Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uYwZnXV9U0ge2eCqWx6qWex_JE.cer
File: 4uYwZnXV9U0ge2eCqWx6qWex_JE.cer (raw, json)
Hash identifier: 06Cj2vp88HKBJ8VD2OhsPtfGDR+97aca07Wq++zT2lQ=
Subject key identifier: E2:E6:30:66:75:D5:F5:4D:20:7B:67:82:A9:6C:7A:A9:67:B1:FC:91
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022287
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/4uYwZnXV9U0ge2eCqWx6qWex_JE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Dec 2024 06:23:12 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 9433
IP: 2001:4530::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Jan 2025 09:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139911 (0x22287)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 13 06:23:12 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91B8AC8/serialNumber=E2E6306675D5F54D207B6782A96C7AA967B1FC91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:87:a5:8b:5b:e5:ba:ef:2f:4d:18:31:c6:c6:
40:0b:b9:a2:79:a0:d6:ee:52:91:7d:64:02:bd:2f:
18:34:9e:a3:d9:89:3a:6a:1d:ea:91:9f:b4:da:46:
e5:27:94:c6:ae:4f:90:dd:df:61:03:91:24:5d:83:
e2:1b:d7:f3:48:71:e5:1b:e9:7a:5d:44:00:e5:87:
56:66:41:68:a2:a8:20:f3:2e:9d:8f:ed:eb:98:28:
da:1d:e6:b9:12:d1:51:0d:5b:1b:5c:36:74:98:ee:
29:3c:38:55:63:4c:ba:62:b2:00:35:6a:38:33:36:
82:15:8f:d9:bf:3f:53:22:b0:17:b2:d2:36:35:1b:
86:6e:17:4e:53:68:f0:03:df:5d:53:4d:bb:86:df:
d2:e5:1e:62:da:74:39:ea:5e:5b:96:ce:3b:68:e4:
5f:af:06:9c:5b:2f:10:4c:2b:e3:b0:81:69:fb:10:
1f:cc:38:b2:3c:76:29:ed:a4:2c:dd:ce:6b:ac:cf:
54:8b:07:94:7f:f1:69:bb:1d:b5:23:fc:66:95:1e:
1d:fc:06:7b:3d:76:6e:62:f6:c9:47:4b:73:f9:f4:
1b:8e:c6:7c:0a:fb:bb:b2:3a:d0:48:3d:8f:58:c0:
9d:79:e2:da:58:c6:b8:6a:e0:e9:cb:74:77:c7:b6:
e5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E6:30:66:75:D5:F5:4D:20:7B:67:82:A9:6C:7A:A9:67:B1:FC:91
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E9BE05DCB13C11EFAAF9D731C4F9AE02/4uYwZnXV9U0ge2eCqWx6qWex_JE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9433
sbgp-ipAddrBlock: critical
IPv6:
2001:4530::/32
Signature Algorithm: sha256WithRSAEncryption
69:8e:c3:d6:d5:d0:c6:47:9c:b8:67:83:aa:cb:62:39:b8:01:
cc:ff:71:c5:f7:3e:bb:a5:d3:58:3c:fc:5c:cd:0b:42:b8:68:
0d:3b:aa:d8:30:e1:f6:9a:64:3e:71:40:d5:24:c5:6c:2c:04:
3f:f6:33:ca:98:39:80:6f:3c:e2:af:95:08:20:5b:75:dc:c8:
8a:1c:7b:f3:67:eb:f4:be:04:48:2d:8d:2e:01:29:d7:c7:ed:
92:c7:53:b2:6a:23:90:e0:20:4d:ad:07:5f:d6:71:29:26:70:
6b:89:0d:24:99:db:fa:88:57:e4:2b:47:a9:78:74:17:bc:76:
05:eb:d4:f0:ba:70:2e:ab:0e:b5:5a:bb:09:a6:a6:f7:8b:5b:
bd:2d:e5:26:89:8b:f5:1e:df:57:2c:fe:66:c4:66:f6:c0:36:
c1:f9:4c:35:a2:26:96:79:14:40:e6:91:fd:84:1a:3c:35:24:
37:08:c7:df:43:54:8c:b8:81:92:2e:1e:73:a3:24:10:5f:c0:
41:48:71:57:3e:b0:b6:4a:c6:14:e8:fb:b1:41:32:e9:56:7f:
95:01:50:a1:a2:5f:b8:ac:64:ea:05:f0:f5:d9:02:8b:8e:51:
36:cd:b1:62:03:2e:95:a8:55:e9:50:94:da:37:94:1e:ab:c8:
84:52:42:c5
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAiKHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIxMzA2MjMxMloXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjhBQzgxMTAvBgNVBAUTKEUyRTYzMDY2NzVENUY1NEQyMDdCNjc4
MkE5NkM3QUE5NjdCMUZDOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCSh6WLW+W67y9NGDHGxkALuaJ5oNbuUpF9ZAK9Lxg0nqPZiTpqHeqRn7TaRuUn
lMauT5Dd32EDkSRdg+Ib1/NIceUb6XpdRADlh1ZmQWiiqCDzLp2P7euYKNod5rkS
0VENWxtcNnSY7ik8OFVjTLpisgA1ajgzNoIVj9m/P1MisBey0jY1G4ZuF05TaPAD
311TTbuG39LlHmLadDnqXluWzjto5F+vBpxbLxBMK+OwgWn7EB/MOLI8dintpCzd
zmusz1SLB5R/8Wm7HbUj/GaVHh38Bns9dm5i9slHS3P59BuOxnwK+7uyOtBIPY9Y
wJ154tpYxrhq4OnLdHfHtuWvAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQU4uYwZnXV
9U0ge2eCqWx6qWex/JEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI4QUM4L0U5QkUwNURDQjEzQzExRUZBQUY5RDczMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCOEFDOC9FOUJFMDVEQ0IxM0MxMUVGQUFGOUQ3MzFDNEY5QUUwMi80dVl3Wm5Y
VjlVMGdlMmVDcVd4NnFXZXhfSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICJNkwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAUUwMA0GCSqG
SIb3DQEBCwUAA4IBAQBpjsPW1dDGR5y4Z4Oqy2I5uAHM/3HF9z67pdNYPPxczQtC
uGgNO6rYMOH2mmQ+cUDVJMVsLAQ/9jPKmDmAbzzir5UIIFt13MiKHHvzZ+v0vgRI
LY0uASnXx+2Sx1OyaiOQ4CBNrQdf1nEpJnBriQ0kmdv6iFfkK0epeHQXvHYF69Tw
unAuqw61WrsJpqb3i1u9LeUmiYv1Ht9XLP5mxGb2wDbB+Uw1oiaWeRRA5pH9hBo8
NSQ3CMffQ1SMuIGSLh5zoyQQX8BBSHFXPrC2SsYU6PuxQTLpVn+VAVChol+4rGTq
BfD12QKLjlE2zbFiAy6VqFXpUJTaN5Qeq8iEUkLF
-----END CERTIFICATE-----
Generated at Thu Dec 26 10:25:30 2024 by rpki-client on console-ams.rpki-client.org