Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer
File: 1pYa2ozVd8wz1xqaLcgbDBklrJg.cer (raw, json)
Hash identifier: +stmjtxc+e8nqIpzmmItFwAipK7vo/HalZ00JJQEMAU=
Subject key identifier: D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C2D6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Oct 2023 04:51:25 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 131225
IP: 202.1.233.0/24
IP: 2001:df0:4d::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115414 (0x1c2d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 9 04:51:25 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d2:8b:c6:5f:54:f9:33:86:37:25:fd:db:93:
2c:48:e7:f8:e8:ce:f3:9a:61:36:49:bb:2b:1f:72:
4f:8d:d3:f7:86:9a:da:77:16:c7:0e:4b:d6:19:0b:
d7:20:45:2e:2f:bf:d3:ef:d2:69:72:dd:ba:5d:57:
bd:e9:2d:3f:e1:fe:1c:84:ce:79:4f:b9:4e:ca:19:
1b:76:3d:e8:6c:10:e8:f0:08:14:17:84:c0:f9:65:
1f:f8:08:ad:de:bc:94:25:bf:1f:9b:ce:7f:b8:59:
c9:32:e8:6c:3a:b2:3c:c3:24:30:7e:8e:ee:41:b5:
82:3f:94:2a:9b:09:8a:a2:fe:18:a2:ee:2b:aa:ad:
d5:86:dd:21:2b:7b:4c:ac:91:a8:ae:9c:7b:c6:0d:
61:c0:80:a8:8e:d6:36:d4:08:34:d7:5d:42:e4:3b:
79:e3:76:2a:c7:39:ab:7a:55:4c:8c:38:88:7f:92:
1c:6c:18:25:cc:71:f4:b2:b0:16:55:84:63:df:94:
21:a7:ef:84:63:8b:ed:13:91:75:91:75:da:65:99:
56:40:2d:88:53:4a:ce:81:2c:98:12:72:f3:c5:12:
b8:d0:fb:96:b0:08:31:95:1c:50:3e:b7:02:60:d8:
30:63:df:48:e3:9a:0e:f2:eb:ba:10:2d:5c:88:7f:
cd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131225
sbgp-ipAddrBlock: critical
IPv4:
202.1.233.0/24
IPv6:
2001:df0:4d::/48
Signature Algorithm: sha256WithRSAEncryption
b1:f7:2c:5e:ac:67:27:5d:3c:24:fe:4d:a4:72:34:0a:1b:4d:
b7:b3:b9:40:8a:e4:13:6f:84:b9:b0:05:19:56:55:d9:9f:4b:
e5:f8:44:ed:d1:64:c9:40:22:82:d5:f0:67:b4:7e:5e:08:79:
28:91:88:6f:ce:e8:96:59:bd:a3:98:97:8e:fa:4a:63:c4:71:
f5:c4:80:28:f7:c9:86:97:e5:24:16:75:09:be:ae:db:d9:e2:
09:a4:d9:c2:86:49:6b:c5:e5:2b:8d:37:e1:b6:58:75:cc:8f:
90:ad:8e:f2:98:33:3b:c5:19:0b:2e:3d:64:16:ad:2a:c7:49:
d1:b6:0f:0e:20:37:b5:86:18:c0:dd:0a:5f:e6:f9:3f:9d:01:
55:da:ba:e9:02:ce:71:89:2d:4d:68:5b:ff:07:35:64:58:61:
ec:e0:d2:6a:37:64:90:31:5f:c9:20:b5:09:88:9e:14:21:b3:
49:a1:1d:37:41:7d:ba:30:af:91:d9:a0:75:3e:1a:b9:ce:b4:
85:53:a9:49:e4:cc:98:d9:65:d2:1b:33:16:55:91:3d:7e:9a:
4d:9a:ab:ed:d1:9b:a2:71:1e:23:c4:b4:af:07:44:bc:bd:15:
e7:1f:2b:c0:bf:e5:25:3f:c2:41:85:9b:ce:f3:36:bb:0d:cc:
24:c0:91:b1
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcLWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAwOTA0NTEyNVoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzlDQTgxMTAvBgNVBAUTKEQ2OTYxQURBOENENTc3Q0MzM0Q3MUE5
QTJEQzgxQjBDMTkyNUFDOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC/0ovGX1T5M4Y3Jf3bkyxI5/jozvOaYTZJuysfck+N0/eGmtp3FscOS9YZC9cg
RS4vv9Pv0mly3bpdV73pLT/h/hyEznlPuU7KGRt2PehsEOjwCBQXhMD5ZR/4CK3e
vJQlvx+bzn+4Wcky6Gw6sjzDJDB+ju5BtYI/lCqbCYqi/hii7iuqrdWG3SEre0ys
kaiunHvGDWHAgKiO1jbUCDTXXULkO3njdirHOat6VUyMOIh/khxsGCXMcfSysBZV
hGPflCGn74Rji+0TkXWRddplmVZALYhTSs6BLJgScvPFErjQ+5awCDGVHFA+twJg
2DBj30jjmg7y67oQLVyIf81vAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU1pYa2ozV
d8wz1xqaLcgbDBklrJgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc5Q0E4LzA1NjYwOTI2RDQ0NzExRURBQTQxQkY3RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3OUNBOC8wNTY2MDkyNkQ0NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96
VmQ4d3oxeHFhTGNnYkRCa2xySmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgCZMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAygHpMA8EAgAC
MAkDBwAgAQ3wAE0wDQYJKoZIhvcNAQELBQADggEBALH3LF6sZyddPCT+TaRyNAob
TbezuUCK5BNvhLmwBRlWVdmfS+X4RO3RZMlAIoLV8Ge0fl4IeSiRiG/O6JZZvaOY
l476SmPEcfXEgCj3yYaX5SQWdQm+rtvZ4gmk2cKGSWvF5SuNN+G2WHXMj5CtjvKY
MzvFGQsuPWQWrSrHSdG2Dw4gN7WGGMDdCl/m+T+dAVXauukCznGJLU1oW/8HNWRY
Yezg0mo3ZJAxX8kgtQmInhQhs0mhHTdBfbowr5HZoHU+GrnOtIVTqUnkzJjZZdIb
MxZVkT1+mk2aq+3Rm6JxHiPEtK8HRLy9FecfK8C/5SU/wkGFm87zNrsNzCTAkbE=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:09 2024 by rpki-client on console-fra.rpki-client.org