Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer
File: 4eaQihbsgT2qC9ZHl66dvesJIlc.cer (raw, json)
Hash identifier: 0psNdj02ixNx1l9eX4DQulfu9voxvFAuBLOAkzOczBg=
Subject key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021319
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 09 Oct 2024 14:25:40 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 17469
AS: 18012
IP: 175.29.0.0/16
IP: 202.22.192.0/20
IP: 203.76.144.0/20
IP: 203.82.192.0/20
IP: 2404:150::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135961 (0x21319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 9 14:25:40 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7e:b7:50:ed:9d:6b:72:44:07:91:c7:b6:08:
ac:d7:62:d4:7a:1b:8e:5e:5e:45:c6:12:22:38:2b:
d0:3e:cc:d7:1f:e1:dc:d3:5f:a0:46:c5:ce:ec:ca:
fa:08:53:86:c4:d8:30:42:95:84:1c:13:bd:a6:47:
84:ec:2c:b9:d3:c2:fb:7b:09:18:1a:f3:7c:c1:32:
95:6f:c8:14:8a:3a:5c:9b:11:b2:60:5d:a5:f3:49:
9b:d0:7c:98:5c:f0:3c:ed:47:67:e4:9c:b9:86:b8:
f3:11:c6:dc:49:5e:19:54:d4:18:b4:e2:4c:c9:0b:
38:ef:71:65:be:2f:7a:7b:a9:19:72:94:fb:3e:84:
03:d1:8e:b8:3e:f9:a4:02:7e:d4:d5:a0:10:ff:91:
62:37:da:eb:cc:f5:65:70:e6:5b:5c:4e:e1:be:08:
e1:8d:90:dc:42:bd:91:00:d2:3e:99:87:c6:61:d6:
5a:19:0c:ff:18:36:a5:6d:ba:21:51:6c:d5:6d:ce:
62:62:4d:a7:dd:0f:13:b5:87:1a:41:6e:e7:a6:ed:
0b:91:c4:a2:a9:2e:de:88:e2:33:e2:10:cf:0f:69:
7d:e1:66:c1:36:fd:3e:5a:4d:f1:14:83:1e:ac:38:
5b:f4:c2:30:d0:96:cf:cf:0a:f3:3e:f9:75:ac:42:
85:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17469
18012
sbgp-ipAddrBlock: critical
IPv4:
175.29.0.0/16
202.22.192.0/20
203.76.144.0/20
203.82.192.0/20
IPv6:
2404:150::/32
Signature Algorithm: sha256WithRSAEncryption
7b:c1:f0:33:96:28:86:7b:e1:e7:92:23:37:63:70:8d:29:b9:
fc:21:8a:78:4c:b6:50:03:f7:30:4d:41:e0:c8:e9:89:0b:c5:
a2:c6:2b:9a:a1:7f:98:a1:04:8d:24:d4:48:8b:47:64:aa:e6:
f4:cd:48:fd:24:fc:18:4c:67:77:47:50:0d:ca:f9:77:92:18:
b7:9e:03:03:66:04:0d:16:fa:3a:40:05:71:5d:9a:19:92:ae:
32:51:e9:0c:8b:46:de:cb:d7:51:9a:d0:96:f9:8d:d0:95:a8:
b8:69:e9:ba:57:58:a0:91:61:de:ab:f3:ce:9b:35:1a:e6:c3:
f8:e7:4c:d0:75:48:a7:82:0e:a5:f3:53:f9:a7:fc:59:eb:eb:
2b:dc:6e:a5:b2:e3:44:bb:a7:75:6b:68:8d:91:23:32:57:42:
9c:6d:03:fc:52:4a:cf:fe:40:77:f6:8c:7e:35:b4:6d:3f:e4:
df:a6:29:c7:3c:ae:26:66:a5:f5:de:a5:07:0b:e3:73:15:56:
0f:24:d3:f0:88:72:8a:bd:27:09:c3:b1:ef:37:57:44:29:57:
65:3a:fa:34:6b:f0:07:c4:2b:ba:7b:f1:f5:7f:8d:95:03:fd:
20:a4:20:3c:ce:20:2a:59:87:09:71:b6:40:d8:9b:ea:46:96:
a2:2d:7c:45
-----BEGIN CERTIFICATE-----
MIIGPTCCBSWgAwIBAgIDAhMZMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAwOTE0MjU0MFoXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0
Nzk3QUU5REJERUIwOTIyNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC6frdQ7Z1rckQHkce2CKzXYtR6G45eXkXGEiI4K9A+zNcf4dzTX6BGxc7syvoI
U4bE2DBClYQcE72mR4TsLLnTwvt7CRga83zBMpVvyBSKOlybEbJgXaXzSZvQfJhc
8DztR2fknLmGuPMRxtxJXhlU1Bi04kzJCzjvcWW+L3p7qRlylPs+hAPRjrg++aQC
ftTVoBD/kWI32uvM9WVw5ltcTuG+COGNkNxCvZEA0j6Zh8Zh1loZDP8YNqVtuiFR
bNVtzmJiTafdDxO1hxpBbuem7QuRxKKpLt6I4jPiEM8PaX3hZsE2/T5aTfEUgx6s
OFv0wjDQls/PCvM++XWsQoXDAgMBAAGjggMyMIIDLjAdBgNVHQ4EFgQU4eaQihbs
gT2qC9ZHl66dvesJIlcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTUxMEFELzhCNUU3NUZFMUQ4NzExRTI4NEIzODNERjA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1MTBBRC84QjVFNzVGRTFEODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhi
c2dUMnFDOVpIbDY2ZHZlc0pJbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHQYIKwYBBQUHAQgBAf8EDjAM
oAowCAICRD0CAkZcMD8GCCsGAQUFBwEHAQH/BDAwLjAdBAIAATAXAwMArx0DBATK
FsADBATLTJADBATLUsAwDQQCAAIwBwMFACQEAVAwDQYJKoZIhvcNAQELBQADggEB
AHvB8DOWKIZ74eeSIzdjcI0pufwhinhMtlAD9zBNQeDI6YkLxaLGK5qhf5ihBI0k
1EiLR2Sq5vTNSP0k/BhMZ3dHUA3K+XeSGLeeAwNmBA0W+jpABXFdmhmSrjJR6QyL
Rt7L11Ga0Jb5jdCVqLhp6bpXWKCRYd6r886bNRrmw/jnTNB1SKeCDqXzU/mn/Fnr
6yvcbqWy40S7p3VraI2RIzJXQpxtA/xSSs/+QHf2jH41tG0/5N+mKcc8riZmpfXe
pQcL43MVVg8k0/CIcoq9JwnDse83V0QpV2U6+jRr8AfEK7p78fV/jZUD/SCkIDzO
ICpZhwlxtkDYm+pGlqItfEU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:51 2024 by rpki-client on console-ams.rpki-client.org