Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer
File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer (raw, json)
Hash identifier: 03MZD+kAra2yi5KFm3064kFbu+yCYHF7et0hegWZjE8=
Subject key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AE4A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Jul 2023 17:25:30 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 132261
IP: 45.113.36.0/22
IP: 103.9.60.0/22
IP: 2402:6c40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 23:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110154 (0x1ae4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 4 17:25:30 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:56:2d:a7:ec:be:cf:d7:46:96:c5:3c:93:f4:
19:42:7d:64:d7:cd:58:fe:f8:a6:01:ad:67:5d:21:
9d:ad:4e:8a:97:e1:bf:4d:30:09:aa:ea:e7:ce:99:
09:f3:fd:38:01:cd:ae:b3:ca:00:f6:a6:30:98:10:
20:4f:41:3a:6b:9a:fa:9d:86:23:bc:0d:d6:ce:19:
59:5b:d5:15:2d:38:18:70:d6:24:7a:0a:07:58:ae:
42:b2:9d:9e:01:a0:10:12:dd:f4:2a:f2:96:9f:64:
9d:d2:c2:39:eb:cf:42:0b:a1:ba:4a:8a:a2:0d:06:
d0:28:60:8f:e3:69:1b:d7:90:9e:d3:8d:89:3b:68:
f0:55:4f:84:c0:e6:a2:16:a5:96:53:ea:38:8f:89:
03:fb:5d:72:4d:06:8e:a2:8a:b3:c3:f8:25:88:e5:
c3:71:5e:ca:2f:3b:02:85:95:a8:0e:04:38:95:e0:
b6:45:d1:a6:3d:44:55:48:ba:bf:7f:c5:46:8a:64:
43:08:cc:22:0b:4d:30:32:c8:8f:15:40:6d:13:a2:
52:04:be:16:64:fb:ad:78:71:89:e3:1c:18:00:96:
d1:36:3e:c8:e0:d7:08:14:e6:19:17:24:60:70:53:
3d:4f:57:80:c8:b4:2c:99:4d:c9:44:ca:6b:83:3d:
ee:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132261
sbgp-ipAddrBlock: critical
IPv4:
45.113.36.0/22
103.9.60.0/22
IPv6:
2402:6c40::/32
Signature Algorithm: sha256WithRSAEncryption
10:6e:75:16:21:7a:5d:74:62:39:c3:54:a7:8f:f3:60:8c:e0:
77:04:97:2f:cc:af:be:9d:8c:50:b6:f8:b4:49:79:a2:80:22:
05:ac:a8:de:e9:c0:8a:21:7d:a2:90:2c:ee:6d:6f:cd:26:4c:
50:dc:e4:d2:e9:2f:ca:7d:0e:9a:b3:c9:54:5a:83:81:da:5c:
d1:09:80:9f:c0:28:bc:9e:33:c0:92:58:90:cc:5f:bb:1d:27:
2d:5d:6e:ae:cc:f0:14:ad:79:aa:93:9e:4f:95:b0:76:e8:f1:
70:a5:0f:b7:a1:49:34:df:ae:61:fc:1b:17:d4:5e:f3:17:8c:
ec:57:8f:4d:53:c8:fc:6e:a5:b1:ca:66:e6:85:41:b5:fe:c6:
78:60:c0:df:83:45:4d:77:1f:b9:07:f5:a0:9c:ed:b8:dd:a1:
29:56:88:9b:6c:66:bb:48:83:f4:09:b5:be:44:3c:18:81:65:
82:4d:b3:73:1a:98:fb:94:af:f7:e0:04:47:d6:5e:28:31:83:
21:3b:17:e7:2b:43:e0:ce:17:ee:fa:b4:07:4d:1b:49:be:c6:
af:80:c7:84:16:09:c3:87:66:3d:ae:66:bb:bf:f8:b5:28:80:
8d:79:c8:4f:17:a9:d3:17:54:f9:02:28:d9:34:49:33:0d:54:
14:c6:79:31
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAa5KMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcwNDE3MjUzMFoXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4
MTAxMjUyQ0IwQjQ4NTdGNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCWVi2n7L7P10aWxTyT9BlCfWTXzVj++KYBrWddIZ2tToqX4b9NMAmq6ufOmQnz
/TgBza6zygD2pjCYECBPQTprmvqdhiO8DdbOGVlb1RUtOBhw1iR6CgdYrkKynZ4B
oBAS3fQq8pafZJ3Swjnrz0ILobpKiqINBtAoYI/jaRvXkJ7TjYk7aPBVT4TA5qIW
pZZT6jiPiQP7XXJNBo6iirPD+CWI5cNxXsovOwKFlagOBDiV4LZF0aY9RFVIur9/
xUaKZEMIzCILTTAyyI8VQG0TolIEvhZk+614cYnjHBgAltE2Psjg1wgU5hkXJGBw
Uz1PV4DItCyZTclEymuDPe7RAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQU2rsWnZ6d
d+ZXbAGBASUssLSFf2IwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTZENjg3Lzc2QjQzQjY0OUY0NTExRUE5RTUyMzU2M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2RDY4Ny83NkI0M0I2NDlGNDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2
ZGQtWlhiQUdCQVNVc3NMU0ZmMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgSlMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLXEkAwQCZwk8
MA0EAgACMAcDBQAkAmxAMA0GCSqGSIb3DQEBCwUAA4IBAQAQbnUWIXpddGI5w1Sn
j/NgjOB3BJcvzK++nYxQtvi0SXmigCIFrKje6cCKIX2ikCzubW/NJkxQ3OTS6S/K
fQ6as8lUWoOB2lzRCYCfwCi8njPAkliQzF+7HSctXW6uzPAUrXmqk55PlbB26PFw
pQ+3oUk0365h/BsX1F7zF4zsV49NU8j8bqWxymbmhUG1/sZ4YMDfg0VNdx+5B/Wg
nO243aEpVoibbGa7SIP0CbW+RDwYgWWCTbNzGpj7lK/34ARH1l4oMYMhOxfnK0Pg
zhfu+rQHTRtJvsavgMeEFgnDh2Y9rma7v/i1KICNechPF6nTF1T5AijZNEkzDVQU
xnkx
-----END CERTIFICATE-----
Generated at Fri Apr 19 00:32:33 2024 by rpki-client on console-fra.rpki-client.org