Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ErjVswCMimNPNn9IEE1Z9u3_CU.cer
File: 7ErjVswCMimNPNn9IEE1Z9u3_CU.cer (raw, json)
Hash identifier: Fl/BEfDMR4weBrAcMTUe0k35zRo6nuu4D0Uyw8lOE18=
Subject key identifier: EC:4A:E3:56:CC:02:32:29:8D:3C:D9:FD:20:41:35:67:DB:B7:FC:25
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E857
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Apr 2024 19:53:51 +0000
Certificate not after: Thu 01 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 58434
IP: 203.96.252.0/22
IP: 203.147.92.0/22
IP: 2402:2f00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 17:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125015 (0x1e857)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 19:53:51 2024 GMT
Not After : Aug 1 00:00:00 2024 GMT
Subject: CN=A91830A5/serialNumber=EC4AE356CC0232298D3CD9FD20413567DBB7FC25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:92:cb:e2:90:4f:ed:64:aa:6b:33:05:ee:d4:
83:42:f5:3a:a0:50:f5:e0:26:aa:71:19:dd:59:eb:
2a:15:7a:5f:e9:da:48:a9:66:b5:bd:b7:f3:a7:03:
5d:c7:6c:53:74:8d:1b:3b:14:b9:15:11:2f:13:5b:
91:27:fc:1e:a8:b7:9f:4c:53:2c:2f:a2:76:90:fa:
0b:24:91:b4:b6:97:b8:ec:39:f5:38:20:4c:a1:71:
43:f5:21:1a:18:50:2e:25:86:72:5a:05:3d:4b:c4:
36:e1:6b:5a:37:d0:2b:d0:2c:a5:3d:5e:46:dd:34:
82:13:3d:5d:91:27:c8:e3:4d:45:77:c6:c9:17:00:
93:5e:15:84:0c:b9:cc:bb:fd:02:29:81:f3:13:60:
fc:de:9a:9e:96:e4:ce:48:00:d5:86:76:dc:ee:a2:
82:79:e0:7f:1b:17:0b:29:5d:f0:d1:96:87:25:b9:
f9:fa:bb:ac:6d:d0:a8:5d:a8:89:fc:9b:b2:d2:dd:
c3:72:ca:a1:37:83:4e:df:72:4b:f0:9b:3b:d4:84:
b7:c6:ea:17:c7:26:97:e5:6f:3d:4e:a2:46:67:c0:
54:4a:99:17:c2:51:7e:3a:b3:e0:1b:42:24:d2:e5:
0f:05:ad:1a:a1:e7:70:cd:fb:7a:0a:44:aa:68:8b:
28:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4A:E3:56:CC:02:32:29:8D:3C:D9:FD:20:41:35:67:DB:B7:FC:25
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91830A5/D82418FE516611ECAD565867C4F9AE02/7ErjVswCMimNPNn9IEE1Z9u3_CU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58434
sbgp-ipAddrBlock: critical
IPv4:
203.96.252.0/22
203.147.92.0/22
IPv6:
2402:2f00::/32
Signature Algorithm: sha256WithRSAEncryption
9a:2a:dd:68:44:d3:d7:2d:59:93:b1:7d:68:82:06:e2:e3:3f:
b8:75:21:96:65:8c:e8:25:76:8a:fa:0f:51:d7:d2:3f:be:3d:
93:a3:a7:75:13:43:dd:ab:34:2c:bb:67:b6:53:16:bf:2c:da:
51:6d:fc:80:00:dd:c4:db:0a:8d:1c:2b:a0:15:f5:fa:c9:50:
c4:29:6f:50:2f:39:3d:eb:33:d4:c3:20:4f:ae:66:44:c2:01:
74:61:db:2d:14:6c:16:23:9a:12:d8:ac:78:3f:84:d6:f2:94:
16:b7:6e:c6:91:f8:d4:bb:d1:86:64:61:96:ed:13:b7:9a:af:
88:02:f0:31:83:d6:7d:47:c9:a1:2d:d2:d8:5a:1b:e4:06:e3:
a3:b2:77:bf:44:f7:d1:b8:d1:cc:0b:21:a3:8d:87:87:03:26:
0f:06:d5:c3:cb:82:f1:13:9c:b4:92:4a:60:52:73:40:e3:71:
60:11:a5:fc:a5:10:7f:9f:a1:1d:3c:c6:e2:ce:af:f4:78:f7:
8a:98:17:a6:be:5e:eb:62:f7:c6:81:d2:ab:62:f3:1c:0f:d9:
4d:87:ad:1f:b5:88:3b:ce:88:7b:f2:50:65:f0:ca:e7:b1:91:
b9:f5:79:20:68:ca:a5:e9:6b:f2:e3:d3:34:3c:b5:0c:68:30:
78:8d:89:36
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAehXMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQwMTE5NTM1MVoXDTI0MDgwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODMwQTUxMTAvBgNVBAUTKEVDNEFFMzU2Q0MwMjMyMjk4RDNDRDlG
RDIwNDEzNTY3REJCN0ZDMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqksvikE/tZKprMwXu1INC9TqgUPXgJqpxGd1Z6yoVel/p2kipZrW9t/OnA13H
bFN0jRs7FLkVES8TW5En/B6ot59MUywvonaQ+gskkbS2l7jsOfU4IEyhcUP1IRoY
UC4lhnJaBT1LxDbha1o30CvQLKU9XkbdNIITPV2RJ8jjTUV3xskXAJNeFYQMucy7
/QIpgfMTYPzemp6W5M5IANWGdtzuooJ54H8bFwspXfDRloclufn6u6xt0KhdqIn8
m7LS3cNyyqE3g07fckvwmzvUhLfG6hfHJpflbz1OokZnwFRKmRfCUX46s+AbQiTS
5Q8FrRqh53DN+3oKRKpoiyilAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQU7ErjVswC
MimNPNn9IEE1Z9u3/CUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTgzMEE1L0Q4MjQxOEZFNTE2NjExRUNBRDU2NTg2N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4MzBBNS9EODI0MThGRTUxNjYxMUVDQUQ1NjU4NjdDNEY5QUUwMi83RXJqVnN3
Q01pbU5QTm45SUVFMVo5dTNfQ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAORCMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCy2D8AwQCy5Nc
MA0EAgACMAcDBQAkAi8AMA0GCSqGSIb3DQEBCwUAA4IBAQCaKt1oRNPXLVmTsX1o
ggbi4z+4dSGWZYzoJXaK+g9R19I/vj2To6d1E0PdqzQsu2e2Uxa/LNpRbfyAAN3E
2wqNHCugFfX6yVDEKW9QLzk96zPUwyBPrmZEwgF0YdstFGwWI5oS2Kx4P4TW8pQW
t27GkfjUu9GGZGGW7RO3mq+IAvAxg9Z9R8mhLdLYWhvkBuOjsne/RPfRuNHMCyGj
jYeHAyYPBtXDy4LxE5y0kkpgUnNA43FgEaX8pRB/n6EdPMbizq/0ePeKmBemvl7r
YvfGgdKrYvMcD9lNh60ftYg7zoh78lBl8MrnsZG59XkgaMql6Wvy49M0PLUMaDB4
jYk2
-----END CERTIFICATE-----
Generated at Fri Apr 19 19:16:52 2024 by rpki-client on console-ams.rpki-client.org