Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ex0z8jA_QV81Og74-tX8GHcWPg.cer
File: 1ex0z8jA_QV81Og74-tX8GHcWPg.cer (raw, json)
Hash identifier: GDZpc78BB5zAFongopztWnOE8rcb32RPbh1EFq+pRLw=
Subject key identifier: D5:EC:74:CF:C8:C0:FD:05:7C:D4:E8:3B:E3:EB:57:F0:61:DC:58:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022838
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D313B/D5BFEC1447DB11EFAEA4B02DC4F9AE02/1ex0z8jA_QV81Og74-tX8GHcWPg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D313B/D5BFEC1447DB11EFAEA4B02DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Jan 2025 20:43:45 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 152314
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141368 (0x22838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 8 20:43:45 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91D313B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b3:6d:98:30:67:07:e5:87:35:c2:42:22:0f:
7f:25:63:b4:3d:cf:e9:2e:db:b9:00:fc:8c:e2:09:
93:8e:aa:67:f1:5b:b8:03:fe:7e:f6:43:03:4a:84:
11:75:ee:5f:c1:8d:6a:13:6c:1a:5d:00:46:2a:49:
99:0a:b2:97:3e:b0:8b:87:e5:cb:23:8c:cd:c8:c8:
1a:e1:04:bf:99:6a:db:25:46:04:61:4d:3d:3d:43:
67:d6:c1:50:55:6a:59:1f:e3:b6:51:95:44:80:1b:
88:25:81:12:82:45:e2:39:99:f7:3e:02:38:8b:7f:
1c:76:00:b6:1c:1c:45:de:71:f2:7f:f5:ca:a6:f8:
bd:98:e3:e9:6e:8c:7e:fb:ff:d7:eb:c0:03:7f:ce:
ae:39:3a:28:7d:cf:22:63:74:0b:d3:59:0d:f9:42:
a5:2b:30:59:ab:20:7a:01:b8:3a:7a:4e:e1:95:dd:
17:b4:ce:57:fa:5b:dd:a7:7c:33:72:10:3a:9b:14:
3a:13:2f:75:b1:17:44:0d:39:ba:38:e1:11:2f:89:
27:57:81:c8:44:1f:f5:dd:8b:c7:54:32:ab:af:6b:
2c:51:0e:0c:cf:71:f9:41:7a:93:c2:05:5f:bb:da:
8b:71:69:60:3b:44:49:09:b8:24:2e:8f:8e:48:c7:
36:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:EC:74:CF:C8:C0:FD:05:7C:D4:E8:3B:E3:EB:57:F0:61:DC:58:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D313B/D5BFEC1447DB11EFAEA4B02DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D313B/D5BFEC1447DB11EFAEA4B02DC4F9AE02/1ex0z8jA_QV81Og74-tX8GHcWPg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152314
Signature Algorithm: sha256WithRSAEncryption
6c:f3:d3:8c:ac:7d:a5:a6:2c:b6:20:9c:d7:ac:01:d8:80:db:
0c:af:3f:63:8e:4c:19:28:3d:39:c5:8e:63:cc:9e:ab:32:25:
7c:42:67:7a:62:e4:6a:c6:95:6f:0d:d0:9c:d9:fa:29:9a:b0:
dc:f0:2a:be:2a:ed:32:63:cd:61:d9:9f:af:ce:b8:18:6c:13:
e9:75:de:4b:cd:75:2b:14:5b:ef:48:7b:3b:f5:da:21:f5:16:
f6:3d:37:a3:94:80:f3:67:3a:93:c5:52:4c:f2:4a:4b:49:bd:
52:21:ef:55:72:ba:0a:05:42:5e:b1:4b:0f:ff:91:3c:0b:d6:
ad:66:4c:e6:9c:b8:eb:e7:6b:c8:87:39:a2:6a:16:bc:e2:97:
9b:2a:d0:d2:f7:f1:69:e8:55:62:d6:88:84:a4:0b:ff:5b:6c:
bd:57:7b:da:d9:79:ad:5c:07:c6:df:a1:2b:1d:96:de:ab:b9:
6e:cc:be:f5:6b:7e:f9:5f:24:73:4a:98:12:f4:8c:d1:fd:25:
e2:bc:18:3d:c9:d1:ee:4c:86:43:a9:e0:d7:03:48:d5:7d:c5:
a9:99:2e:08:d4:29:1f:5f:7b:5b:ef:85:5c:75:a8:4a:43:60:
b6:e4:4e:8d:8d:0a:44:d1:e4:ef:86:c2:d2:22:8d:cf:7c:b5:
79:af:ae:99
-----BEGIN CERTIFICATE-----
MIIF+TCCBOGgAwIBAgIDAig4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEwODIwNDM0NVoXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDMxM0IxMTAvBgNVBAUTKEQ1RUM3NENGQzhDMEZEMDU3Q0Q0RTgz
QkUzRUI1N0YwNjFEQzU4RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCps22YMGcH5Yc1wkIiD38lY7Q9z+ku27kA/IziCZOOqmfxW7gD/n72QwNKhBF1
7l/BjWoTbBpdAEYqSZkKspc+sIuH5csjjM3IyBrhBL+ZatslRgRhTT09Q2fWwVBV
alkf47ZRlUSAG4glgRKCReI5mfc+AjiLfxx2ALYcHEXecfJ/9cqm+L2Y4+lujH77
/9frwAN/zq45Oih9zyJjdAvTWQ35QqUrMFmrIHoBuDp6TuGV3Re0zlf6W92nfDNy
EDqbFDoTL3WxF0QNObo44REviSdXgchEH/Xdi8dUMquvayxRDgzPcflBepPCBV+7
2otxaWA7REkJuCQuj45IxzbHAgMBAAGjggLuMIIC6jAdBgNVHQ4EFgQU1ex0z8jA
/QV81Og74+tX8GHcWPgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQzMTNCL0Q1QkZFQzE0NDdEQjExRUZBRUE0QjAyREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEMzEzQi9ENUJGRUMxNDQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi8xZXgwejhq
QV9RVjgxT2c3NC10WDhHSGNXUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlL6MA0GCSqGSIb3DQEBCwUAA4IBAQBs89OMrH2lpiy2IJzXrAHYgNsM
rz9jjkwZKD05xY5jzJ6rMiV8Qmd6YuRqxpVvDdCc2fopmrDc8Cq+Ku0yY81h2Z+v
zrgYbBPpdd5LzXUrFFvvSHs79doh9Rb2PTejlIDzZzqTxVJM8kpLSb1SIe9VcroK
BUJesUsP/5E8C9atZkzmnLjr52vIhzmiaha84pebKtDS9/Fp6FVi1oiEpAv/W2y9
V3va2XmtXAfG36ErHZbeq7luzL71a375XyRzSpgS9IzR/SXivBg9ydHuTIZDqeDX
A0jVfcWpmS4I1CkfX3tb74VcdahKQ2C25E6NjQpE0eTvhsLSIo3PfLV5r66Z
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:07:16 2025 by rpki-client