Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/CVjwl8rkKX3ycoLkGD468UJMj34.cer
File: CVjwl8rkKX3ycoLkGD468UJMj34.cer (raw, json)
Hash identifier: NfJ53EghURDMb4YUUQ2khLIOYv3z+PllwEEllV4RSvY=
Subject key identifier: 09:58:F0:97:CA:E4:29:7D:F2:72:82:E4:18:3E:3A:F1:42:4C:8F:7E
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 40E7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Jan 2024 16:45:15 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 196.1.105.0 -- 196.1.106.255
IP: 196.1.110.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16615 (0x40e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jan 16 16:45:15 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A916814B/serialNumber=0958F097CAE4297DF27282E4183E3AF1424C8F7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:71:13:39:cc:2a:32:0c:5f:2d:1e:5d:b8:df:
fc:b3:6e:27:39:68:c0:42:a1:b9:13:3f:e9:73:86:
5b:53:3d:4f:a7:bc:42:01:3d:e8:e6:0f:93:ba:11:
dd:d6:51:fb:29:78:49:32:8a:47:92:1f:6b:af:1e:
0d:f0:0a:00:b0:91:e7:01:58:d9:03:1c:ec:d9:48:
6a:d6:7c:4f:9a:a8:ae:0b:17:ba:b4:86:88:29:84:
5b:09:72:f6:93:32:4e:5b:a0:ef:57:a1:79:dd:4d:
72:13:31:3b:d3:35:f4:bb:b7:0a:25:7c:c8:95:2c:
15:0c:80:ae:f2:d5:87:af:e2:b2:00:ed:c7:76:5c:
c6:f1:5e:3b:7c:8f:34:b8:e9:fc:01:02:b8:73:78:
ac:2d:17:e1:8f:e2:3b:0f:ae:ed:ef:8c:b1:a9:d6:
66:cf:f0:45:c8:bb:80:85:f2:7a:bd:16:92:44:ad:
e9:dd:22:69:f7:81:e1:c2:31:e9:38:f3:e9:92:7b:
42:5a:5d:2b:51:89:7c:59:b5:bf:e4:c0:2b:71:ac:
53:b0:fd:bf:f7:d2:b9:68:0f:98:e6:e6:13:da:56:
1a:6e:42:2c:71:0b:4b:c8:a2:38:9c:4f:d8:55:4d:
9b:7f:52:82:3b:da:15:cf:07:d7:03:93:55:23:7a:
4f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:58:F0:97:CA:E4:29:7D:F2:72:82:E4:18:3E:3A:F1:42:4C:8F:7E
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.105.0-196.1.106.255
196.1.110.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:ae:c6:5c:54:8a:e9:68:a5:27:ba:6f:6a:8b:b9:ed:5e:70:
eb:db:d1:61:02:3c:a0:4e:ae:9f:75:37:34:6f:ea:dc:86:40:
9b:4e:18:62:11:44:9f:04:be:cd:c5:dd:68:0f:08:25:57:c7:
a3:f3:a3:0d:56:33:7f:9a:8e:83:bf:c3:0f:6b:c3:43:fd:56:
45:d9:87:8c:29:a9:49:f3:eb:37:47:96:21:c6:b9:8e:09:e3:
fd:6c:a0:95:fc:6d:73:ee:05:9a:a6:e9:53:ac:b0:b7:5e:d7:
31:8a:04:9d:81:4e:b0:9f:12:70:bc:03:13:fe:cd:a5:d8:10:
27:bb:4e:ab:fb:34:96:27:6e:16:95:3d:0c:8b:77:b1:31:89:
36:42:ef:e2:67:09:bb:ab:74:4a:e9:da:bc:c8:07:75:3f:b8:
7a:49:83:13:a8:18:ef:69:0f:29:fc:e3:09:ea:7c:29:b9:78:
c5:33:b9:70:b7:a9:40:8f:3e:0c:83:b9:07:70:fc:a4:d9:d3:
25:f6:eb:26:f9:5b:ce:c9:59:db:f5:5d:a2:43:22:e8:b3:78:
7c:1b:f3:90:36:12:09:80:1d:67:b9:30:a5:0b:54:cd:34:b2:
52:c7:48:0e:92:e0:50:47:18:1e:ba:83:1e:6f:e1:7d:45:48:
0c:2d:42:9c
-----BEGIN CERTIFICATE-----
MIIGCzCCBPOgAwIBAgICQOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjQwMTE2MTY0NTE1WhcNMjUwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE2ODE0QjExMC8GA1UEBRMoMDk1OEYwOTdDQUU0Mjk3REYyNzI4MkU0
MTgzRTNBRjE0MjRDOEY3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AJxxEznMKjIMXy0eXbjf/LNuJzlowEKhuRM/6XOGW1M9T6e8QgE96OYPk7oR3dZR
+yl4STKKR5Ifa68eDfAKALCR5wFY2QMc7NlIatZ8T5qorgsXurSGiCmEWwly9pMy
Tlug71ehed1NchMxO9M19Lu3CiV8yJUsFQyArvLVh6/isgDtx3ZcxvFeO3yPNLjp
/AECuHN4rC0X4Y/iOw+u7e+MsanWZs/wRci7gIXyer0WkkSt6d0iafeB4cIx6Tjz
6ZJ7QlpdK1GJfFm1v+TAK3GsU7D9v/fSuWgPmObmE9pWGm5CLHELS8iiOJxP2FVN
m39SgjvaFc8H1wOTVSN6T/ECAwEAAaOCAwEwggL9MB0GA1UdDgQWBBQJWPCXyuQp
ffJyguQYPjrxQkyPfjAfBgNVHSMEGDAWgBQ0j5ubkqcsz9NvPHDzVnVzPMjqIjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2
MTFFMkE2MkY4NzdDNzJGRDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJ
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjgxNEIvRkI2MDZGNTYxNjJFMTFFOEI4REUyNjY5QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY4MTRCL0ZCNjA2RjU2MTYyRTExRThCOERFMjY2OUM0RjlBRTAyL0NWandsOHJr
S1gzeWNvTGtHRDQ2OFVKTWozNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQeMBww
GgQCAAEwFDAMAwQAxAFpAwQAxAFqAwQBxAFuMA0GCSqGSIb3DQEBCwUAA4IBAQA+
rsZcVIrpaKUnum9qi7ntXnDr29FhAjygTq6fdTc0b+rchkCbThhiEUSfBL7Nxd1o
DwglV8ej86MNVjN/mo6Dv8MPa8ND/VZF2YeMKalJ8+s3R5YhxrmOCeP9bKCV/G1z
7gWapulTrLC3XtcxigSdgU6wnxJwvAMT/s2l2BAnu06r+zSWJ24WlT0Mi3exMYk2
Qu/iZwm7q3RK6dq8yAd1P7h6SYMTqBjvaQ8p/OMJ6nwpuXjFM7lwt6lAjz4Mg7kH
cPyk2dMl9usm+VvOyVnb9V2iQyLos3h8G/OQNhIJgB1nuTClC1TNNLJSx0gOkuBQ
RxgeuoMeb+F9RUgMLUKc
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:56:25 2024 by rpki-client on console-fra.rpki-client.org