Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SRsCm6t2SARdNPerxX9_qMxxgOE.cer
File: SRsCm6t2SARdNPerxX9_qMxxgOE.cer (raw, json)
Hash identifier: VwDRgo13loe6xGYfgymj34u+sXvpVJxhJ3BRvpvZLmw=
Subject key identifier: 49:1B:02:9B:AB:76:48:04:5D:34:F7:AB:C5:7F:7F:A8:CC:71:80:E1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EF35
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/SRsCm6t2SARdNPerxX9_qMxxgOE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 May 2024 21:30:04 +0000
Certificate not after: Sun 01 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 103.73.252.0/22
IP: 2407:1680::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126773 (0x1ef35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 21:30:04 2024 GMT
Not After : Sep 1 00:00:00 2024 GMT
Subject: CN=A9197DC3/serialNumber=491B029BAB7648045D34F7ABC57F7FA8CC7180E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:63:6d:ef:c8:50:d4:18:da:c1:4a:02:a4:df:
92:c1:e2:98:d2:b1:fd:9f:d3:cb:97:36:aa:63:d4:
c9:c3:e2:90:8c:8e:ed:14:70:48:9f:8a:83:56:c7:
89:23:20:f6:bd:a1:1d:9e:09:77:58:6f:2c:5d:5d:
f6:39:ed:d8:33:94:5c:c8:4b:cd:9c:44:41:14:fd:
44:3a:ab:f0:a5:85:d8:0f:02:4b:d2:67:db:9e:ef:
c3:f3:55:2d:d1:45:4c:6e:11:ba:31:2c:8f:50:4f:
15:3b:89:ee:44:84:d1:13:76:66:d1:20:c7:94:5c:
14:7f:e3:df:87:9a:e8:37:a6:51:f2:c2:b0:b4:46:
34:ec:14:ff:71:24:3b:d3:a4:fc:5c:30:3f:d3:17:
c5:fa:22:4c:b2:22:21:49:24:64:98:39:4d:10:d1:
d7:3b:a9:00:bb:a4:fb:85:c5:7a:d6:fb:ba:e4:2e:
9a:9a:1a:48:9d:70:68:c3:3b:4f:f1:82:f5:4b:7a:
44:2f:bf:c9:5e:d8:4b:8d:a4:ed:0a:98:d7:4c:d1:
36:8b:26:19:cd:02:e0:88:11:02:5e:20:f5:4d:1f:
19:2c:44:1d:7e:fa:3a:0c:ce:50:de:9a:b7:f2:f7:
fe:86:68:80:7a:90:a7:3a:c3:82:a5:10:22:ee:19:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1B:02:9B:AB:76:48:04:5D:34:F7:AB:C5:7F:7F:A8:CC:71:80:E1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9197DC3/E65118A284A611EAAC51421FC4F9AE02/SRsCm6t2SARdNPerxX9_qMxxgOE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.73.252.0/22
IPv6:
2407:1680::/32
Signature Algorithm: sha256WithRSAEncryption
0d:2d:35:71:21:35:4c:d7:70:70:a6:14:43:20:ab:b6:7c:23:
68:15:9e:d9:d9:0f:f1:73:d5:ea:f6:a9:00:a1:22:f7:0f:90:
40:38:e4:9b:ba:8e:f7:d5:2e:0e:7a:55:a8:69:6e:b8:d8:3d:
88:a9:f4:24:dc:2e:74:f8:65:20:88:d1:62:b0:05:57:97:9f:
94:f0:46:b9:f7:36:e9:c5:01:1c:91:df:31:93:a0:32:ca:30:
a4:21:80:4d:fb:ae:2b:91:b3:d2:74:8f:5f:d2:62:ab:2d:90:
3d:4f:74:72:56:0e:c2:5d:51:b6:eb:c3:05:61:da:1e:ac:33:
38:4a:5b:d2:f1:fc:76:2e:b2:7e:01:51:7e:17:f7:46:d2:f5:
6e:83:6b:fa:a9:d9:b5:e0:90:19:8a:64:93:67:f4:6c:c8:14:
d4:7a:c8:15:85:d6:7b:41:8a:a7:97:5b:ff:90:ca:18:c8:c0:
40:d9:3e:2b:dd:c9:01:5c:ce:69:2b:78:7c:ec:6b:ac:30:d3:
8f:fc:f8:ec:a0:b5:5a:a4:23:b1:5f:a3:51:a7:b4:4e:c5:e3:
94:14:f4:c9:2b:2f:03:f1:d0:ba:2a:f2:67:ae:2d:da:39:07:
9a:7a:e0:da:6f:41:e1:2e:89:32:cf:2b:40:e2:f5:3c:c3:70:
76:e5:c0:8d
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAe81MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwMTIxMzAwNFoXDTI0MDkwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTdEQzMxMTAvBgNVBAUTKDQ5MUIwMjlCQUI3NjQ4MDQ1RDM0RjdB
QkM1N0Y3RkE4Q0M3MTgwRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD5Y23vyFDUGNrBSgKk35LB4pjSsf2f08uXNqpj1MnD4pCMju0UcEifioNWx4kj
IPa9oR2eCXdYbyxdXfY57dgzlFzIS82cREEU/UQ6q/ClhdgPAkvSZ9ue78PzVS3R
RUxuEboxLI9QTxU7ie5EhNETdmbRIMeUXBR/49+Hmug3plHywrC0RjTsFP9xJDvT
pPxcMD/TF8X6IkyyIiFJJGSYOU0Q0dc7qQC7pPuFxXrW+7rkLpqaGkidcGjDO0/x
gvVLekQvv8le2EuNpO0KmNdM0TaLJhnNAuCIEQJeIPVNHxksRB1++joMzlDemrfy
9/6GaIB6kKc6w4KlECLuGVN3AgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUSRsCm6t2
SARdNPerxX9/qMxxgOEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTk3REMzL0U2NTExOEEyODRBNjExRUFBQzUxNDIxRkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5N0RDMy9FNjUxMThBMjg0QTYxMUVBQUM1MTQyMUZDNEY5QUUwMi9TUnNDbTZ0
MlNBUmROUGVyeFg5X3FNeHhnT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAJnSfwwDQQCAAIwBwMFACQHFoAwDQYJKoZIhvcNAQELBQADggEB
AA0tNXEhNUzXcHCmFEMgq7Z8I2gVntnZD/Fz1er2qQChIvcPkEA45Ju6jvfVLg56
VahpbrjYPYip9CTcLnT4ZSCI0WKwBVeXn5TwRrn3NunFARyR3zGToDLKMKQhgE37
riuRs9J0j1/SYqstkD1PdHJWDsJdUbbrwwVh2h6sMzhKW9Lx/HYusn4BUX4X90bS
9W6Da/qp2bXgkBmKZJNn9GzIFNR6yBWF1ntBiqeXW/+QyhjIwEDZPivdyQFczmkr
eHzsa6ww04/8+OygtVqkI7Ffo1GntE7F45QU9MkrLwPx0Loq8meuLdo5B5p64Npv
QeEuiTLPK0Di9TzDcHblwI0=
-----END CERTIFICATE-----
Generated at Wed May 8 21:04:35 2024 by rpki-client on console-fra.rpki-client.org