Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBoPSOpDIx-jND1ZKCHvKejSsxs.cer
File: fBoPSOpDIx-jND1ZKCHvKejSsxs.cer (raw, json)
Hash identifier: wG95Ij0crd4vsdzfo8CK3N/mt230PoMsPfMen3QEaLU=
Subject key identifier: 7C:1A:0F:48:EA:43:23:1F:A3:34:3D:59:28:21:EF:29:E8:D2:B3:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E2FB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/fBoPSOpDIx-jND1ZKCHvKejSsxs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Mar 2024 09:47:36 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 4761
AS: 17922
AS: 45239
IP: 103.105.24.0/22
IP: 114.0.0.0/12
IP: 120.160.0.0/11
IP: 124.195.0.0/17
IP: 202.93.32.0/20
IP: 202.152.160.0/20
IP: 2407::/30
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123643 (0x1e2fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 5 09:47:36 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91798AD/serialNumber=7C1A0F48EA43231FA3343D592821EF29E8D2B31B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a6:b8:4d:7f:cc:3d:46:ed:07:46:34:f9:64:
af:a3:a9:80:ee:0c:61:4d:7f:e2:e2:72:e6:c7:b2:
47:0c:77:c6:b6:d9:e8:f8:5d:22:51:05:7f:5b:80:
9b:37:8c:ae:04:b7:5c:c9:0f:f9:80:a7:0e:9e:68:
93:5b:bb:48:e3:3a:7a:b8:6d:4a:82:89:c3:ff:bd:
3d:88:74:51:88:d4:ca:d0:73:b7:5b:e5:0d:b3:87:
85:95:0e:38:2d:84:7d:69:69:93:ee:39:ee:67:c4:
64:1a:35:49:93:3e:47:7b:f3:09:af:b1:ca:78:fe:
cf:34:15:31:02:e3:34:45:eb:35:3f:f9:8b:62:b0:
17:64:5d:ee:a5:80:07:94:5d:40:06:6a:96:c9:fb:
15:a3:68:de:94:58:2c:41:4e:f1:a6:d4:e9:3d:ed:
f4:9e:dc:21:e4:ab:ae:14:27:8c:e9:07:1b:34:75:
8e:75:0f:75:6b:c7:a5:72:9f:5c:21:7d:12:55:bc:
59:94:ae:63:2f:8b:f9:e1:52:ad:61:59:47:04:d3:
84:16:f6:23:58:16:1c:76:0f:da:a0:a6:49:20:91:
7f:1b:2d:06:0a:f8:59:04:4f:8b:62:59:8c:7b:42:
e2:be:53:f9:ba:28:f4:65:56:5a:e1:8b:84:e0:d6:
0d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1A:0F:48:EA:43:23:1F:A3:34:3D:59:28:21:EF:29:E8:D2:B3:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/fBoPSOpDIx-jND1ZKCHvKejSsxs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4761
17922
45239
sbgp-ipAddrBlock: critical
IPv4:
103.105.24.0/22
114.0.0.0/12
120.160.0.0/11
124.195.0.0/17
202.93.32.0/20
202.152.160.0/20
IPv6:
2407::/30
Signature Algorithm: sha256WithRSAEncryption
c9:f7:f9:07:9f:5c:ed:56:9f:cb:2c:5c:c6:b9:0b:92:70:c3:
0a:39:c6:cb:c9:1d:67:c3:2d:ef:e0:f0:9f:e7:99:e1:4c:29:
96:21:79:ef:b7:86:94:bb:5a:83:54:00:7c:bd:ad:28:c9:92:
6e:7f:f7:37:19:58:f5:17:2d:29:98:d4:2b:3d:e1:f0:ea:26:
0d:a8:50:78:3c:2d:ad:c1:76:1f:31:fa:79:42:60:0b:62:0a:
03:cb:27:34:6a:38:10:bc:0b:11:7c:1b:9d:2e:33:21:21:9e:
e8:f6:f8:20:ea:40:f7:d1:12:ad:1e:b6:35:e2:91:7f:11:1b:
a5:dd:ce:ad:66:6f:5a:f5:f4:2d:d0:d0:a3:7d:b1:9d:70:20:
1b:94:58:16:bf:73:27:73:54:fe:c7:6c:89:78:06:7c:93:10:
ce:8b:8f:ea:51:0a:2c:e1:f1:dd:28:42:15:48:e2:2d:a5:fa:
f2:4f:ac:86:8c:4e:c0:c7:35:bd:aa:14:7b:d9:b9:ad:9e:62:
58:ee:88:37:aa:91:64:ea:81:73:17:a2:39:5b:3c:88:4e:d8:
d6:c6:b3:15:34:3a:1d:74:03:5f:64:f8:0a:8e:0b:eb:f3:91:
65:d1:e8:6e:9f:22:d6:e3:d4:72:3d:a0:e5:69:69:ea:ee:50:
83:4a:55:62
-----BEGIN CERTIFICATE-----
MIIGTTCCBTWgAwIBAgIDAeL7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwNTA5NDczNloXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzk4QUQxMTAvBgNVBAUTKDdDMUEwRjQ4RUE0MzIzMUZBMzM0M0Q1
OTI4MjFFRjI5RThEMkIzMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDWprhNf8w9Ru0HRjT5ZK+jqYDuDGFNf+LicubHskcMd8a22ej4XSJRBX9bgJs3
jK4Et1zJD/mApw6eaJNbu0jjOnq4bUqCicP/vT2IdFGI1MrQc7db5Q2zh4WVDjgt
hH1paZPuOe5nxGQaNUmTPkd78wmvscp4/s80FTEC4zRF6zU/+YtisBdkXe6lgAeU
XUAGapbJ+xWjaN6UWCxBTvGm1Ok97fSe3CHkq64UJ4zpBxs0dY51D3Vrx6Vyn1wh
fRJVvFmUrmMvi/nhUq1hWUcE04QW9iNYFhx2D9qgpkkgkX8bLQYK+FkET4tiWYx7
QuK+U/m6KPRlVlrhi4Tg1g1DAgMBAAGjggNCMIIDPjAdBgNVHQ4EFgQUfBoPSOpD
Ix+jND1ZKCHvKejSsxswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc5OEFELzcwRUZCNEFDRkUyQTExRTY4RjJDNUExM0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3OThBRC83MEVGQjRBQ0ZFMkExMUU2OEYyQzVBMTNDNEY5QUUwMi9mQm9QU09w
REl4LWpORDFaS0NIdktlalNzeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQgBAf8EEzAR
oA8wDQICEpkCAkYCAgMAsLcwSgYIKwYBBQUHAQcBAf8EOzA5MCgEAgABMCIDBAJn
aRgDAwRyAAMDBXigAwQHfMMAAwQEyl0gAwQEypigMA0EAgACMAcDBQIkBwAAMA0G
CSqGSIb3DQEBCwUAA4IBAQDJ9/kHn1ztVp/LLFzGuQuScMMKOcbLyR1nwy3v4PCf
55nhTCmWIXnvt4aUu1qDVAB8va0oyZJuf/c3GVj1Fy0pmNQrPeHw6iYNqFB4PC2t
wXYfMfp5QmALYgoDyyc0ajgQvAsRfBudLjMhIZ7o9vgg6kD30RKtHrY14pF/ERul
3c6tZm9a9fQt0NCjfbGdcCAblFgWv3Mnc1T+x2yJeAZ8kxDOi4/qUQos4fHdKEIV
SOItpfryT6yGjE7AxzW9qhR72bmtnmJY7og3qpFk6oFzF6I5WzyITtjWxrMVNDod
dANfZPgKjgvr85Fl0ehunyLW49RyPaDlaWnq7lCDSlVi
-----END CERTIFICATE-----
Generated at Thu May 9 10:24:30 2024 by rpki-client on console-fra.rpki-client.org