Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer
File: vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer (raw, json)
Hash identifier: VhYoFnnjfUljyfNeWFSn3iCZtGp31OF9YQ1KX+OaBPc=
Subject key identifier: BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5B80
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft
caRepository: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/
Notify URL: https://rrdp.sub.apnic.net/notification.xml
Certificate not before: Sat 28 Sep 2024 16:26:14 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.124.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Oct 2024 17:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23424 (0x5b80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 28 16:26:14 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:19:f3:69:2c:44:8c:a5:95:50:cc:fa:d0:
61:ad:54:c8:a3:51:11:2d:c8:4c:e5:5d:f2:01:ea:
59:42:4e:df:5a:ca:26:a4:60:bb:cd:5a:df:5d:3a:
ab:2e:a5:69:34:06:e9:a7:61:52:19:10:5c:04:c2:
59:04:f0:be:78:9b:12:06:6e:29:fb:86:18:b4:3a:
85:54:62:aa:05:83:f0:ba:69:ae:f4:0f:d9:b3:cb:
4f:86:fb:75:d6:6d:7f:07:af:1a:41:20:2b:2c:bb:
fe:f2:fe:4f:4f:df:54:8b:e7:a0:74:02:08:ba:40:
d5:f3:d8:0d:e8:e6:21:8a:cc:86:e0:73:5d:c5:bc:
58:9b:bc:37:5b:d5:00:22:af:7d:4b:73:d5:4d:83:
89:cf:c7:96:14:ba:3a:ee:58:d7:6e:e1:e4:07:31:
82:d0:bb:00:c9:de:33:3b:dd:d5:72:0c:c1:29:69:
61:22:8d:7a:1a:83:5f:52:96:6c:c8:8d:77:b6:6d:
95:82:a8:00:77:78:c4:22:c3:1a:95:3e:c9:b0:3a:
4f:03:cc:98:1b:6e:49:bb:69:ae:0b:33:1c:25:0b:
c7:41:85:05:a1:51:a0:7e:10:99:c7:f6:f2:cd:dc:
4a:5d:62:cf:e0:06:6b:2f:27:be:b7:d0:f9:2d:7c:
a9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/
RPKI Manifest - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft
RPKI Notify - URI:https://rrdp.sub.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.124.0/23
Signature Algorithm: sha256WithRSAEncryption
44:d0:ed:ce:13:65:e0:3c:27:3a:80:4f:e0:da:c1:f2:c6:dd:
de:ce:11:6f:95:11:26:12:28:15:c5:f5:74:38:4b:8d:ac:67:
bc:33:79:52:02:bd:68:ca:12:07:93:9b:a6:01:aa:16:01:34:
2c:f0:45:9f:7e:16:2c:61:0c:75:f4:cc:65:19:d2:fe:ca:4c:
7b:f2:92:de:f4:a5:e2:5e:ab:21:59:ca:e4:82:ad:97:1c:4a:
d1:78:70:50:3a:95:35:1b:05:84:ab:bc:2c:8d:ca:46:ef:e3:
b7:53:8e:a4:f9:2e:e3:92:cc:20:0a:76:ba:14:c4:ab:3c:8d:
f8:dd:95:9d:d5:0a:f2:dc:ec:33:35:41:c8:58:9f:0f:84:5b:
6c:ac:05:d8:32:3b:74:a8:dc:fa:e7:58:81:11:78:5b:d5:91:
a3:f9:08:59:c9:d1:b5:eb:ff:a5:16:58:35:72:d2:fd:91:43:
52:71:79:3d:6e:c1:9f:8a:bc:39:d1:f5:d2:28:29:e5:44:54:
28:e1:97:68:2f:14:24:40:33:96:dd:97:a0:0c:7e:c8:12:0c:
f4:98:32:9c:f2:20:20:c7:7e:b3:3d:b9:49:da:40:4d:49:bf:
7a:53:03:95:b4:2b:84:dc:80:96:b4:95:8b:91:db:63:af:a2:
93:0b:92:2c
-----BEGIN CERTIFICATE-----
MIIF0zCCBLugAwIBAgICW4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwOTI4MTYyNjE0WhcNMjUxMjMwMDAwMDAwWjBKMRUwEwYD
VQQDEwxBOTE3NDQ3QjAwMDAxMTAvBgNVBAUTKEJENDM1RTNFRDZGRUVDMjZGODc5
QTA1NDJGNjA5QTI3MkNDNzEzMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCwoBnzaSxEjKWVUMz60GGtVMijUREtyEzlXfIB6llCTt9ayiakYLvNWt9d
OqsupWk0BumnYVIZEFwEwlkE8L54mxIGbin7hhi0OoVUYqoFg/C6aa70D9mzy0+G
+3XWbX8HrxpBICssu/7y/k9P31SL56B0Agi6QNXz2A3o5iGKzIbgc13FvFibvDdb
1QAir31Lc9VNg4nPx5YUujruWNdu4eQHMYLQuwDJ3jM73dVyDMEpaWEijXoag19S
lmzIjXe2bZWCqAB3eMQiwxqVPsmwOk8DzJgbbkm7aa4LMxwlC8dBhQWhUaB+EJnH
9vLN3EpdYs/gBmsvJ7630PktfKmXAgMBAAGjggLFMIICwTAdBgNVHQ4EFgQUvUNe
Ptb+7Cb4eaBUL2CaJyzHEwcwHwYDVR0jBBgwFoAUdAFlqA0QcZcKvAnAK3HBrHwd
bg4wDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBo
oGagZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIw
MUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL2RBRmxxQTBRY1pjS3ZBbkFLM0hCckh3
ZGJnNC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUy
MUE0RjRGQjQvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0LmNlcjBKBgNVHSAB
Af8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFw
bmljLm5ldC9SUEtJL0NQUy5wZGYwgfsGCCsGAQUFBwELBIHuMIHrMEEGCCsGAQUF
BzAFhjVyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MTc0
NDdCMDAwMC8wLzBtBggrBgEFBQcwCoZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5u
ZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMC9CRDQzNUUzRUQ2RkVFQzI2Rjg3
OUEwNTQyRjYwOUEyNzJDQzcxMzA3Lm1mdDA3BggrBgEFBQcwDYYraHR0cHM6Ly9y
cmRwLnN1Yi5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAaC7fDANBgkqhkiG9w0BAQsFAAOCAQEARNDtzhNl4Dwn
OoBP4NrB8sbd3s4Rb5URJhIoFcX1dDhLjaxnvDN5UgK9aMoSB5ObpgGqFgE0LPBF
n34WLGEMdfTMZRnS/spMe/KS3vSl4l6rIVnK5IKtlxxK0XhwUDqVNRsFhKu8LI3K
Ru/jt1OOpPku45LMIAp2uhTEqzyN+N2VndUK8tzsMzVByFifD4RbbKwF2DI7dKjc
+udYgRF4W9WRo/kIWcnRtev/pRZYNXLS/ZFDUnF5PW7Bn4q8OdH10igp5URUKOGX
aC8UJEAzlt2XoAx+yBIM9JgynPIgIMd+sz25SdpATUm/elMDlbQrhNyAlrSVi5Hb
Y6+ikwuSLA==
-----END CERTIFICATE-----
Generated at Wed Oct 23 19:11:17 2024 by rpki-client on console-fra.rpki-client.org