Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer
File: oCcZWkgg89cmSk1X7pqdTCoQySM.cer (raw, json)
Hash identifier: bsqmuWYBy5vTiX/kv8abnXGIu0otq0uSbSR81Ag18G8=
Subject key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 60A6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 10 Jan 2025 04:41:56 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.150.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24742 (0x60a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 10 04:41:56 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91C1621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:16:d1:2a:57:06:70:e5:13:ec:df:73:48:f7:
a3:c6:cc:7a:37:88:79:25:57:26:24:da:3f:85:92:
87:8f:bc:ba:6e:59:e8:1f:be:98:33:76:71:c6:6e:
36:cd:aa:92:3a:49:1a:a2:b4:4d:c5:74:7f:8e:5c:
ab:58:0f:a6:99:a3:20:d7:0a:85:d1:a3:e1:51:21:
a9:52:b4:8d:41:a2:90:b2:5c:95:44:e3:31:43:0f:
9f:8c:19:4a:02:a5:f9:86:9e:f4:ef:11:dd:28:e9:
c6:2e:e1:08:c7:fd:73:96:dc:a7:a4:bd:36:0e:0b:
7d:0d:bb:96:aa:aa:88:f6:bf:0c:ab:18:62:f4:93:
c2:d0:39:64:62:d1:b1:75:ff:8f:1c:59:1f:75:12:
6a:00:cc:8c:1e:9a:ac:a7:78:4d:28:f5:37:cd:70:
f3:10:a9:fe:da:61:19:a9:b6:11:41:2d:ff:1e:ed:
5f:ee:b0:73:72:46:66:72:f6:e2:61:1f:7a:59:e3:
03:75:1a:47:a3:79:a2:4d:ab:fc:ec:d0:25:31:37:
43:4c:b0:2c:93:df:46:66:a6:05:88:fe:46:d3:56:
2c:50:ab:34:a7:c0:d8:70:db:10:e1:cd:79:f2:6b:
5b:b3:ac:67:46:32:18:c1:7d:ea:ec:3a:f8:a8:c5:
ab:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.150.0/23
Signature Algorithm: sha256WithRSAEncryption
50:7b:6b:8f:06:c3:b4:35:95:5b:66:df:da:ce:82:54:10:05:
c0:11:49:f4:10:35:c5:43:31:83:5b:fa:af:48:e4:fb:01:c0:
61:d3:27:6e:62:c7:4e:26:5f:f0:88:41:5d:d7:dc:39:00:c2:
1c:f6:f7:d2:db:e6:50:45:27:72:ab:74:56:62:7f:4c:09:23:
45:02:19:a6:c6:6d:76:ef:8e:ad:c6:42:ba:e6:c6:09:fb:03:
57:20:43:66:6d:55:a1:e2:65:d4:22:80:16:12:7c:1a:5d:ae:
b3:42:db:db:a3:70:bb:48:c6:b3:55:dc:cf:bc:4b:bd:77:da:
33:e7:44:61:1d:d5:09:fd:cc:5c:e4:77:b1:fa:3d:11:4a:a9:
21:c7:94:61:db:88:2e:de:5c:f9:fd:dc:56:f2:08:99:27:ff:
7c:e0:40:7c:05:a9:82:f1:c3:1a:d3:15:10:44:b9:65:1a:1d:
29:1c:81:8e:eb:d3:6f:f8:b0:55:e7:fa:ea:d1:01:d1:16:9d:
6c:19:b7:b8:ef:7f:f7:9d:7f:91:81:9b:17:70:78:2d:77:29:
5a:f7:ae:c9:7e:a3:37:0f:2b:9a:13:2f:9c:86:83:d1:d8:21:
98:84:5b:47:c6:fd:bb:a9:8a:49:4e:0b:44:80:e9:88:a2:63:
16:8b:52:b9
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICYKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwMTEwMDQ0MTU2WhcNMjYwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFDMTYyMTExMC8GA1UEBRMoQTAyNzE5NUE0ODIwRjNENzI2NEE0RDU3
RUU5QTlENEMyQTEwQzkyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AJ4W0SpXBnDlE+zfc0j3o8bMejeIeSVXJiTaP4WSh4+8um5Z6B++mDN2ccZuNs2q
kjpJGqK0TcV0f45cq1gPppmjINcKhdGj4VEhqVK0jUGikLJclUTjMUMPn4wZSgKl
+Yae9O8R3Sjpxi7hCMf9c5bcp6S9Ng4LfQ27lqqqiPa/DKsYYvSTwtA5ZGLRsXX/
jxxZH3USagDMjB6arKd4TSj1N81w8xCp/tphGam2EUEt/x7tX+6wc3JGZnL24mEf
elnjA3UaR6N5ok2r/OzQJTE3Q0ywLJPfRmamBYj+RtNWLFCrNKfA2HDbEOHNefJr
W7OsZ0YyGMF96uw6+KjFq60CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSgJxlaSCDz
1yZKTVfump1MKhDJIzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzE2MjEvMzVFREE5MkVDRjBEMTFFRjkyRjFFQzM2QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUMxNjIxLzM1RURBOTJFQ0YwRDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dn
ODljbVNrMVg3cHFkVENvUXlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaH4ljANBgkqhkiG9w0BAQsFAAOCAQEAUHtrjwbDtDWVW2bf2s6C
VBAFwBFJ9BA1xUMxg1v6r0jk+wHAYdMnbmLHTiZf8IhBXdfcOQDCHPb30tvmUEUn
cqt0VmJ/TAkjRQIZpsZtdu+OrcZCuubGCfsDVyBDZm1VoeJl1CKAFhJ8Gl2us0Lb
26Nwu0jGs1Xcz7xLvXfaM+dEYR3VCf3MXOR3sfo9EUqpIceUYduILt5c+f3cVvII
mSf/fOBAfAWpgvHDGtMVEES5ZRodKRyBjuvTb/iwVef66tEB0RadbBm3uO9/951/
kYGbF3B4LXcpWveuyX6jNw8rmhMvnIaD0dghmIRbR8b9u6mKSU4LRIDpiKJjFotS
uQ==
-----END CERTIFICATE-----
Generated at Wed Feb 5 17:05:45 2025 by rpki-client