Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer
File: gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer (raw, json)
Hash identifier: F7SebT+VQOTEQPGaOKnSJh0e3/+iu/MJ0KtlwRJm7v0=
Subject key identifier: 81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EE7D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Apr 2024 10:39:30 +0000
Certificate not after: Thu 29 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 45136
IP: 119.235.40.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126589 (0x1ee7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 30 10:39:30 2024 GMT
Not After : Aug 29 00:00:00 2024 GMT
Subject: CN=A91EEBAD/serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ff:64:35:0a:28:40:68:e0:ec:97:2e:4f:14:
5c:9d:c7:74:35:09:73:2b:79:68:80:84:59:cf:a8:
e7:fc:21:8d:36:e9:4d:91:ad:94:c9:8d:7b:42:dc:
ad:c5:82:6f:17:3a:2b:b2:65:6c:15:2b:c9:17:13:
fd:b3:79:7d:89:4c:26:64:a2:bd:1b:22:ab:5e:58:
de:ad:52:d6:b5:81:bb:24:69:e8:53:76:e3:89:63:
e5:45:27:03:5b:77:d1:a2:36:1b:49:8d:7f:82:82:
56:89:3c:79:b0:29:7c:65:5f:7d:2f:ec:0b:f9:63:
76:b3:a3:75:ed:0e:a9:74:9d:44:e5:fa:1a:cc:e6:
7e:f2:bc:68:f6:3f:b5:d9:e5:aa:56:19:53:7e:41:
98:ce:a6:e4:c4:ea:d8:e3:48:94:95:3c:0d:0c:46:
db:82:31:23:fd:8a:d0:80:e0:d6:72:01:41:c6:bd:
1a:4f:a5:ee:cd:8f:24:1c:68:29:ac:4b:7f:0e:66:
bd:83:70:03:fe:a7:7f:c8:0b:21:b1:ff:2e:88:64:
bf:75:05:20:da:1e:78:76:b7:2a:d0:8f:90:bb:6d:
56:bc:1a:ea:82:03:be:88:24:f4:d7:af:47:61:7d:
ba:7a:15:8d:3c:fa:95:0a:2b:9e:b4:bc:74:a5:5f:
d2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45136
sbgp-ipAddrBlock: critical
IPv4:
119.235.40.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:f9:ed:34:b1:11:07:80:00:01:70:4f:a7:58:e8:92:63:ae:
9c:09:ad:42:ee:62:f6:f3:2b:52:d4:41:a9:54:ec:dc:97:cc:
ad:f7:59:11:5f:6a:32:46:52:f0:84:04:d6:5f:7d:75:b0:57:
ca:79:1d:5e:dd:86:48:b9:4b:14:33:f7:93:40:59:45:23:89:
66:74:97:08:2b:7a:b2:0d:f5:2e:7c:0b:79:05:cb:fa:ab:58:
4d:88:34:13:f5:95:27:d4:94:63:02:05:91:d3:6a:7c:36:88:
5b:fe:0b:89:f2:3b:68:c6:eb:a0:83:02:87:94:cf:1b:7e:6c:
fa:80:c7:31:ca:9d:ce:dd:02:7b:8d:df:0f:8d:c5:82:40:ab:
25:54:84:ab:7e:23:e0:18:fd:77:9d:66:a9:4b:98:7f:22:9d:
7d:2f:a4:3f:a8:27:64:c9:0e:4e:e2:2d:99:0f:e1:19:58:37:
ec:9d:b7:b9:d3:92:0d:58:4a:90:a7:29:95:92:c8:e8:46:a5:
73:10:8a:01:ce:19:2e:80:ed:d3:e9:5e:dc:25:71:a6:8e:91:
d9:a6:b2:f4:f5:5b:d1:1e:e9:00:43:f7:f4:01:69:bd:f4:a3:
99:0c:6b:fb:92:76:31:7e:94:64:2f:5c:ae:f2:74:79:3b:d1:
21:d1:f7:e3
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAe59MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQzMDEwMzkzMFoXDTI0MDgyOTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRUVCQUQxMTAvBgNVBAUTKDgxRkZGMjE1MDA1REExQUZBQzVFMjRB
QkJDQzAzQ0E3MEY2NjRCNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDZ/2Q1CihAaODsly5PFFydx3Q1CXMreWiAhFnPqOf8IY026U2RrZTJjXtC3K3F
gm8XOiuyZWwVK8kXE/2zeX2JTCZkor0bIqteWN6tUta1gbskaehTduOJY+VFJwNb
d9GiNhtJjX+CglaJPHmwKXxlX30v7Av5Y3azo3XtDql0nUTl+hrM5n7yvGj2P7XZ
5apWGVN+QZjOpuTE6tjjSJSVPA0MRtuCMSP9itCA4NZyAUHGvRpPpe7NjyQcaCms
S38OZr2DcAP+p3/ICyGx/y6IZL91BSDaHnh2tyrQj5C7bVa8GuqCA76IJPTXr0dh
fbp6FY08+pUKK560vHSlX9JpAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUgf/yFQBd
oa+sXiSrvMA8pw9mS1YwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUVFQkFELzUwRDkxRTY2QTM0MzExRUI5OTdCMzMxOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFRUJBRC81MEQ5MUU2NkEzNDMxMUVCOTk3QjMzMTlDNEY5QUUwMi9nZl95RlFC
ZG9hLXNYaVNydk1BOHB3OW1TMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDALBQMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDd+soMA0GCSqG
SIb3DQEBCwUAA4IBAQB8+e00sREHgAABcE+nWOiSY66cCa1C7mL28ytS1EGpVOzc
l8yt91kRX2oyRlLwhATWX311sFfKeR1e3YZIuUsUM/eTQFlFI4lmdJcIK3qyDfUu
fAt5Bcv6q1hNiDQT9ZUn1JRjAgWR02p8Nohb/guJ8jtoxuuggwKHlM8bfmz6gMcx
yp3O3QJ7jd8PjcWCQKslVISrfiPgGP13nWapS5h/Ip19L6Q/qCdkyQ5O4i2ZD+EZ
WDfsnbe505INWEqQpymVksjoRqVzEIoBzhkugO3T6V7cJXGmjpHZprL09VvRHukA
Q/f0AWm99KOZDGv7knYxfpRkL1yu8nR5O9Eh0ffj
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:36 2024 by rpki-client on console-ams.rpki-client.org