Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer
File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer (raw, json)
Hash identifier: yJwjkuER1wkA9UEWnylaAmolzw6y9PwVcsV9Wt4nDD4=
Subject key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021B77
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Nov 2024 17:14:03 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 103.198.92.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138103 (0x21b77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 17:14:03 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3d:70:b8:21:f5:42:c9:58:62:d7:ff:65:96:
73:49:a1:b5:01:ab:35:f0:de:56:3c:53:4c:01:38:
03:72:47:03:70:5b:cf:17:52:d7:94:12:8c:03:7a:
e0:9e:dd:52:a6:99:4a:75:df:f6:1e:7f:39:a5:75:
01:8b:26:12:27:15:d3:9d:5c:96:0f:76:ca:10:9a:
43:42:bf:0d:a6:07:4d:12:08:11:72:af:43:75:7f:
d7:ee:a2:07:15:77:32:d2:70:ca:b6:b7:a6:ba:4a:
5f:45:1a:90:d7:77:f7:b6:7c:b7:1a:16:90:f5:3c:
e1:e9:04:a0:6e:28:63:74:e4:5d:a2:ea:2d:33:71:
bc:1f:7f:15:6c:2c:24:d4:5c:53:d2:eb:7d:a8:26:
e9:9a:c9:0f:bc:50:1f:ee:e0:c7:5a:5c:dd:7d:4c:
62:90:11:09:d0:79:27:07:c2:18:de:d6:57:95:d5:
7c:3c:33:e9:6c:c0:b5:d6:09:e8:8b:5d:a8:7a:0a:
65:56:ef:94:57:2e:4e:34:39:7c:4f:b7:c5:2b:30:
28:ec:1d:d7:8a:9d:a8:b9:c0:79:31:22:73:f4:5e:
52:f7:8d:0b:5d:3f:b4:81:87:3c:f3:fa:0b:0a:97:
d9:34:d1:c2:63:e8:b7:07:b5:52:80:64:33:a7:92:
e7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.198.92.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:5b:38:cf:dc:43:6e:1d:c9:72:bf:f6:60:24:2c:f3:3c:a6:
e3:c8:ce:ba:66:53:d0:d2:11:73:23:4b:22:9a:23:7f:ce:3c:
72:ec:df:70:9c:96:30:54:ab:e1:fd:14:e1:a4:9f:c2:31:a7:
ed:d5:f4:17:42:3b:0d:43:6e:d4:da:78:79:9d:c0:2a:3a:2f:
9d:9c:b4:e9:ef:26:64:88:a7:3e:42:5f:21:a2:10:8b:df:7c:
ad:3d:bd:6c:6b:05:b7:7f:2e:e4:92:0a:be:40:c2:c4:96:ba:
42:ac:27:0d:12:4b:15:02:6f:cf:fc:35:dc:8f:f8:c4:e0:f3:
d1:29:8b:67:2c:55:33:56:75:16:52:24:c0:5f:02:e5:a8:7a:
0c:f0:82:d5:1d:f2:ca:ec:e4:b2:56:a9:13:53:27:7e:ea:41:
80:00:00:80:15:40:e8:96:8b:da:79:ac:7d:43:94:1f:15:a2:
65:08:8d:04:e9:cd:40:78:b1:31:64:34:52:69:e8:06:50:25:
ce:11:57:2e:ad:30:f3:db:5d:19:36:f6:c4:15:c9:dd:b8:9d:
dd:2d:0a:a3:c1:89:09:fb:d9:4e:37:57:70:e9:fc:2b:c9:44:
16:26:6f:c1:b5:fc:b9:ca:83:9d:0c:81:00:6b:38:31:66:f8:
4b:06:4a:cb
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAht3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTExNDE3MTQwM1oXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJG
NzRFQzQ5MEY5OEFEMEQzQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDUPXC4IfVCyVhi1/9llnNJobUBqzXw3lY8U0wBOANyRwNwW88XUteUEowDeuCe
3VKmmUp13/YefzmldQGLJhInFdOdXJYPdsoQmkNCvw2mB00SCBFyr0N1f9fuogcV
dzLScMq2t6a6Sl9FGpDXd/e2fLcaFpD1POHpBKBuKGN05F2i6i0zcbwffxVsLCTU
XFPS632oJumayQ+8UB/u4MdaXN19TGKQEQnQeScHwhje1leV1Xw8M+lswLXWCeiL
Xah6CmVW75RXLk40OXxPt8UrMCjsHdeKnai5wHkxInP0XlL3jQtdP7SBhzzz+gsK
l9k00cJj6LcHtVKAZDOnkucHAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQU+IuXQE+d
wQ9aqwL3TsSQ+YrQ07AwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg1NEI3L0UxODBDRTdBODUxRTExRUI4NDE5QjMyN0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUt
ZHdROWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBABnxlwwDQYJKoZIhvcNAQELBQADggEBACtbOM/cQ24dyXK/9mAk
LPM8puPIzrpmU9DSEXMjSyKaI3/OPHLs33CcljBUq+H9FOGkn8Ixp+3V9BdCOw1D
btTaeHmdwCo6L52ctOnvJmSIpz5CXyGiEIvffK09vWxrBbd/LuSSCr5AwsSWukKs
Jw0SSxUCb8/8NdyP+MTg89Epi2csVTNWdRZSJMBfAuWoegzwgtUd8srs5LJWqRNT
J37qQYAAAIAVQOiWi9p5rH1DlB8VomUIjQTpzUB4sTFkNFJp6AZQJc4RVy6tMPPb
XRk29sQVyd24nd0tCqPBiQn72U43V3Dp/CvJRBYmb8G1/LnKg50MgQBrODFm+EsG
Sss=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:04 2024 by rpki-client on console-fra.rpki-client.org