Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jwvqPZb8ji7R6MaDcEdpRWnu484.cer
File: jwvqPZb8ji7R6MaDcEdpRWnu484.cer (raw, json)
Hash identifier: ux6VNNJVyhbBaW5KQ3UvCVVFLNnbHgu2hg24wm1pLnM=
Subject key identifier: 8F:0B:EA:3D:96:FC:8E:2E:D1:E8:C6:83:70:47:69:45:69:EE:E3:CE
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4F22
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/jwvqPZb8ji7R6MaDcEdpRWnu484.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Dec 2023 19:50:50 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 206.131.192.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20258 (0x4f22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Dec 2 19:50:50 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A919DC74/serialNumber=8F0BEA3D96FC8E2ED1E8C6837047694569EEE3CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3b:82:8d:e0:a2:c8:d1:fb:0d:7c:28:0c:6b:
d8:8c:31:cb:5f:ff:59:11:b4:95:3e:3a:22:19:f7:
ad:19:a1:e0:f5:04:89:ba:1e:05:4f:d1:aa:44:2c:
1f:8a:08:30:e3:74:c5:cd:88:50:91:07:cf:61:f3:
e2:a8:d8:7e:ee:d6:78:3c:0d:65:fe:14:92:c0:4d:
15:3a:bc:91:7f:5a:31:28:94:ca:0a:7c:cf:90:60:
ad:01:d4:97:2b:14:ab:aa:74:01:a8:7b:d1:f2:6b:
72:6f:28:95:6b:71:d1:95:34:f4:fd:9d:e0:08:1d:
3b:56:f5:54:82:a5:4d:88:8f:ab:50:07:bd:da:63:
49:be:d9:ec:55:db:2a:75:2a:ac:f6:b6:2f:ec:46:
92:12:16:ea:59:b6:6f:e1:d7:24:60:18:3f:36:47:
2d:90:f8:ea:37:27:1b:df:7d:e3:21:76:40:19:03:
70:69:86:47:16:cf:36:95:b9:ad:0e:e9:f7:4b:73:
93:ad:6a:04:4e:80:5c:87:3c:ee:65:1e:fb:08:3b:
84:26:16:27:48:7a:1d:67:d8:b4:cd:a3:12:9a:78:
cb:ee:5f:bd:88:6e:0d:87:a0:41:bf:1c:d7:81:22:
ad:38:0e:57:f4:ad:7e:e7:26:f9:b9:f6:4f:a0:d4:
31:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0B:EA:3D:96:FC:8E:2E:D1:E8:C6:83:70:47:69:45:69:EE:E3:CE
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919DC74/DA2240E6462911EDAE78B235C4F9AE02/jwvqPZb8ji7R6MaDcEdpRWnu484.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
206.131.192.0/20
Signature Algorithm: sha256WithRSAEncryption
50:f3:bc:70:4b:c8:45:c7:d4:da:70:64:a0:e7:eb:ae:f4:b1:
11:78:fc:97:00:94:5c:41:b0:90:b2:59:d2:80:be:a5:2b:c8:
f5:9c:85:c4:83:31:f8:27:7e:29:5d:31:c4:9b:6b:94:a4:06:
46:03:62:a7:38:d0:7d:f4:ab:82:de:40:6b:cc:72:5b:fc:e1:
c5:6a:cc:6a:99:6b:24:9a:e5:53:01:6c:ec:51:61:30:6b:9a:
5e:c3:c1:55:79:0a:2f:51:55:3d:99:98:cf:a5:84:f1:59:f7:
99:28:97:35:84:03:e3:4c:f8:ac:5e:cf:c2:7f:69:2b:73:0a:
94:d5:45:dc:c7:30:cc:ba:c7:88:db:c0:a8:5b:bf:b6:ce:1e:
1b:42:ad:c5:5c:06:33:1e:98:f3:5e:65:df:c0:95:54:2d:ad:
69:87:e3:7b:2b:39:86:7f:83:a0:0b:68:fc:22:83:3a:ac:fc:
54:c3:3a:ac:13:bc:6c:62:2c:57:52:87:9b:87:c2:78:fc:26:
60:24:f8:3b:a0:14:a4:20:b9:c9:ca:0f:6a:b4:a3:fd:02:25:
d9:1a:a4:64:d5:d5:3f:30:69:19:7b:5a:09:a4:4a:14:33:0a:
d4:29:f1:e0:16:2f:7d:23:03:44:18:45:2e:8c:ac:fe:76:e5:
28:dd:b0:d5
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICTyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjMxMjAyMTk1MDUwWhcNMjUwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE5REM3NDExMC8GA1UEBRMoOEYwQkVBM0Q5NkZDOEUyRUQxRThDNjgz
NzA0NzY5NDU2OUVFRTNDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMo7go3gosjR+w18KAxr2Iwxy1//WRG0lT46Ihn3rRmh4PUEiboeBU/RqkQsH4oI
MON0xc2IUJEHz2Hz4qjYfu7WeDwNZf4UksBNFTq8kX9aMSiUygp8z5BgrQHUlysU
q6p0Aah70fJrcm8olWtx0ZU09P2d4AgdO1b1VIKlTYiPq1AHvdpjSb7Z7FXbKnUq
rPa2L+xGkhIW6lm2b+HXJGAYPzZHLZD46jcnG9994yF2QBkDcGmGRxbPNpW5rQ7p
90tzk61qBE6AXIc87mUe+wg7hCYWJ0h6HWfYtM2jEpp4y+5fvYhuDYegQb8c14Ei
rTgOV/Stfucm+bn2T6DUMQ0CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSPC+o9lvyO
LtHoxoNwR2lFae7jzjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OURDNzQvREEyMjQwRTY0NjI5MTFFREFFNzhCMjM1QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlEQzc0L0RBMjI0MEU2NDYyOTExRURBRTc4QjIzNUM0RjlBRTAyL2p3dnFQWmI4
amk3UjZNYURjRWRwUldudTQ4NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEBM6DwDANBgkqhkiG9w0BAQsFAAOCAQEAUPO8cEvIRcfU2nBkoOfr
rvSxEXj8lwCUXEGwkLJZ0oC+pSvI9ZyFxIMx+Cd+KV0xxJtrlKQGRgNipzjQffSr
gt5Aa8xyW/zhxWrMaplrJJrlUwFs7FFhMGuaXsPBVXkKL1FVPZmYz6WE8Vn3mSiX
NYQD40z4rF7Pwn9pK3MKlNVF3McwzLrHiNvAqFu/ts4eG0KtxVwGMx6Y815l38CV
VC2taYfjeys5hn+DoAto/CKDOqz8VMM6rBO8bGIsV1KHm4fCePwmYCT4O6AUpCC5
ycoParSj/QIl2RqkZNXVPzBpGXtaCaRKFDMK1Cnx4BYvfSMDRBhFLoys/nblKN2w
1Q==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org