Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer
File: 1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer (raw, json)
Hash identifier: wkiaRDpqfgs9m00W7akK4KWPKXK2bpAn6R5nxJkR+hU=
Subject key identifier: D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E73A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Mar 2024 02:47:28 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.47.176.0/22
IP: 202.58.20.0 -- 202.58.27.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124730 (0x1e73a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 29 02:47:28 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91CE959/serialNumber=D6EC22A73A59D2AA955997470279C662D11088F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4d:1b:79:30:fe:b2:5e:e9:2d:f0:d9:a1:52:
58:c8:14:25:63:7d:a0:1d:22:32:d9:51:c1:37:4b:
05:bd:8c:35:0d:73:cd:12:5b:ce:ad:fd:0f:ee:36:
68:b6:e9:50:5f:75:4c:58:00:da:e4:9d:b2:06:0e:
1d:e6:d9:e6:da:9e:7e:a1:d1:f5:57:21:32:83:35:
5a:d5:6a:f5:55:03:35:e8:6c:65:75:3f:77:7e:38:
e6:9a:42:b8:23:3b:4b:62:27:ca:f4:11:31:b2:6d:
f4:0c:c0:63:5f:91:8e:a8:34:8a:1a:5a:43:1b:bf:
3f:37:26:a0:42:75:1a:78:52:eb:7c:6d:9d:b0:12:
15:15:bf:a5:36:e0:71:0f:7a:e2:77:4c:c6:cc:f5:
c2:72:25:39:35:16:39:c7:89:d7:59:95:1f:f8:4c:
cd:b1:5f:57:4e:af:a5:bc:c9:2c:87:25:5a:51:33:
d9:77:9b:55:03:3b:f7:d3:74:c7:48:5b:d8:a0:70:
06:6b:58:42:b6:74:be:70:6d:57:86:bd:bb:55:93:
5c:60:27:9d:79:07:10:f8:13:08:a6:6c:9a:4b:83:
d0:dd:75:a5:9c:8a:0a:4a:a9:db:82:f9:73:e8:c7:
06:cf:15:55:58:37:74:5f:78:26:af:31:ae:ae:9d:
6a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.47.176.0/22
202.58.20.0-202.58.27.255
Signature Algorithm: sha256WithRSAEncryption
24:c8:b3:de:2a:cf:a9:24:36:61:f3:80:ad:50:6a:dc:03:08:
db:bd:0b:e6:a5:34:7b:e2:91:94:4c:ec:c2:da:ca:9a:12:85:
d3:ea:a5:7f:13:1e:a0:93:fe:e4:01:b6:e4:cb:32:f6:c0:34:
7b:a3:c3:0a:86:b6:87:aa:34:3e:ec:b9:e9:b0:19:24:5a:17:
c8:f8:5e:7c:5b:ac:d9:62:b4:d2:56:47:6d:b4:a0:69:13:95:
df:a1:41:03:70:e6:f3:65:bb:b6:fa:89:06:17:9f:e3:d1:f7:
d7:12:0e:9d:76:df:60:78:77:eb:97:f3:4e:4f:1e:fb:98:39:
f3:2f:00:f3:22:81:d4:a4:aa:7e:ee:63:7d:51:0e:e8:64:19:
e4:3c:03:0e:ac:4f:df:1f:bd:b7:33:f3:82:3c:12:91:90:90:
01:d5:39:d1:c0:d8:4d:fa:c2:7e:00:70:ac:79:06:9d:f3:77:
58:ce:5b:8e:c5:0d:d6:9d:a3:37:36:67:7b:e6:fc:76:dc:64:
29:38:82:b1:ef:47:81:40:40:54:7d:5a:81:1b:79:3b:26:98:
f9:65:ac:d0:8b:00:af:58:11:dc:9f:e8:c2:cd:e4:66:77:a8:
00:81:8b:59:c1:08:97:6b:15:d0:75:a2:6a:5c:82:87:19:2c:
c8:df:ca:61
-----BEGIN CERTIFICATE-----
MIIGDDCCBPSgAwIBAgIDAec6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMyOTAyNDcyOFoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0U5NTkxMTAvBgNVBAUTKEQ2RUMyMkE3M0E1OUQyQUE5NTU5OTc0
NzAyNzlDNjYyRDExMDg4RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC6TRt5MP6yXukt8NmhUljIFCVjfaAdIjLZUcE3SwW9jDUNc80SW86t/Q/uNmi2
6VBfdUxYANrknbIGDh3m2ebann6h0fVXITKDNVrVavVVAzXobGV1P3d+OOaaQrgj
O0tiJ8r0ETGybfQMwGNfkY6oNIoaWkMbvz83JqBCdRp4Uut8bZ2wEhUVv6U24HEP
euJ3TMbM9cJyJTk1FjnHiddZlR/4TM2xX1dOr6W8ySyHJVpRM9l3m1UDO/fTdMdI
W9igcAZrWEK2dL5wbVeGvbtVk1xgJ515BxD4EwimbJpLg9DddaWcigpKqduC+XPo
xwbPFVVYN3RfeCavMa6unWrTAgMBAAGjggMBMIIC/TAdBgNVHQ4EFgQU1uwipzpZ
0qqVWZdHAnnGYtEQiPIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNFOTU5L0FBNEM3N0VDRUQ3NjExRUVBRDg3MUExMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDRTk1OS9BQTRDNzdFQ0VENzYxMUVFQUQ4NzFBMTFDNEY5QUUwMi8xdXdpcHpw
WjBxcVZXWmRIQW5uR1l0RVFpUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8EHjAc
MBoEAgABMBQDBAJnL7AwDAMEAso6FAMEAso6GDANBgkqhkiG9w0BAQsFAAOCAQEA
JMiz3irPqSQ2YfOArVBq3AMI270L5qU0e+KRlEzswtrKmhKF0+qlfxMeoJP+5AG2
5Msy9sA0e6PDCoa2h6o0Puy56bAZJFoXyPhefFus2WK00lZHbbSgaROV36FBA3Dm
82W7tvqJBhef49H31xIOnXbfYHh365fzTk8e+5g58y8A8yKB1KSqfu5jfVEO6GQZ
5DwDDqxP3x+9tzPzgjwSkZCQAdU50cDYTfrCfgBwrHkGnfN3WM5bjsUN1p2jNzZn
e+b8dtxkKTiCse9HgUBAVH1agRt5OyaY+WWs0IsAr1gR3J/ows3kZneoAIGLWcEI
l2sV0HWialyChxksyN/KYQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:19 2024 by rpki-client on console-fra.rpki-client.org