Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4PLqY0OvRNmepEKWs5EP2oNlKXM.cer
File: 4PLqY0OvRNmepEKWs5EP2oNlKXM.cer (raw, json)
Hash identifier: RIjKgZ5UDaKbV+utH4FyeCLdfypiFBUPhCiEaf6A8Zs=
Subject key identifier: E0:F2:EA:63:43:AF:44:D9:9E:A4:42:96:B3:91:0F:DA:83:65:29:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B407
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9155CA4/7B2578D8C1A111EA94735C31C4F9AE02/4PLqY0OvRNmepEKWs5EP2oNlKXM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9155CA4/7B2578D8C1A111EA94735C31C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Aug 2023 16:12:34 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 43.225.88.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111623 (0x1b407)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 16:12:34 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9155CA4/serialNumber=E0F2EA6343AF44D99EA44296B3910FDA83652973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5b:bb:8e:50:f2:a9:2f:9c:93:68:72:9a:2c:
22:15:bc:cf:f9:d7:d6:02:a1:89:93:f8:1b:5a:80:
e6:06:17:f8:f4:36:d5:6b:6c:0a:8d:43:f6:d4:68:
c3:3e:2f:f6:c9:2a:33:b7:88:21:b7:13:2a:75:1a:
8d:2c:4c:61:1e:19:70:4a:dd:6a:ce:11:f0:9c:bf:
ef:af:52:43:03:91:65:c9:a8:a2:41:2e:0e:fe:e0:
75:a6:70:6d:48:62:ae:8b:ac:52:98:40:87:42:d5:
04:20:58:ea:7d:98:1a:94:9a:f3:5e:57:9d:b3:65:
00:d1:6c:2d:d3:cb:eb:a4:94:b3:1f:e9:a6:6f:ef:
44:0e:2a:e8:2d:3f:44:8b:2c:55:b8:63:14:69:ac:
4d:0f:cc:f8:aa:b6:c6:ba:52:79:96:61:94:37:6d:
a0:00:4f:90:84:22:28:f3:2a:fe:6e:9a:d8:d2:c4:
ac:06:04:df:c3:f0:4c:74:ce:67:91:c5:f8:04:14:
74:49:c4:b2:8a:59:05:b8:a6:52:f0:33:3e:ed:0c:
1e:75:01:2a:86:fd:bd:b0:40:3c:6a:56:91:59:a6:
a4:2e:90:53:73:f4:05:23:43:3f:62:cd:54:c2:c5:
da:78:2a:c6:ec:b3:e4:1a:3e:7e:e9:29:f8:5c:bc:
3c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F2:EA:63:43:AF:44:D9:9E:A4:42:96:B3:91:0F:DA:83:65:29:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9155CA4/7B2578D8C1A111EA94735C31C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9155CA4/7B2578D8C1A111EA94735C31C4F9AE02/4PLqY0OvRNmepEKWs5EP2oNlKXM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.225.88.0/22
Signature Algorithm: sha256WithRSAEncryption
44:61:00:51:bb:03:5c:14:d8:da:1f:1e:cb:1e:43:2c:2e:15:
42:29:2c:55:09:96:2a:1c:ad:41:9d:6c:37:88:91:d9:ac:e2:
1b:9f:af:d5:3f:30:be:21:1f:06:19:92:da:bd:52:4a:65:7a:
5b:b5:76:55:05:55:bd:85:08:f2:e2:01:27:16:c0:c5:69:c5:
9e:b5:08:36:4b:8d:f0:a3:04:48:ed:ea:a0:eb:62:a6:6c:cd:
ba:29:8f:35:c7:bd:a8:32:c1:cd:38:66:85:7e:e6:3b:35:59:
8f:c8:5d:85:ce:77:8e:ff:13:da:2f:e8:90:e3:12:94:2c:d1:
23:0b:5a:af:fe:ab:92:ed:f5:45:0d:0a:d9:16:9d:f4:c7:30:
5d:02:8a:2f:b9:51:fd:4e:47:c5:13:4d:0b:dc:0c:92:6c:1d:
46:c3:4e:1d:58:b4:0b:b2:d7:5e:f1:7c:b9:cf:3c:2a:53:0e:
b2:fe:1f:30:a3:dc:86:dd:e0:86:e5:c8:ff:6c:dd:b9:2d:3b:
39:23:99:5f:2f:12:04:2a:33:e5:a4:e1:98:f7:e4:0f:87:fc:
a8:66:9f:5f:fc:97:28:ba:8b:59:1b:a5:b7:8c:62:f4:1a:a5:
b0:50:b5:3f:0d:4a:8d:02:a5:ba:ef:d0:7b:1e:3c:4b:d2:00:
fa:45:18:c3
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAbQHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgwMTE2MTIzNFoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTVDQTQxMTAvBgNVBAUTKEUwRjJFQTYzNDNBRjQ0RDk5RUE0NDI5
NkIzOTEwRkRBODM2NTI5NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAW7uOUPKpL5yTaHKaLCIVvM/519YCoYmT+BtagOYGF/j0NtVrbAqNQ/bUaMM+
L/bJKjO3iCG3Eyp1Go0sTGEeGXBK3WrOEfCcv++vUkMDkWXJqKJBLg7+4HWmcG1I
Yq6LrFKYQIdC1QQgWOp9mBqUmvNeV52zZQDRbC3Ty+uklLMf6aZv70QOKugtP0SL
LFW4YxRprE0PzPiqtsa6UnmWYZQ3baAAT5CEIijzKv5umtjSxKwGBN/D8Ex0zmeR
xfgEFHRJxLKKWQW4plLwMz7tDB51ASqG/b2wQDxqVpFZpqQukFNz9AUjQz9izVTC
xdp4Ksbss+QaPn7pKfhcvDzXAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQU4PLqY0Ov
RNmepEKWs5EP2oNlKXMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU1Q0E0LzdCMjU3OEQ4QzFBMTExRUE5NDczNUMzMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1NUNBNC83QjI1NzhEOEMxQTExMUVBOTQ3MzVDMzFDNEY5QUUwMi80UExxWTBP
dlJObWVwRUtXczVFUDJvTmxLWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAIr4VgwDQYJKoZIhvcNAQELBQADggEBAERhAFG7A1wU2NofHsse
QywuFUIpLFUJliocrUGdbDeIkdms4hufr9U/ML4hHwYZktq9Ukplelu1dlUFVb2F
CPLiAScWwMVpxZ61CDZLjfCjBEjt6qDrYqZszbopjzXHvagywc04ZoV+5js1WY/I
XYXOd47/E9ov6JDjEpQs0SMLWq/+q5Lt9UUNCtkWnfTHMF0Cii+5Uf1OR8UTTQvc
DJJsHUbDTh1YtAuy117xfLnPPCpTDrL+HzCj3Ibd4IblyP9s3bktOzkjmV8vEgQq
M+Wk4Zj35A+H/Khmn1/8lyi6i1kbpbeMYvQapbBQtT8NSo0Cpbrv0HsePEvSAPpF
GMM=
-----END CERTIFICATE-----
Generated at Thu May 9 14:23:54 2024 by rpki-client on console-fra.rpki-client.org