAyL2h3R0d0bGZS
R3ltS2hMQWtJTzUwNGZ1MXdvSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAJ0P1TANBgkqhkiG9w0BAQsFAAOCAQEAWOHRsTtPiSE5yVFOzOkH
WRMZ/WJxRHu/SvLJO1xlKSH3M3vZsAL9Vs3UYNRmpenfX5t7wb2bRHu6LmXssgcU
VQ146qyBLu4bLxQfEpH6P6F0+5H6wvMH/Ap2UEJMk/L78mqFkhjaQgE0peFwhuWM
hdDFPjex/D+kqVnG2XoNI46QYpJZNNMUn8EA69hi+9AJ0aR+Efz8mG4Ak4fkHm4R
rE5V/cAAd2e1ajRrVC5AD3EQ+jhMg/5nNv8p/xvwVVthT175rlQUwY1Dgi6muK2D
Kj2bVWA2iy+oTukOxEwzFuzLkKF5jVopDUpQk0p8+n23Bl2G/hOkCSqMMJodNZdI
zw==
-----END CERTIFICATE-----
Generated at Fri May 3 21:32:45 2024 by rpki-client on console-ams.rpki-client.org