Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WFTG2IaugFcOzmJHTVQZnE6CnKs.cer
File: WFTG2IaugFcOzmJHTVQZnE6CnKs.cer (raw, json)
Hash identifier: y1DYC1pB3vSy9osxX6r0/VEQw36uHO7jfqp5L+arlQU=
Subject key identifier: 58:54:C6:D8:86:AE:80:57:0E:CE:62:47:4D:54:19:9C:4E:82:9C:AB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F05C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/WFTG2IaugFcOzmJHTVQZnE6CnKs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 May 2024 12:21:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 64090
IP: 203.13.41.0/24
IP: 2001:df6:3980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127068 (0x1f05c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 7 12:21:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9110AD1/serialNumber=5854C6D886AE80570ECE62474D54199C4E829CAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d3:ee:b5:a1:76:44:0c:7f:5c:06:4e:20:37:
62:e8:81:11:84:95:92:9d:2d:d6:5a:ca:df:a9:1f:
3f:b7:53:6b:0f:7b:0e:cf:55:c9:ae:e1:7b:ab:5d:
95:75:25:a2:49:a9:e3:c1:59:de:92:ab:5a:b8:1c:
9d:a0:e4:61:c6:a6:c2:0f:b0:c7:78:c0:87:bb:88:
6e:2f:de:63:dd:1b:bd:26:17:61:9e:46:0c:fe:49:
c1:36:cc:e4:63:86:65:09:68:4e:19:a0:8e:43:e8:
ac:7a:46:b8:e5:2e:50:2c:c6:11:f5:b6:5f:8b:c8:
d8:b5:b6:f0:a4:46:e4:13:94:c9:63:c7:6b:4e:ad:
cf:37:0a:ae:ea:58:ec:44:7d:d6:41:e6:44:35:3c:
81:9f:67:59:05:a5:c0:9e:e5:9d:f9:30:81:5c:7f:
e7:17:20:95:fa:ff:a8:0c:c3:73:1f:77:48:f0:85:
16:b5:72:ba:02:b7:28:e8:0b:a6:1f:5e:b3:71:77:
d7:1c:e4:c5:ac:50:71:6b:62:5f:93:51:05:0f:47:
bf:64:18:ed:c2:3a:97:65:3a:75:94:11:d7:c4:b5:
65:e6:d3:7f:a5:d7:84:03:ab:77:15:9d:53:cd:46:
f1:d9:95:8c:36:4b:c7:30:b2:06:45:d5:6b:92:26:
9e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:54:C6:D8:86:AE:80:57:0E:CE:62:47:4D:54:19:9C:4E:82:9C:AB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/WFTG2IaugFcOzmJHTVQZnE6CnKs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64090
sbgp-ipAddrBlock: critical
IPv4:
203.13.41.0/24
IPv6:
2001:df6:3980::/48
Signature Algorithm: sha256WithRSAEncryption
d5:78:31:29:d5:b9:db:49:6b:64:88:a4:d8:d9:72:44:09:7b:
c0:38:54:36:87:eb:0d:99:42:df:83:50:d2:45:f4:d3:b5:8e:
8c:c1:f8:7d:9a:cb:c4:8f:6f:c1:66:ed:57:06:cc:7d:41:a8:
37:7b:ad:2e:c0:4a:db:07:ac:d5:68:00:9f:13:b7:2a:39:17:
8b:51:9e:c4:ad:f6:ea:6f:85:0d:87:8b:5f:b8:ee:2c:14:58:
95:6c:95:f2:a1:19:8c:39:ff:37:8f:7d:4d:6d:70:b1:9d:39:
b0:77:97:c2:26:d4:5c:bb:ee:31:cb:77:77:01:73:4f:f7:f3:
9a:ef:fc:9f:fb:ec:f8:f0:da:73:99:d5:83:66:28:e7:20:8c:
cc:aa:61:69:ea:5d:ed:d0:5d:5b:f4:a7:4c:d3:a6:70:cb:77:
c6:91:eb:65:5b:76:fc:dd:df:61:b5:d1:29:0d:d3:23:62:18:
e3:7a:b5:20:1b:0b:e4:49:ed:81:d7:62:3e:f2:95:e5:77:ff:
e1:c6:ea:16:f1:12:72:d0:79:54:3e:da:5b:c8:be:b4:54:af:
91:aa:6e:1f:a9:45:12:7f:ae:10:41:d2:c5:66:43:dd:60:76:
1b:be:81:45:56:08:5b:d4:79:94:2b:60:b9:d3:2c:aa:c0:b7:
13:2b:3b:63
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAfBcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwNzEyMjEzNloXDTI1MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTBBRDExMTAvBgNVBAUTKDU4NTRDNkQ4ODZBRTgwNTcwRUNFNjI0
NzRENTQxOTlDNEU4MjlDQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDO0+61oXZEDH9cBk4gN2LogRGElZKdLdZayt+pHz+3U2sPew7PVcmu4XurXZV1
JaJJqePBWd6Sq1q4HJ2g5GHGpsIPsMd4wIe7iG4v3mPdG70mF2GeRgz+ScE2zORj
hmUJaE4ZoI5D6Kx6RrjlLlAsxhH1tl+LyNi1tvCkRuQTlMljx2tOrc83Cq7qWOxE
fdZB5kQ1PIGfZ1kFpcCe5Z35MIFcf+cXIJX6/6gMw3Mfd0jwhRa1croCtyjoC6Yf
XrNxd9cc5MWsUHFrYl+TUQUPR79kGO3COpdlOnWUEdfEtWXm03+l14QDq3cVnVPN
RvHZlYw2S8cwsgZF1WuSJp6JAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUWFTG2Iau
gFcOzmJHTVQZnE6CnKswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTEwQUQxLzVBODNBNTg0ODJDRTExRUJCQjY5NEY4N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExMEFEMS81QTgzQTU4NDgyQ0UxMUVCQkI2OTRGODdDNEY5QUUwMi9XRlRHMklh
dWdGY096bUpIVFZRWm5FNkNuS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAPpaMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAyw0pMA8EAgAC
MAkDBwAgAQ32OYAwDQYJKoZIhvcNAQELBQADggEBANV4MSnVudtJa2SIpNjZckQJ
e8A4VDaH6w2ZQt+DUNJF9NO1jozB+H2ay8SPb8Fm7VcGzH1BqDd7rS7AStsHrNVo
AJ8Ttyo5F4tRnsSt9upvhQ2Hi1+47iwUWJVslfKhGYw5/zePfU1tcLGdObB3l8Im
1Fy77jHLd3cBc0/385rv/J/77Pjw2nOZ1YNmKOcgjMyqYWnqXe3QXVv0p0zTpnDL
d8aR62Vbdvzd32G10SkN0yNiGON6tSAbC+RJ7YHXYj7yleV3/+HG6hbxEnLQeVQ+
2lvIvrRUr5Gqbh+pRRJ/rhBB0sVmQ91gdhu+gUVWCFvUeZQrYLnTLKrAtxMrO2M=
-----END CERTIFICATE-----
Generated at Thu May 9 17:48:21 2024 by rpki-client on console-ams.rpki-client.org