Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer
File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer (raw, json)
Hash identifier: 8NxzoO/tTxX/vpTIK+tAnVM+EELjS4rAjJ80asjGTkg=
Subject key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02042E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Aug 2024 13:28:05 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 137570
IP: 2402:c2c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132142 (0x2042e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 13:28:05 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f4:86:18:89:58:9f:90:09:4c:20:78:90:5d:
c4:6f:c6:b7:9d:74:75:2d:15:6e:7c:ec:d9:1f:89:
f1:40:db:33:f2:35:80:7d:f5:ac:3f:d6:ff:92:5f:
71:5b:7c:e8:55:1d:a9:ab:2d:e9:04:48:93:23:a8:
67:dc:94:63:8b:ab:4a:d1:73:b8:30:8b:50:af:98:
a2:94:e2:46:b9:1f:d4:14:0a:e9:bc:15:31:2c:2a:
e2:79:a9:53:05:4e:1c:95:41:f2:ac:5f:9f:cc:d8:
bd:cb:c5:63:02:fe:db:78:59:78:78:1c:91:49:72:
b8:0c:18:92:c8:24:d4:32:e8:d4:09:f0:4a:79:74:
e4:6f:40:16:84:e9:7a:74:34:46:86:cb:a8:d1:f7:
c0:96:5b:4b:fb:34:f6:3b:6e:88:52:c7:22:8b:3e:
cc:cd:05:5a:1e:fc:17:99:fb:02:a2:d4:42:5c:87:
c3:51:8e:d0:0b:e7:28:e9:4e:e1:6d:66:2b:cd:a5:
0b:bc:93:9d:f0:83:01:0f:6d:1e:9b:9c:81:b7:2d:
4e:32:db:03:84:f5:19:88:af:b6:23:ac:c0:1f:56:
1b:58:4d:77:ef:b3:96:5f:8d:32:dc:11:7a:fd:cd:
bf:85:44:19:3e:f3:81:e0:d7:1f:50:da:47:3b:26:
e6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137570
sbgp-ipAddrBlock: critical
IPv6:
2402:c2c0::/32
Signature Algorithm: sha256WithRSAEncryption
b6:81:c1:c1:4b:85:de:f1:ae:49:06:d3:15:a5:9c:e7:56:e0:
43:54:30:0c:ca:e7:d6:9a:d8:d8:dd:dd:24:6b:90:e7:38:9e:
d5:4f:73:a7:d8:de:28:bd:7f:0f:00:5d:74:aa:17:b5:19:3d:
a5:f5:9c:bf:30:e6:12:45:b3:31:04:26:35:7c:4c:52:22:ae:
f7:47:ef:e7:36:ba:c1:74:f8:f5:8b:b3:0b:86:c8:1b:df:11:
9d:5a:f4:7d:31:5b:ba:01:48:c2:e0:ab:1d:e3:ae:71:32:85:
27:6e:03:e7:74:77:d0:4a:de:75:d0:6b:8e:93:ab:6f:31:21:
b1:ea:e1:04:3b:7c:65:d4:96:13:d5:ec:ed:5f:60:ee:b0:b7:
02:1f:ee:26:02:86:19:57:8f:f7:fb:02:92:d6:93:eb:dd:2c:
32:a2:d1:02:e4:16:52:de:e0:ce:b9:1b:89:fd:39:63:3b:6c:
5f:0c:f2:d0:96:5c:6b:fd:cc:67:34:a7:dd:86:bc:12:4a:47:
67:57:bd:59:3d:55:de:1f:5e:48:03:e6:a1:a1:62:dc:db:ed:
c3:b8:9d:e9:59:45:d4:d6:7c:85:3b:66:dd:b9:8d:7f:5b:12:
8d:39:15:23:35:2f:17:41:fc:17:57:94:1c:2f:f6:1d:e5:07:
be:b0:17:0e
-----BEGIN CERTIFICATE-----
MIIGGzCCBQOgAwIBAgIDAgQuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgwMTEzMjgwNVoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4
QzI0QTkzOUE2NUY4QjI1NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCV9IYYiVifkAlMIHiQXcRvxreddHUtFW587NkfifFA2zPyNYB99aw/1v+SX3Fb
fOhVHamrLekESJMjqGfclGOLq0rRc7gwi1CvmKKU4ka5H9QUCum8FTEsKuJ5qVMF
ThyVQfKsX5/M2L3LxWMC/tt4WXh4HJFJcrgMGJLIJNQy6NQJ8Ep5dORvQBaE6Xp0
NEaGy6jR98CWW0v7NPY7bohSxyKLPszNBVoe/BeZ+wKi1EJch8NRjtAL5yjpTuFt
ZivNpQu8k53wgwEPbR6bnIG3LU4y2wOE9RmIr7YjrMAfVhtYTXfvs5ZfjTLcEXr9
zb+FRBk+84Hg1x9Q2kc7JuaDAgMBAAGjggMQMIIDDDAdBgNVHQ4EFgQU3fiEkRrT
8ozJ2WqMJKk5pl+LJXYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJCQUFELzUyMUFEREM4MTg0ODExRUE5MDc4NTYyQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyQkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1Jy
VDhvekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhliMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJALCwDANBgkq
hkiG9w0BAQsFAAOCAQEAtoHBwUuF3vGuSQbTFaWc51bgQ1QwDMrn1prY2N3dJGuQ
5zie1U9zp9jeKL1/DwBddKoXtRk9pfWcvzDmEkWzMQQmNXxMUiKu90fv5za6wXT4
9YuzC4bIG98RnVr0fTFbugFIwuCrHeOucTKFJ24D53R30EreddBrjpOrbzEhserh
BDt8ZdSWE9Xs7V9g7rC3Ah/uJgKGGVeP9/sCktaT690sMqLRAuQWUt7gzrkbif05
YztsXwzy0JZca/3MZzSn3Ya8EkpHZ1e9WT1V3h9eSAPmoaFi3Nvtw7id6VlF1NZ8
hTtm3bmNf1sSjTkVIzUvF0H8F1eUHC/2HeUHvrAXDg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:07 2024 by rpki-client on console-fra.rpki-client.org