Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer
File: 5B7XVgdLN63ceU-UC9H1Pj9na5M.cer (raw, json)
Hash identifier: wGumDCBVcur9JuJFSWAxDv971GGHtzueopRyYp6eVgc=
Subject key identifier: E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022074
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Dec 2024 13:43:41 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 203.57.81.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139380 (0x22074)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 4 13:43:41 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A913B5C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:49:29:f7:00:6c:70:21:f7:42:1a:5e:db:60:
6f:d8:82:31:83:41:c6:89:7d:47:fc:f8:25:e7:05:
f4:09:e7:59:06:c5:1e:f3:65:62:f2:68:00:8b:de:
cc:98:ab:8e:0b:d7:43:3e:fc:1e:ae:16:38:f1:3e:
dc:c3:cd:23:63:4a:3e:45:86:69:0f:67:62:61:33:
49:97:c5:55:2d:66:bc:7a:17:2b:ad:ac:ac:95:c3:
9f:05:2c:60:7c:57:d1:98:eb:bd:89:69:5d:9a:fe:
ed:f8:f2:be:dc:a2:c5:6c:df:82:96:4f:bb:e7:83:
8c:f9:3f:a7:4d:7c:39:d8:b9:a9:de:34:70:13:78:
e6:3c:1b:9b:15:5f:92:3a:f2:70:1d:28:2e:bd:1d:
6d:8c:52:db:25:02:04:c9:d7:a1:37:a0:3f:aa:39:
f6:0e:b1:15:84:51:7b:cd:0f:84:3f:98:58:e3:d5:
7c:fa:a0:bd:7a:46:2d:4a:4c:a4:f9:16:79:9d:eb:
78:3d:19:01:a3:65:a0:32:79:34:39:79:01:85:41:
e6:bc:4a:0d:10:41:0f:29:df:aa:26:de:24:d4:ec:
61:ec:71:c5:4d:5b:2d:b4:b0:6f:37:72:bc:56:db:
24:33:0f:cf:82:bc:20:63:08:37:f5:b6:89:b9:19:
c2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.57.81.0/24
Signature Algorithm: sha256WithRSAEncryption
23:8b:52:68:46:a4:ef:b7:2e:30:09:53:bc:93:c4:5a:70:b6:
10:20:c4:5d:a0:9e:37:76:73:40:4f:ec:a7:46:a0:6b:a8:c2:
73:67:35:0e:fe:83:24:b1:03:97:11:21:87:f4:35:53:fa:5f:
ad:f7:0b:76:16:b3:20:99:70:bb:e7:f6:d7:cf:cb:bd:c9:4c:
b4:5f:1e:3f:6e:f6:33:99:93:bb:24:47:2f:43:43:2a:91:75:
47:d4:08:89:b5:9b:08:6f:19:39:7d:97:e0:9e:0f:74:ee:0b:
e9:c1:ed:91:e1:6f:da:70:8a:7d:32:a1:09:75:5e:a2:1f:fb:
62:85:ec:a6:00:a9:0a:21:4d:c2:fb:93:94:00:59:d6:08:28:
26:75:d6:e8:0d:43:b7:e0:59:4d:bc:cd:ba:f4:07:08:23:a5:
e5:2d:2d:0f:53:1c:ec:ea:5f:fc:59:60:5e:1e:22:df:25:6f:
8b:09:00:82:ac:df:24:52:c6:7f:6d:14:6e:e2:5c:81:a4:b8:
7e:f1:ad:76:a0:25:27:50:43:bb:9f:2c:92:40:78:75:3f:7e:
b4:dc:0f:12:95:86:30:a3:1e:aa:f0:d8:d5:84:08:74:7e:27:
4c:8d:d6:80:07:ff:74:7f:f9:eb:10:8a:d0:3c:6c:61:d3:fa:
0c:5b:4e:bd
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAiB0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIwNDEzNDM0MVoXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxM0I1QzcxMTAvBgNVBAUTKEU0MUVENzU2MDc0QjM3QUREQzc5NEY5
NDBCRDFGNTNFM0Y2NzZCOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD7SSn3AGxwIfdCGl7bYG/YgjGDQcaJfUf8+CXnBfQJ51kGxR7zZWLyaACL3syY
q44L10M+/B6uFjjxPtzDzSNjSj5FhmkPZ2JhM0mXxVUtZrx6FyutrKyVw58FLGB8
V9GY672JaV2a/u348r7cosVs34KWT7vng4z5P6dNfDnYuaneNHATeOY8G5sVX5I6
8nAdKC69HW2MUtslAgTJ16E3oD+qOfYOsRWEUXvND4Q/mFjj1Xz6oL16Ri1KTKT5
Fnmd63g9GQGjZaAyeTQ5eQGFQea8Sg0QQQ8p36om3iTU7GHsccVNWy20sG83crxW
2yQzD8+CvCBjCDf1tom5GcLhAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQU5B7XVgdL
N63ceU+UC9H1Pj9na5MwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNCNUM3LzY3RDI0Mzk2RTgwOTExRUVCRTQ4OTU2M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzQjVDNy82N0QyNDM5NkU4MDkxMUVFQkU0ODk1NjNDNEY5QUUwMi81QjdYVmdk
TE42M2NlVS1VQzlIMVBqOW5hNU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBADLOVEwDQYJKoZIhvcNAQELBQADggEBACOLUmhGpO+3LjAJU7yT
xFpwthAgxF2gnjd2c0BP7KdGoGuownNnNQ7+gySxA5cRIYf0NVP6X633C3YWsyCZ
cLvn9tfPy73JTLRfHj9u9jOZk7skRy9DQyqRdUfUCIm1mwhvGTl9l+CeD3TuC+nB
7ZHhb9pwin0yoQl1XqIf+2KF7KYAqQohTcL7k5QAWdYIKCZ11ugNQ7fgWU28zbr0
BwgjpeUtLQ9THOzqX/xZYF4eIt8lb4sJAIKs3yRSxn9tFG7iXIGkuH7xrXagJSdQ
Q7ufLJJAeHU/frTcDxKVhjCjHqrw2NWECHR+J0yN1oAH/3R/+esQitA8bGHT+gxb
Tr0=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:48 2025 by rpki-client