Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer
File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer (raw, json)
Hash identifier: NZDTqqrRWejaA0LI+kORJDh76xkjKjy21vRPRXLTcSY=
Subject key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021D42
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Nov 2024 03:42:12 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 36.50.32.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138562 (0x21d42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 25 03:42:12 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A917604B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:98:ed:15:0b:ec:cf:5a:b6:3c:79:38:8f:70:
f7:25:82:13:9f:83:a5:8b:4b:32:94:56:20:b0:a4:
4a:ca:28:2c:7e:68:f2:dc:96:6c:3c:83:ef:23:dd:
5a:c1:4b:75:95:f1:fc:04:39:bd:1d:3e:b8:4b:09:
37:b2:13:6e:be:ac:c2:3d:c8:76:49:e0:e3:10:74:
e1:96:e6:b1:13:16:9f:56:e6:5f:59:35:b3:d6:a9:
33:51:ff:e8:1d:ba:af:0e:2b:2d:18:ab:db:ad:2d:
cf:fe:7e:f9:e1:49:51:47:0d:fd:c6:08:1d:fb:f2:
d0:06:19:16:32:92:59:df:1b:80:b2:db:c1:1a:74:
e2:df:db:cf:9f:60:49:44:54:c2:95:54:8e:ec:9d:
cc:b6:48:74:22:4b:25:a2:7d:db:13:72:1d:33:05:
cb:dd:35:61:f2:a9:03:45:7f:d5:f8:4f:bf:b3:14:
0e:0b:36:ee:22:6e:09:cd:0c:ea:d6:ae:b4:9b:16:
e5:ef:6a:64:6e:93:36:86:48:f8:cf:68:e2:2b:c8:
a4:36:e6:d0:fb:99:ca:74:42:cb:be:0b:15:0b:7b:
76:ce:01:ea:a7:1a:63:b0:4d:2b:06:c2:08:ad:28:
2b:34:27:85:d0:88:44:4d:a6:14:cc:af:1e:0f:06:
8e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.32.0/23
Signature Algorithm: sha256WithRSAEncryption
72:db:d5:8f:98:d2:4a:f3:c2:2e:a0:13:d8:66:b7:2d:06:19:
9c:3c:fd:fd:9b:30:7c:dc:0b:3f:c6:28:e2:46:5c:d8:9f:ae:
c2:e5:cd:c6:fc:92:bc:85:06:28:ad:ba:fa:a4:06:f2:5b:f9:
89:07:ac:ec:83:01:0c:d7:94:e4:7c:38:be:d9:b9:97:e4:c5:
65:dd:9b:93:2c:a6:a9:48:89:3c:0f:bd:79:4b:3b:2f:a9:23:
ae:f7:b4:47:36:0f:2b:1a:52:7c:df:86:3f:ad:3b:73:6b:70:
dd:cd:4c:37:42:cf:c8:f6:85:b1:56:19:71:f2:0c:a3:68:1c:
8d:d4:62:90:06:df:6f:f0:41:ea:f6:e5:bc:3d:a8:dc:e3:73:
cd:d4:af:bb:39:6f:ca:b3:74:be:cb:73:10:e8:d9:25:a4:65:
5b:52:49:36:3a:57:6e:f7:6e:07:81:4d:38:bd:b8:fa:62:33:
80:ed:e7:c1:34:86:93:1b:f0:f3:12:47:b9:f5:b6:e5:e5:05:
d9:82:14:88:5c:d4:4c:88:73:de:f9:a7:bf:75:c4:d3:b1:3f:
a0:1d:e4:aa:53:b7:6e:8a:1a:ae:91:5c:dc:fb:f3:d7:af:c6:
c4:62:74:3a:12:1a:10:5c:9a:77:fe:20:53:53:7c:87:05:06:
7d:24:f9:47
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAh1CMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEyNTAzNDIxMloXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMz
QUNBQjkxQzRFOUYzMTE4RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDNmO0VC+zPWrY8eTiPcPclghOfg6WLSzKUViCwpErKKCx+aPLclmw8g+8j3VrB
S3WV8fwEOb0dPrhLCTeyE26+rMI9yHZJ4OMQdOGW5rETFp9W5l9ZNbPWqTNR/+gd
uq8OKy0Yq9utLc/+fvnhSVFHDf3GCB378tAGGRYyklnfG4Cy28EadOLf28+fYElE
VMKVVI7sncy2SHQiSyWifdsTch0zBcvdNWHyqQNFf9X4T7+zFA4LNu4ibgnNDOrW
rrSbFuXvamRukzaGSPjPaOIryKQ25tD7mcp0Qsu+CxULe3bOAeqnGmOwTSsGwgit
KCs0J4XQiERNphTMrx4PBo4ZAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUoUvaoxV2
pjZ6C1w6yrkcTp8xGO8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc2MDRCLzQxQzAxMzVDNkRBRTExRUVBODBEMDU3NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hW
MnBqWjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAEkMiAwDQYJKoZIhvcNAQELBQADggEBAHLb1Y+Y0krzwi6gE9hm
ty0GGZw8/f2bMHzcCz/GKOJGXNifrsLlzcb8kryFBiituvqkBvJb+YkHrOyDAQzX
lOR8OL7ZuZfkxWXdm5MspqlIiTwPvXlLOy+pI673tEc2DysaUnzfhj+tO3NrcN3N
TDdCz8j2hbFWGXHyDKNoHI3UYpAG32/wQer25bw9qNzjc83Ur7s5b8qzdL7LcxDo
2SWkZVtSSTY6V273bgeBTTi9uPpiM4Dt58E0hpMb8PMSR7n1tuXlBdmCFIhc1EyI
c975p791xNOxP6Ad5KpTt26KGq6RXNz789evxsRidDoSGhBcmnf+IFNTfIcFBn0k
+Uc=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:14:32 2025 by rpki-client