Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer
File: p65HRBaw6K06iehndKZA_r5pc_k.cer (raw, json)
Hash identifier: YUEuOCapMHXsePHgb1M+mPDIuZ9+1IvjN995S8wiEdk=
Subject key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 54BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Apr 2024 16:49:25 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 67.158.52.0/24
IP: 142.79.224.0/19
IP: 157.10.12.0/22
IP: 157.10.22.0 -- 157.10.27.255
IP: 157.10.40.0/23
IP: 157.10.56.0 -- 157.10.62.255
IP: 157.10.92.0/23
IP: 157.10.96.0/24
IP: 157.10.98.0/23
IP: 157.10.150.0/23
IP: 157.10.168.0/23
IP: 157.10.204.0/24
IP: 157.10.216.0/23
IP: 157.10.240.0/23
IP: 157.10.248.0/23
IP: 157.15.8.0 -- 157.15.13.255
IP: 157.15.17.0/24
IP: 157.15.24.0 -- 157.15.26.255
IP: 157.15.34.0/23
IP: 157.15.81.0/24
IP: 157.15.88.0 -- 157.15.93.255
IP: 157.15.98.0/23
IP: 157.15.130.0 -- 157.15.133.255
IP: 157.15.146.0/23
IP: 157.15.158.0/23
IP: 157.15.176.0/23
IP: 157.15.202.0/23
IP: 157.15.234.0/23
IP: 157.15.250.0/23
IP: 157.20.14.0/23
IP: 157.20.26.0 -- 157.20.29.255
IP: 157.20.51.0/24
IP: 157.20.66.0/23
IP: 157.20.76.0/24
IP: 157.20.84.0/22
IP: 157.20.138.0/23
IP: 157.20.153.0/24
IP: 157.20.160.0/23
IP: 157.20.166.0/24
IP: 157.20.168.0/21
IP: 157.20.180.0 -- 157.20.187.255
IP: 157.20.190.0 -- 157.20.192.255
IP: 157.20.196.0/23
IP: 157.20.202.0/23
IP: 157.20.211.0/24
IP: 157.20.214.0 -- 157.20.216.255
IP: 157.20.226.0 -- 157.20.229.255
IP: 157.20.240.0 -- 157.20.242.255
IP: 157.20.250.0/23
IP: 157.66.28.0/24
IP: 157.66.30.0 -- 157.66.33.255
IP: 157.66.44.0/23
IP: 157.66.74.0 -- 157.66.79.255
IP: 157.66.102.0 -- 157.66.111.255
IP: 157.66.118.0/23
IP: 157.66.144.0/21
IP: 158.144.0.0/16
IP: 159.117.144.0/20
IP: 162.216.140.0/22
IP: 164.164.0.0/16
IP: 168.220.224.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21695 (0x54bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 19 16:49:25 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8e:6d:9c:f8:84:dd:79:81:26:a0:d8:35:82:
a4:b2:a9:73:15:75:51:ed:35:62:d1:b7:15:29:6d:
75:ea:83:fe:ad:76:50:68:6c:b7:c1:e1:b5:0b:16:
cc:c2:95:fd:9d:ae:df:e8:98:ce:30:b9:1f:a5:38:
80:c1:78:56:a9:e2:97:7d:e3:67:2f:02:37:34:c7:
7d:4f:04:9a:8a:0b:1c:20:49:43:b9:59:f2:45:09:
1c:18:f2:13:8e:47:fe:2b:d0:c5:c6:34:ee:c6:ad:
b5:f5:13:45:eb:2a:15:5f:de:7a:70:6c:c1:81:17:
6e:02:d0:43:88:d1:be:f6:9c:45:a5:a7:2e:f7:cb:
7f:90:e6:28:b7:53:1e:24:ad:bc:be:d2:0a:a6:92:
41:0c:7e:a8:13:42:d7:58:ae:0a:79:50:62:ba:23:
54:ca:ce:4c:d6:78:76:8d:50:18:21:7b:de:df:f2:
48:6b:78:15:2c:17:91:7f:78:68:67:75:35:cc:d4:
0c:c0:ea:83:40:00:71:30:ee:30:ac:d9:02:fe:a2:
f7:9e:19:7e:c5:ad:c2:e3:82:57:ee:4e:cb:29:e0:
38:c5:a7:28:68:ed:2b:ac:1e:1c:40:c6:00:94:0e:
d7:2a:b2:4f:38:a1:29:8b:65:8b:e6:74:22:ca:f4:
69:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
67.158.52.0/24
142.79.224.0/19
157.10.12.0/22
157.10.22.0-157.10.27.255
157.10.40.0/23
157.10.56.0-157.10.62.255
157.10.92.0/23
157.10.96.0/24
157.10.98.0/23
157.10.150.0/23
157.10.168.0/23
157.10.204.0/24
157.10.216.0/23
157.10.240.0/23
157.10.248.0/23
157.15.8.0-157.15.13.255
157.15.17.0/24
157.15.24.0-157.15.26.255
157.15.34.0/23
157.15.81.0/24
157.15.88.0-157.15.93.255
157.15.98.0/23
157.15.130.0-157.15.133.255
157.15.146.0/23
157.15.158.0/23
157.15.176.0/23
157.15.202.0/23
157.15.234.0/23
157.15.250.0/23
157.20.14.0/23
157.20.26.0-157.20.29.255
157.20.51.0/24
157.20.66.0/23
157.20.76.0/24
157.20.84.0/22
157.20.138.0/23
157.20.153.0/24
157.20.160.0/23
157.20.166.0/24
157.20.168.0/21
157.20.180.0-157.20.187.255
157.20.190.0-157.20.192.255
157.20.196.0/23
157.20.202.0/23
157.20.211.0/24
157.20.214.0-157.20.216.255
157.20.226.0-157.20.229.255
157.20.240.0-157.20.242.255
157.20.250.0/23
157.66.28.0/24
157.66.30.0-157.66.33.255
157.66.44.0/23
157.66.74.0-157.66.79.255
157.66.102.0-157.66.111.255
157.66.118.0/23
157.66.144.0/21
158.144.0.0/16
159.117.144.0/20
162.216.140.0/22
164.164.0.0/16
168.220.224.0/19
Signature Algorithm: sha256WithRSAEncryption
37:bc:18:bb:bf:ea:cd:86:c7:55:5f:64:58:e4:40:e9:1f:92:
8c:75:2a:6c:3e:4a:18:06:49:5a:9a:b8:79:92:fd:91:b8:f1:
ae:5f:0c:92:9f:03:8a:20:5c:3d:85:23:67:84:d2:e6:d0:45:
62:15:ef:7c:a5:cf:e8:f3:c1:5c:df:79:3b:b6:f9:0d:94:4d:
d6:f3:ed:e2:46:40:f8:9b:21:85:85:c3:c9:e3:e8:81:5a:fd:
f3:b7:87:5c:d9:93:38:d7:69:95:df:d1:56:3c:53:57:e3:14:
0e:85:11:24:28:75:d5:09:2c:6a:61:3b:cc:d2:43:ab:00:1f:
df:5e:a1:90:88:dc:11:33:03:91:e3:3e:30:6e:2b:2c:76:24:
68:6b:3e:93:7b:28:7f:bf:71:22:fb:d9:2c:c2:72:4e:c4:c8:
5c:53:4c:fa:f3:de:58:f7:50:5c:dc:a4:c8:3f:10:42:e4:4c:
c5:89:9a:63:c6:0c:f0:b0:65:cd:10:a3:37:06:87:51:30:d1:
07:51:16:61:c2:f5:95:fd:48:6a:6b:c5:62:fc:d6:24:75:c3:
49:8d:63:b9:21:86:97:60:9b:73:67:6c:32:df:47:e9:0d:86:
31:5f:e2:b0:2e:5f:67:ef:45:72:10:6e:ad:ba:64:7c:93:dd:
13:64:5c:2b
-----BEGIN CERTIFICATE-----
MIIH5TCCBs2gAwIBAgICVL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwNDE5MTY0OTI1WhcNMjQwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE4RURCMjExMC8GA1UEBRMoQTdBRTQ3NDQxNkIwRThBRDNBODlFODY3
NzRBNjQwRkVCRTY5NzNGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AM+ObZz4hN15gSag2DWCpLKpcxV1Ue01YtG3FSltdeqD/q12UGhst8HhtQsWzMKV
/Z2u3+iYzjC5H6U4gMF4Vqnil33jZy8CNzTHfU8EmooLHCBJQ7lZ8kUJHBjyE45H
/ivQxcY07sattfUTResqFV/eenBswYEXbgLQQ4jRvvacRaWnLvfLf5DmKLdTHiSt
vL7SCqaSQQx+qBNC11iuCnlQYrojVMrOTNZ4do1QGCF73t/ySGt4FSwXkX94aGd1
NczUDMDqg0AAcTDuMKzZAv6i954ZfsWtwuOCV+5OyyngOMWnKGjtK6weHEDGAJQO
1yqyTzihKYtli+Z0Isr0aQkCAwEAAaOCBNswggTXMB0GA1UdDgQWBBSnrkdEFrDo
rTqJ6Gd0pkD+vmlz+TAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzFDNTdDRUFDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL3A2NUhSQmF3
NkswNmllaG5kS1pBX3I1cGNfay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDCCAgUGCCsGAQUFBwEHAQH/BIIB
9DCCAfAwggHsBAIAATCCAeQDBABDnjQDBAWOT+ADBAKdCgwwDAMEAZ0KFgMEAp0K
GAMEAZ0KKDAMAwQDnQo4AwQAnQo+AwQBnQpcAwQAnQpgAwQBnQpiAwQBnQqWAwQB
nQqoAwQAnQrMAwQBnQrYAwQBnQrwAwQBnQr4MAwDBAOdDwgDBAGdDwwDBACdDxEw
DAMEA50PGAMEAJ0PGgMEAZ0PIgMEAJ0PUTAMAwQDnQ9YAwQBnQ9cAwQBnQ9iMAwD
BAGdD4IDBAGdD4QDBAGdD5IDBAGdD54DBAGdD7ADBAGdD8oDBAGdD+oDBAGdD/oD
BAGdFA4wDAMEAZ0UGgMEAZ0UHAMEAJ0UMwMEAZ0UQgMEAJ0UTAMEAp0UVAMEAZ0U
igMEAJ0UmQMEAZ0UoAMEAJ0UpgMEA50UqDAMAwQCnRS0AwQCnRS4MAwDBAGdFL4D
BACdFMADBAGdFMQDBAGdFMoDBACdFNMwDAMEAZ0U1gMEAJ0U2DAMAwQBnRTiAwQB
nRTkMAwDBASdFPADBACdFPIDBAGdFPoDBACdQhwwDAMEAZ1CHgMEAZ1CIAMEAZ1C
LDAMAwQBnUJKAwQEnUJAMAwDBAGdQmYDBASdQmADBAGdQnYDBAOdQpADAwCekAME
BJ91kAMEAqLYjAMDAKSkAwQFqNzgMA0GCSqGSIb3DQEBCwUAA4IBAQA3vBi7v+rN
hsdVX2RY5EDpH5KMdSpsPkoYBklamrh5kv2RuPGuXwySnwOKIFw9hSNnhNLm0EVi
Fe98pc/o88Fc33k7tvkNlE3W8+3iRkD4myGFhcPJ4+iBWv3zt4dc2ZM412mV39FW
PFNX4xQOhREkKHXVCSxqYTvM0kOrAB/fXqGQiNwRMwOR4z4wbissdiRoaz6Teyh/
v3Ei+9kswnJOxMhcU0z6895Y91Bc3KTIPxBC5EzFiZpjxgzwsGXNEKM3BodRMNEH
URZhwvWV/Uhqa8Vi/NYkdcNJjWO5IYaXYJtzZ2wy30fpDYYxX+KwLl9n70VyEG6t
umR8k90TZFwr
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:36:36 2024 by rpki-client on console-ams.rpki-client.org