Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer
File: 2vWZnAdAuMks1UA3tpsETNValVg.cer (raw, json)
Hash identifier: 2QGaXry9xyNyNejjkMLWe1Iz3AvAHXifAg1qLRJ4U38=
Subject key identifier: DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D514
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Dec 2023 20:08:43 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 103.241.228.0/22
IP: 118.193.16.0/20
IP: 118.193.80.0/20
IP: 223.255.248.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120084 (0x1d514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 29 20:08:43 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91C31A2/serialNumber=DAF5999C0740B8C92CD54037B69B044CD55A9558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bd:ab:35:0d:5d:ef:fe:22:22:26:19:1b:86:
dd:cf:47:53:2f:e4:c1:82:37:5e:8d:99:dd:88:14:
75:b0:ae:2f:cd:97:d7:a0:e8:6a:4d:12:1a:01:aa:
ab:52:e2:f4:c9:3b:27:2d:f8:9a:5e:65:3a:f2:e8:
72:59:c5:1b:2d:29:96:2c:2d:f1:4a:aa:ca:d2:8e:
cd:7b:15:c8:c9:2d:e0:6b:01:52:70:47:44:4e:16:
cf:ba:3b:4c:8d:ca:fe:a2:46:a7:b0:35:53:41:12:
26:6f:de:dd:a3:80:28:57:e1:d8:eb:fd:1b:70:c6:
cf:24:b2:ab:55:b4:0d:a0:87:6f:a1:5c:b8:16:7c:
9a:a8:40:47:2a:c3:14:9b:33:2a:a5:92:cb:88:96:
a0:45:ed:9d:c1:96:eb:52:8a:80:31:1d:b9:f9:57:
ac:33:e8:32:e9:40:69:8d:57:8e:38:10:4b:37:d4:
ac:0f:aa:39:bd:62:8e:4c:8b:9f:15:38:32:53:6c:
37:98:19:87:dd:8c:2c:ad:ce:7b:60:30:6d:0d:4f:
59:dd:a2:f8:ad:d6:2d:85:84:de:fa:f8:da:7c:5e:
7e:ad:18:18:fc:0d:24:00:d7:97:9a:0c:b7:be:b6:
9b:67:88:f6:4e:0d:12:1a:a7:12:b4:63:eb:7a:3b:
e0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.241.228.0/22
118.193.16.0/20
118.193.80.0/20
223.255.248.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:8e:96:2f:cf:0d:f4:29:4c:13:96:2e:68:9e:26:ad:10:f5:
a8:16:8c:07:7f:07:7e:69:5d:96:38:4a:f3:14:84:ef:01:62:
67:50:88:8c:3e:0f:b4:a3:f8:ef:78:6c:b8:32:eb:1c:23:c3:
64:3b:44:87:d7:3b:7c:6b:cb:4e:da:78:36:7a:d5:5a:1e:44:
7d:8f:41:6e:f1:65:4c:22:65:31:b0:dc:7d:78:c4:b6:74:3e:
dc:2e:ae:e2:cf:62:12:34:37:77:68:c6:be:64:c5:88:6f:4d:
71:3d:61:40:88:66:66:57:05:7c:1d:46:8c:43:fc:a3:e5:ce:
7a:72:5c:17:3b:4c:95:72:fb:b9:1c:78:76:5a:77:19:9b:84:
17:a0:3b:b8:51:67:e3:6c:69:33:9a:25:39:d7:a8:f3:98:ec:
32:4e:3a:35:47:c9:6e:00:1f:be:d8:98:bd:12:58:e8:c5:8a:
04:f1:f9:a9:9a:09:47:03:55:db:63:cd:c5:28:c9:9e:b2:6c:
f7:5c:86:1b:65:9e:29:d4:4d:24:a5:a3:59:3a:49:d9:14:48:
09:31:af:fb:d2:04:3a:35:f2:85:28:f7:bf:4c:05:4f:99:20:
31:99:8f:2e:67:4f:2f:8c:1f:e3:da:82:52:da:a8:7c:5c:2e:
f3:e2:8a:38
-----BEGIN CERTIFICATE-----
MIIGEDCCBPigAwIBAgIDAdUUMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTIyOTIwMDg0M1oXDTI1MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzMxQTIxMTAvBgNVBAUTKERBRjU5OTlDMDc0MEI4QzkyQ0Q1NDAz
N0I2OUIwNDRDRDU1QTk1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCTvas1DV3v/iIiJhkbht3PR1Mv5MGCN16Nmd2IFHWwri/Nl9eg6GpNEhoBqqtS
4vTJOyct+JpeZTry6HJZxRstKZYsLfFKqsrSjs17FcjJLeBrAVJwR0ROFs+6O0yN
yv6iRqewNVNBEiZv3t2jgChX4djr/Rtwxs8ksqtVtA2gh2+hXLgWfJqoQEcqwxSb
MyqlksuIlqBF7Z3BlutSioAxHbn5V6wz6DLpQGmNV444EEs31KwPqjm9Yo5Mi58V
ODJTbDeYGYfdjCytzntgMG0NT1ndovit1i2FhN76+Np8Xn6tGBj8DSQA15eaDLe+
tptniPZODRIapxK0Y+t6O+CjAgMBAAGjggMFMIIDATAdBgNVHQ4EFgQU2vWZnAdA
uMks1UA3tpsETNValVgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUMzMUEyL0RFMDMzMzM2MzU3MjExRURBRTk3NzgzOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDMzFBMi9ERTAzMzMzNjM1NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFk
QXVNa3MxVUEzdHBzRVROVmFsVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8EIjAg
MB4EAgABMBgDBAJn8eQDBAR2wRADBAR2wVADBALf//gwDQYJKoZIhvcNAQELBQAD
ggEBAB+Oli/PDfQpTBOWLmieJq0Q9agWjAd/B35pXZY4SvMUhO8BYmdQiIw+D7Sj
+O94bLgy6xwjw2Q7RIfXO3xry07aeDZ61VoeRH2PQW7xZUwiZTGw3H14xLZ0Ptwu
ruLPYhI0N3doxr5kxYhvTXE9YUCIZmZXBXwdRoxD/KPlznpyXBc7TJVy+7kceHZa
dxmbhBegO7hRZ+NsaTOaJTnXqPOY7DJOOjVHyW4AH77YmL0SWOjFigTx+amaCUcD
VdtjzcUoyZ6ybPdchhtlninUTSSlo1k6SdkUSAkxr/vSBDo18oUo979MBU+ZIDGZ
jy5nTy+MH+PaglLaqHxcLvPiijg=
-----END CERTIFICATE-----
Generated at Thu May 9 14:23:52 2024 by rpki-client on console-fra.rpki-client.org