Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer
File: 5_fdQJKCmOyeymRGoYSjWaPtXf4.cer (raw, json)
Hash identifier: hdTxbi4Ck8Bc3VlwVVCg2XI3va2opmoAaqanWwvf/Bc=
Subject key identifier: E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DC5C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 04:38:54 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.205.240.0/22
IP: 115.42.60.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121948 (0x1dc5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 1 04:38:54 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91FE7DF/serialNumber=E7F7DD40928298EC9ECA6446A184A359A3ED5DFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4b:2d:14:10:a0:1d:2e:3f:19:de:e8:0b:cd:
12:58:d8:2b:6d:74:15:4f:ef:0b:6d:57:66:44:12:
4d:0c:35:9c:42:4c:e0:6a:bc:6a:fa:07:72:a4:44:
0a:59:8d:14:1d:31:ae:dc:8f:95:a7:cf:1a:44:8f:
a4:51:1f:8b:9c:ee:00:bf:f4:b2:1e:05:b3:f8:22:
a0:72:26:d9:7c:da:4b:0e:7d:e0:65:c1:ec:63:b4:
50:77:76:c7:eb:6d:a9:b0:26:b2:33:e1:2c:e8:3e:
64:21:59:73:1a:83:ff:6a:e9:57:92:30:83:ce:e2:
a9:06:cb:17:96:36:e9:be:08:3c:0e:a2:5b:7a:61:
92:e0:5a:a4:7e:02:68:b5:47:3c:10:3e:94:77:a8:
02:62:61:26:09:11:d8:5a:79:8d:60:4d:10:cb:95:
1e:c9:92:6b:e4:d1:29:a5:a1:06:e3:5a:67:ec:81:
e8:49:37:16:72:65:13:49:44:6d:09:00:93:64:fb:
4e:05:f4:8e:07:26:0e:3f:b8:ad:59:00:d5:35:f4:
fd:30:b5:17:d7:ba:fa:76:87:d5:46:48:6b:01:ad:
df:22:29:dd:5a:1c:f9:7e:32:bc:7e:64:1b:06:48:
c0:d2:ea:41:37:ee:2c:bd:9f:53:be:96:a1:cf:2c:
e3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.205.240.0/22
115.42.60.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:8c:42:dd:08:e0:b4:35:01:9d:e0:85:23:3b:d9:db:01:d2:
70:91:4a:fa:5a:41:2e:ce:dc:23:8b:bf:4a:33:87:9e:39:f8:
1d:41:ab:74:f6:d6:25:76:a5:85:15:c7:7b:02:90:60:81:3a:
2e:0c:89:d8:26:56:2a:04:c5:92:c2:e8:0e:83:67:5f:44:68:
8b:40:aa:06:d9:5e:1e:0f:49:5e:7b:4e:a8:67:3e:44:84:ee:
66:71:98:d6:07:ad:b7:5f:ba:58:42:6e:36:5f:f0:21:0d:15:
7c:6e:7d:5f:d5:fa:8e:51:49:6f:6d:df:db:22:c5:f0:65:61:
09:98:41:8b:b7:fa:77:67:6f:71:3a:d8:8a:54:3f:e3:f9:4e:
77:6d:c3:53:b0:93:3e:fb:29:66:f9:cc:6e:aa:9d:13:67:13:
ed:2d:25:0c:61:09:6e:76:c8:f6:5b:37:97:b6:c5:98:03:17:
1b:c7:b9:fd:78:1a:51:0e:be:5d:97:e1:46:fa:cc:53:64:d7:
f5:cf:fd:46:d3:91:d0:af:09:b4:39:5f:19:34:c1:63:6c:09:
77:b6:97:48:4b:73:bc:b0:d1:50:be:a0:03:d6:f9:b3:c4:f2:
16:65:4d:8b:a3:07:92:59:44:14:33:7c:a5:dc:f8:ef:58:98:
b2:7a:a9:09
-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgIDAdxcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDIwMTA0Mzg1NFoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRkU3REYxMTAvBgNVBAUTKEU3RjdERDQwOTI4Mjk4RUM5RUNBNjQ0
NkExODRBMzU5QTNFRDVERkUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQClSy0UEKAdLj8Z3ugLzRJY2CttdBVP7wttV2ZEEk0MNZxCTOBqvGr6B3KkRApZ
jRQdMa7cj5WnzxpEj6RRH4uc7gC/9LIeBbP4IqByJtl82ksOfeBlwexjtFB3dsfr
bamwJrIz4SzoPmQhWXMag/9q6VeSMIPO4qkGyxeWNum+CDwOolt6YZLgWqR+Ami1
RzwQPpR3qAJiYSYJEdhaeY1gTRDLlR7Jkmvk0SmloQbjWmfsgehJNxZyZRNJRG0J
AJNk+04F9I4HJg4/uK1ZANU19P0wtRfXuvp2h9VGSGsBrd8iKd1aHPl+Mrx+ZBsG
SMDS6kE37iy9n1O+lqHPLOM3AgMBAAGjggL5MIIC9TAdBgNVHQ4EFgQU5/fdQJKC
mOyeymRGoYSjWaPtXf4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUZFN0RGLzZENTUyRDcwMjc3QTExRURBNkIxQTgyNkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGRTdERi82RDU1MkQ3MDI3N0ExMUVEQTZCMUE4MjZDNEY5QUUwMi81X2ZkUUpL
Q21PeWV5bVJHb1lTaldhUHRYZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8EFjAU
MBIEAgABMAwDBAJnzfADBAJzKjwwDQYJKoZIhvcNAQELBQADggEBAKyMQt0I4LQ1
AZ3ghSM72dsB0nCRSvpaQS7O3COLv0ozh545+B1Bq3T21iV2pYUVx3sCkGCBOi4M
idgmVioExZLC6A6DZ19EaItAqgbZXh4PSV57TqhnPkSE7mZxmNYHrbdfulhCbjZf
8CENFXxufV/V+o5RSW9t39sixfBlYQmYQYu3+ndnb3E62IpUP+P5Tndtw1Owkz77
KWb5zG6qnRNnE+0tJQxhCW52yPZbN5e2xZgDFxvHuf14GlEOvl2X4Ub6zFNk1/XP
/UbTkdCvCbQ5Xxk0wWNsCXe2l0hLc7yw0VC+oAPW+bPE8hZlTYujB5JZRBQzfKXc
+O9YmLJ6qQk=
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:36:42 2024 by rpki-client on console-ams.rpki-client.org