Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer
File: w-IA1ABdmiPkv66uDtty6kPx0JY.cer (raw, json)
Hash identifier: 77/EbS8uOCFckAI+bUcTHuxDPWG4lVv9Klj40iFpgNo=
Subject key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 520A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 Feb 2024 22:57:38 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 157.15.225.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 May 2024 17:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21002 (0x520a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 12 22:57:38 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:43:cf:b9:a9:c7:7a:2e:29:d2:f4:50:0c:32:
9e:db:34:cd:f4:07:23:83:97:0a:6e:f8:0b:e4:71:
46:04:05:bb:ce:8c:9d:07:27:85:47:02:5c:14:f4:
6c:cc:e4:a6:36:b5:3c:70:04:a0:2f:61:ef:aa:5c:
70:a5:3c:0a:63:50:12:2a:24:61:0d:43:7e:c9:14:
89:44:7e:f4:06:8d:6d:0f:a5:86:80:87:37:9a:69:
77:09:f1:8f:06:6d:1f:58:a8:f0:32:a9:26:a5:52:
f6:ed:89:48:61:67:ae:aa:d6:c4:40:ab:cf:fb:85:
64:92:50:29:48:cd:de:15:27:01:59:78:ff:1d:dc:
62:ce:1f:d2:be:9c:a0:b0:0d:29:f4:79:13:ca:66:
63:ff:8b:13:63:76:44:a0:6a:6d:2f:88:c4:ff:23:
1d:02:81:8b:a2:c2:67:3a:c7:6e:40:49:80:6e:6b:
ab:0a:93:c7:21:ad:33:16:48:33:e8:7d:33:b2:c4:
f0:c8:94:39:c1:2e:7f:4b:c6:47:cb:5e:9c:13:77:
52:5c:09:2e:a0:50:0d:be:54:bb:8e:1a:d0:6e:d1:
ce:b2:be:b0:72:cb:0c:05:cf:47:84:7b:77:f7:93:
0f:90:41:0a:9c:7b:28:b5:37:68:ac:d7:5a:6b:d0:
34:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.225.0/24
Signature Algorithm: sha256WithRSAEncryption
25:79:72:1b:cd:b5:29:16:84:92:a9:79:6c:9f:4e:b0:bc:01:
45:50:6b:34:29:9b:41:7e:68:c8:d9:c9:5e:7f:43:45:42:bc:
c4:46:6c:7b:03:25:6a:1b:89:83:ae:f5:b2:95:d5:34:0d:5d:
8f:3c:1f:5a:d1:fe:85:28:e4:8d:27:e7:f9:60:a4:c0:b5:9e:
b2:72:21:31:b1:f4:82:2f:4d:09:a0:3f:a6:fa:46:32:0a:53:
fd:30:e9:7c:a2:d5:00:8e:31:0b:bb:7d:76:4a:01:0b:e8:6f:
47:30:78:02:76:06:6f:55:92:cc:43:f1:55:6f:09:1c:ef:23:
be:f1:37:2b:e0:65:80:b3:cf:57:7c:c2:c4:73:14:46:08:56:
a5:3f:1d:0a:24:ae:d7:22:f7:9c:96:8d:21:ce:21:33:b2:e7:
c6:1b:fa:fa:ef:32:df:22:da:af:f8:11:3e:82:00:ca:7e:19:
f9:ec:4b:4a:3f:a2:c1:19:81:98:a1:fa:3c:71:b7:63:39:27:
7c:3a:5d:ff:0d:8e:60:80:ea:9c:e1:8c:85:fd:ba:a4:6b:cd:
1d:7f:4e:bf:f8:2e:59:e4:da:f1:65:74:58:09:5c:71:09:14:
e2:4c:66:8c:e1:2c:74:9c:ca:03:79:ac:ea:be:05:5a:d6:b3:
85:c1:6d:82
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICUgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjQwMjEyMjI1NzM4WhcNMjQxMjAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFDRDFBMjExMC8GA1UEBRMoQzNFMjAwRDQwMDVEOUEyM0U0QkZBRUFF
MEVEQjcyRUE0M0YxRDA5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKpDz7mpx3ouKdL0UAwynts0zfQHI4OXCm74C+RxRgQFu86MnQcnhUcCXBT0bMzk
pja1PHAEoC9h76pccKU8CmNQEiokYQ1DfskUiUR+9AaNbQ+lhoCHN5ppdwnxjwZt
H1io8DKpJqVS9u2JSGFnrqrWxECrz/uFZJJQKUjN3hUnAVl4/x3cYs4f0r6coLAN
KfR5E8pmY/+LE2N2RKBqbS+IxP8jHQKBi6LCZzrHbkBJgG5rqwqTxyGtMxZIM+h9
M7LE8MiUOcEuf0vGR8tenBN3UlwJLqBQDb5Uu44a0G7RzrK+sHLLDAXPR4R7d/eT
D5BBCpx7KLU3aKzXWmvQNNMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTD4gDUAF2a
I+S/rq4O23LqQ/HQljAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0QxQTIvMUExRTNERTRDOUZBMTFFRTgzRjVCMDI5QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNEMUEyLzFBMUUzREU0QzlGQTExRUU4M0Y1QjAyOUM0RjlBRTAyL3ctSUExQUJk
bWlQa3Y2NnVEdHR5NmtQeDBKWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAJ0P4TANBgkqhkiG9w0BAQsFAAOCAQEAJXlyG821KRaEkql5bJ9O
sLwBRVBrNCmbQX5oyNnJXn9DRUK8xEZsewMlahuJg671spXVNA1djzwfWtH+hSjk
jSfn+WCkwLWesnIhMbH0gi9NCaA/pvpGMgpT/TDpfKLVAI4xC7t9dkoBC+hvRzB4
AnYGb1WSzEPxVW8JHO8jvvE3K+BlgLPPV3zCxHMURghWpT8dCiSu1yL3nJaNIc4h
M7Lnxhv6+u8y3yLar/gRPoIAyn4Z+exLSj+iwRmBmKH6PHG3YzknfDpd/w2OYIDq
nOGMhf26pGvNHX9Ov/guWeTa8WV0WAlccQkU4kxmjOEsdJzKA3ms6r4FWtazhcFt
gg==
-----END CERTIFICATE-----
Generated at Fri May 3 17:57:35 2024 by rpki-client on console-ams.rpki-client.org