Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQ0lRcuMCiKcHNP1DixqKyEoFwo.cer
File: aQ0lRcuMCiKcHNP1DixqKyEoFwo.cer (raw, json)
Hash identifier: fYrw/wMNCHiCoS4daeILKh74xV8PylDV6QYuelc3Aoo=
Subject key identifier: 69:0D:25:45:CB:8C:0A:22:9C:1C:D3:F5:0E:2C:6A:2B:21:28:17:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B7F3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A860C/F806E01C1D9E11E2BBD0358F08B02CD2/aQ0lRcuMCiKcHNP1DixqKyEoFwo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A860C/F806E01C1D9E11E2BBD0358F08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Aug 2023 17:48:24 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 180.149.32.0/22
IP: 2406:5600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112627 (0x1b7f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 21 17:48:24 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91A860C/serialNumber=690D2545CB8C0A229C1CD3F50E2C6A2B2128170A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3c:19:b3:b8:c9:32:a4:aa:8c:e1:04:d6:e5:
c0:54:35:f3:e2:bc:bd:05:8e:4e:33:71:2d:64:ac:
2d:e1:20:63:00:92:73:f2:2e:15:6b:1a:2d:8b:f9:
27:d9:6e:0e:df:15:15:a1:a6:91:7c:48:90:6a:7c:
b5:d0:81:cf:79:12:55:41:be:0e:4b:50:a4:b6:15:
84:e1:49:27:60:c2:26:3d:0c:af:22:64:7f:3b:6a:
36:14:af:fb:12:68:5a:01:f7:d4:71:0f:d1:b1:d7:
0b:b6:c8:79:18:88:e1:5a:1d:ea:8c:ed:74:84:af:
2c:a0:f7:fd:a6:5f:17:5d:b7:3f:5c:94:e3:b7:89:
89:22:1b:d2:2f:78:a6:22:a6:a3:4e:46:2b:2b:73:
78:31:20:a8:c2:8b:1f:15:af:83:ab:11:b9:86:e0:
3e:d8:90:00:ab:4c:2a:10:79:b3:3a:85:d3:d5:75:
3e:42:8a:11:4b:1a:43:da:cc:be:16:7b:3a:0b:83:
db:f0:6d:ad:a9:8c:b3:e9:f4:bc:88:5d:ce:bc:68:
fc:87:63:7d:56:99:3e:33:72:d8:09:32:22:70:2c:
e9:f5:3d:c0:f8:ac:7b:4c:95:33:dc:c2:f4:9c:2d:
51:9e:1f:a4:76:7b:e5:b0:d2:df:ce:da:20:02:6b:
42:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0D:25:45:CB:8C:0A:22:9C:1C:D3:F5:0E:2C:6A:2B:21:28:17:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A860C/F806E01C1D9E11E2BBD0358F08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A860C/F806E01C1D9E11E2BBD0358F08B02CD2/aQ0lRcuMCiKcHNP1DixqKyEoFwo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.149.32.0/22
IPv6:
2406:5600::/32
Signature Algorithm: sha256WithRSAEncryption
c9:10:4b:59:cc:73:06:58:e7:42:fc:62:d5:0b:fb:8b:55:47:
2d:a6:0a:47:ce:6c:05:9a:5c:e6:80:81:79:18:c7:be:39:21:
ff:a8:10:bd:49:b4:d5:32:1c:e5:4d:4f:fd:7e:4b:79:78:f7:
9d:48:53:ed:58:59:c8:f5:cf:0e:83:82:f6:0b:10:ff:f2:6d:
be:2e:ee:8c:05:8d:bb:5b:1a:b9:23:2b:be:3e:cd:b9:37:96:
16:c8:87:82:e1:da:bb:1e:65:0b:32:34:0a:c2:8e:df:75:2c:
32:30:3e:34:2d:64:3a:ef:ad:d7:8d:dd:6b:23:bf:8c:d6:76:
8f:78:de:24:d0:df:d0:5e:4d:94:0e:1c:4d:96:d3:3f:00:4b:
d0:69:d9:1c:d6:29:0d:83:1d:ad:01:3e:71:c2:35:a2:67:05:
e0:fb:8b:6f:9e:97:29:e8:ea:d2:72:94:3f:8f:ef:07:2a:0f:
0b:37:95:cb:a1:76:e2:18:58:2c:5d:27:80:eb:62:22:ce:8c:
87:da:49:8a:64:d0:a3:63:a2:1f:07:ef:1b:ef:1c:96:0c:23:
ae:df:d9:e5:ce:de:f6:fb:23:61:0b:39:32:20:52:fc:1f:6c:
01:fe:6e:84:44:77:36:54:34:0a:6f:8a:4d:df:43:22:5a:96:
35:e3:ab:b4
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAbfzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgyMTE3NDgyNFoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTg2MEMxMTAvBgNVBAUTKDY5MEQyNTQ1Q0I4QzBBMjI5QzFDRDNG
NTBFMkM2QTJCMjEyODE3MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCoPBmzuMkypKqM4QTW5cBUNfPivL0Fjk4zcS1krC3hIGMAknPyLhVrGi2L+SfZ
bg7fFRWhppF8SJBqfLXQgc95ElVBvg5LUKS2FYThSSdgwiY9DK8iZH87ajYUr/sS
aFoB99RxD9Gx1wu2yHkYiOFaHeqM7XSEryyg9/2mXxddtz9clOO3iYkiG9IveKYi
pqNORisrc3gxIKjCix8Vr4OrEbmG4D7YkACrTCoQebM6hdPVdT5CihFLGkPazL4W
ezoLg9vwba2pjLPp9LyIXc68aPyHY31WmT4zctgJMiJwLOn1PcD4rHtMlTPcwvSc
LVGeH6R2e+Ww0t/O2iACa0I1AgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUaQ0lRcuM
CiKcHNP1DixqKyEoFwowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE4NjBDL0Y4MDZFMDFDMUQ5RTExRTJCQkQwMzU4RjA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBODYwQy9GODA2RTAxQzFEOUUxMUUyQkJEMDM1OEYwOEIwMkNEMi9hUTBsUmN1
TUNpS2NITlAxRGl4cUt5RW9Gd28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAK0lSAwDQQCAAIwBwMFACQGVgAwDQYJKoZIhvcNAQELBQADggEB
AMkQS1nMcwZY50L8YtUL+4tVRy2mCkfObAWaXOaAgXkYx745If+oEL1JtNUyHOVN
T/1+S3l4951IU+1YWcj1zw6DgvYLEP/ybb4u7owFjbtbGrkjK74+zbk3lhbIh4Lh
2rseZQsyNArCjt91LDIwPjQtZDrvrdeN3Wsjv4zWdo943iTQ39BeTZQOHE2W0z8A
S9Bp2RzWKQ2DHa0BPnHCNaJnBeD7i2+elyno6tJylD+P7wcqDws3lcuhduIYWCxd
J4DrYiLOjIfaSYpk0KNjoh8H7xvvHJYMI67f2eXO3vb7I2ELOTIgUvwfbAH+boRE
dzZUNApvik3fQyJaljXjq7Q=
-----END CERTIFICATE-----
Generated at Thu May 9 15:09:42 2024 by rpki-client on console-ams.rpki-client.org