Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer
File: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (raw, json)
Hash identifier: /UW3JtgCtF5fWiYKRezlOOrOjrKDeAy672BjlI2Yvc4=
Subject key identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4047
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Dec 2023 21:26:17 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 154.8.64.0/18
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 14:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16455 (0x4047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Dec 1 21:26:17 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A919986F/serialNumber=1872F988B65723783799237E554DBCC6E49D14B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:86:e6:5e:79:19:0c:eb:25:43:58:a4:6c:69:
3c:1b:b1:76:40:04:59:1b:10:96:c5:9a:ff:38:6a:
00:ac:27:6a:42:e0:1e:31:62:32:bf:a5:0a:16:c6:
ae:fd:f1:21:70:77:4a:aa:76:51:5e:05:59:e0:5d:
c7:bd:9e:f3:c2:b7:a3:dd:f4:2a:ce:6c:b9:dd:0d:
4e:91:28:62:6a:4d:42:0a:62:da:f9:da:68:2b:dd:
f7:3a:e7:c6:c9:4d:d7:96:22:7c:60:66:18:92:0e:
ba:d9:5f:b9:c9:87:86:90:5d:1d:b7:0f:cd:f2:8f:
36:50:56:fe:07:bc:ca:13:8f:4c:68:9f:2c:44:c5:
ac:06:6c:3e:d4:10:a0:2c:2d:e8:f7:87:0a:31:c3:
3a:bb:56:45:a7:96:06:32:9a:42:3a:b0:7e:bd:fa:
6e:d3:53:2d:01:9d:70:d9:13:fe:86:9d:6a:85:72:
4a:8d:54:5e:64:74:63:1c:25:5f:9a:d1:57:67:8c:
5e:37:f9:67:00:ef:e4:77:28:a4:ad:c7:d0:d7:f8:
c0:40:9e:a5:95:4a:c6:97:4d:c5:f2:9a:ea:db:42:
27:86:c6:dd:ad:97:f9:c0:5f:59:c0:e9:af:3e:2a:
5e:94:1d:ec:be:ef:7d:ab:84:29:b3:77:3f:0f:4c:
79:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.8.64.0/18
Signature Algorithm: sha256WithRSAEncryption
52:03:24:bd:97:10:d0:82:c7:47:7f:23:b7:ac:11:5f:00:7f:
65:83:b5:ed:0f:b5:22:ac:f1:f2:46:e8:50:f9:55:a6:29:1f:
da:32:9d:20:f7:f8:bb:db:5f:40:0a:42:53:bc:19:fc:01:c4:
ec:3d:ba:4b:4a:57:48:21:12:f3:f2:19:62:b9:78:19:11:e3:
a2:cb:9f:48:df:89:95:ed:58:66:00:3b:78:e0:5e:d5:72:c7:
bb:cc:6f:a8:ed:1b:c1:c3:f9:ea:d7:fd:ab:e1:51:85:4c:e4:
62:5e:13:39:60:6e:ec:d1:b6:6f:9e:4b:e5:5a:ba:0c:70:dd:
43:51:33:d1:c0:f7:6b:b8:cb:70:ac:14:dc:e0:c2:fc:de:41:
26:68:6e:a2:31:c4:75:bb:22:ed:99:7a:9a:f3:e0:85:45:fa:
fc:0e:fd:b3:73:45:d9:6c:0d:2d:77:f5:c9:34:2c:76:28:bd:
26:4e:32:57:5d:cc:b3:b8:d9:36:69:bd:df:ef:4c:b1:25:f2:
fd:e0:43:85:4b:da:42:4b:84:be:44:0c:d0:32:b7:67:2e:c5:
92:2e:1a:b2:3a:4a:39:6c:30:28:20:af:e3:fe:eb:ec:aa:d1:
30:cd:9a:52:e0:fb:6d:40:fc:10:27:9d:e5:20:6a:40:36:49:
04:8b:ee:7d
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICQEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjMxMjAxMjEyNjE3WhcNMjUwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE5OTg2RjExMC8GA1UEBRMoMTg3MkY5ODhCNjU3MjM3ODM3OTkyMzdF
NTU0REJDQzZFNDlEMTRCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANeG5l55GQzrJUNYpGxpPBuxdkAEWRsQlsWa/zhqAKwnakLgHjFiMr+lChbGrv3x
IXB3Sqp2UV4FWeBdx72e88K3o930Ks5sud0NTpEoYmpNQgpi2vnaaCvd9zrnxslN
15YifGBmGJIOutlfucmHhpBdHbcPzfKPNlBW/ge8yhOPTGifLETFrAZsPtQQoCwt
6PeHCjHDOrtWRaeWBjKaQjqwfr36btNTLQGdcNkT/oadaoVySo1UXmR0YxwlX5rR
V2eMXjf5ZwDv5HcopK3H0Nf4wECepZVKxpdNxfKa6ttCJ4bG3a2X+cBfWcDprz4q
XpQd7L7vfauEKbN3Pw9Mea8CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQYcvmItlcj
eDeZI35VTbzG5J0UsDAfBgNVHSMEGDAWgBQ0j5ubkqcsz9NvPHDzVnVzPMjqIjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2
MTFFMkE2MkY4NzdDNzJGRDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJ
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTk4NkYvQTYxREYxREE0NjZBMTFFQUEwMDdFRjFGQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTk5ODZGL0E2MURGMURBNDY2QTExRUFBMDA3RUYxRkM0RjlBRTAyL0dITDVpTFpY
STNnM21TTi1WVTI4eHVTZEZMQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEBpoIQDANBgkqhkiG9w0BAQsFAAOCAQEAUgMkvZcQ0ILHR38jt6wR
XwB/ZYO17Q+1Iqzx8kboUPlVpikf2jKdIPf4u9tfQApCU7wZ/AHE7D26S0pXSCES
8/IZYrl4GRHjosufSN+Jle1YZgA7eOBe1XLHu8xvqO0bwcP56tf9q+FRhUzkYl4T
OWBu7NG2b55L5Vq6DHDdQ1Ez0cD3a7jLcKwU3ODC/N5BJmhuojHEdbsi7Zl6mvPg
hUX6/A79s3NF2WwNLXf1yTQsdii9Jk4yV13Ms7jZNmm93+9MsSXy/eBDhUvaQkuE
vkQM0DK3Zy7Fki4asjpKOWwwKCCv4/7r7KrRMM2aUuD7bUD8ECed5SBqQDZJBIvu
fQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 16:50:08 2024 by rpki-client on console-ams.rpki-client.org