Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer
File: u5rRr2kxSy7y9klB8Db94PfMTwI.cer (raw, json)
Hash identifier: 9QI8KbO3V+hdRQEhscmq60FXvR9uduC+nywSu+N3qIc=
Subject key identifier: BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5A35
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Aug 2024 12:44:30 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 167.179.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23093 (0x5a35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 28 12:44:30 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A911DA8C/serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:60:60:bf:6e:e6:93:27:f5:fd:d8:28:c4:f6:
70:9a:7c:5b:b9:8c:6a:90:42:9a:90:93:3f:89:df:
7a:79:61:42:3c:7c:03:d7:66:e5:23:15:28:28:c9:
20:9c:49:da:21:47:77:a7:d4:63:9f:56:26:11:3d:
15:f6:25:30:be:0c:f6:3f:90:f4:d1:f4:68:a8:ca:
59:5b:10:3e:38:ec:50:cf:f2:61:f8:ef:74:c2:28:
c5:69:ec:af:85:f9:c1:85:47:eb:dd:68:5c:de:54:
64:19:0a:62:8c:d4:7c:67:c5:12:d5:7c:48:45:e4:
d5:89:c2:54:ed:9d:63:a0:e3:e5:fe:a8:71:98:14:
21:4b:8d:2e:3b:83:31:5b:a2:bb:a6:34:06:d7:6b:
28:1a:f7:be:b7:34:a8:45:bd:aa:ad:0e:17:de:e8:
f8:30:70:1e:2d:d0:78:07:fd:f2:ea:22:9f:dc:7d:
a5:3e:c6:0e:8d:9f:ce:2a:76:1d:68:9d:4f:7d:a2:
74:f2:f5:7f:85:ab:2e:63:12:02:92:b2:67:27:3a:
77:ad:8a:0a:a8:7f:8c:30:23:91:1a:da:44:4d:54:
1c:58:e4:5e:9a:3c:bb:a8:ca:bf:01:7c:64:08:b7:
18:30:bb:a1:25:62:05:3f:bc:40:ed:f1:c9:b1:f6:
31:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.179.192.0/22
Signature Algorithm: sha256WithRSAEncryption
22:e8:6d:ee:f3:2d:5f:f2:4c:b6:9c:74:fc:54:31:57:2f:26:
43:e6:7a:73:67:44:8b:7c:82:2a:ef:bd:20:84:27:68:d3:48:
b5:fe:65:26:ed:a7:73:92:62:0b:47:b7:46:5b:08:56:3c:4a:
8c:cd:8e:01:60:9b:ab:45:a9:7e:f2:ec:e4:55:ac:9c:d6:21:
c1:e2:0c:be:a3:fe:f0:28:59:5e:c6:84:2c:25:de:ce:30:86:
9f:26:e2:9d:0d:6f:d2:35:83:f9:30:6a:3f:cb:91:5b:93:66:
38:69:04:5d:a3:bf:c7:88:c8:88:1f:43:cd:dd:06:03:c5:a3:
51:00:83:26:51:ab:4f:d8:72:5a:7b:a9:d2:c9:f1:5b:04:01:
2c:b7:bc:8b:b8:2b:48:91:4a:64:7c:85:f1:de:58:f4:dd:de:
6c:cb:38:b8:54:96:f7:ac:64:37:bd:d2:f5:75:8b:e1:09:ba:
3c:ab:14:da:9f:4b:ad:e3:a1:07:64:5d:c0:3b:53:c8:6f:26:
75:f1:cd:70:ed:1f:fb:ad:e0:74:76:ea:fc:57:98:81:b5:d6:
7d:b3:e6:48:c0:e3:09:db:54:19:a7:85:a9:f0:b8:8a:4a:7f:
4e:f5:ff:b2:74:b6:c5:0c:85:cf:2e:68:20:c2:dd:cb:1d:b5:
32:18:b5:24
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICWjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwODI4MTI0NDMwWhcNMjUxMDMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTExREE4QzExMC8GA1UEBRMoQkI5QUQxQUY2OTMxNEIyRUYyRjY0OTQx
RjAzNkZERTBGN0NDNEYwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALtgYL9u5pMn9f3YKMT2cJp8W7mMapBCmpCTP4nfenlhQjx8A9dm5SMVKCjJIJxJ
2iFHd6fUY59WJhE9FfYlML4M9j+Q9NH0aKjKWVsQPjjsUM/yYfjvdMIoxWnsr4X5
wYVH691oXN5UZBkKYozUfGfFEtV8SEXk1YnCVO2dY6Dj5f6ocZgUIUuNLjuDMVui
u6Y0BtdrKBr3vrc0qEW9qq0OF97o+DBwHi3QeAf98uoin9x9pT7GDo2fzip2HWid
T32idPL1f4WrLmMSApKyZyc6d62KCqh/jDAjkRraRE1UHFjkXpo8u6jKvwF8ZAi3
GDC7oSViBT+8QO3xybH2MYsCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBS7mtGvaTFL
LvL2SUHwNv3g98xPAjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MURBOEMvNTQ2RUYzQkE0Qjk5MTFFRUJCMzYwQjU1QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFEQThDLzU0NkVGM0JBNEI5OTExRUVCQjM2MEI1NUM0RjlBRTAyL3U1clJyMmt4
U3k3eTlrbEI4RGI5NFBmTVR3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAqezwDANBgkqhkiG9w0BAQsFAAOCAQEAIuht7vMtX/JMtpx0/FQx
Vy8mQ+Z6c2dEi3yCKu+9IIQnaNNItf5lJu2nc5JiC0e3RlsIVjxKjM2OAWCbq0Wp
fvLs5FWsnNYhweIMvqP+8ChZXsaELCXezjCGnybinQ1v0jWD+TBqP8uRW5NmOGkE
XaO/x4jIiB9Dzd0GA8WjUQCDJlGrT9hyWnup0snxWwQBLLe8i7grSJFKZHyF8d5Y
9N3ebMs4uFSW96xkN73S9XWL4Qm6PKsU2p9LreOhB2RdwDtTyG8mdfHNcO0f+63g
dHbq/FeYgbXWfbPmSMDjCdtUGaeFqfC4ikp/TvX/snS2xQyFzy5oIMLdyx21Mhi1
JA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:30 2024 by rpki-client on console-fra.rpki-client.org