Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer
File: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer (raw, json)
Hash identifier: tqih30JW8BCFGRvHYzA1MiJq82RJa72iOzg4IwODeBI=
Subject key identifier: F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0213FC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 15 Oct 2024 01:55:16 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 139353
IP: 2001:df0:ff80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136188 (0x213fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 15 01:55:16 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1c:8e:71:53:ea:a1:66:a9:9a:a0:eb:e3:49:
36:d3:9b:e8:43:df:26:44:d6:a7:a0:36:6e:fd:b2:
32:ea:b6:b5:f1:41:0e:b1:02:d5:88:95:49:af:24:
48:b2:8c:f5:a9:d5:d6:df:9d:8e:bb:2b:e5:e5:82:
9f:51:5e:40:7c:8b:0a:b9:a0:b2:c3:8b:c2:42:e8:
30:aa:7a:85:88:45:7a:45:3f:08:43:12:8c:74:dc:
f2:20:3f:4a:74:f8:49:f6:46:93:de:dc:cb:4c:e5:
3e:6a:12:fb:9e:5e:a2:f2:e7:3f:35:22:f8:d4:68:
db:fe:38:d7:c5:e4:05:d2:2f:ca:99:11:7d:fd:8c:
80:8a:1a:5a:13:f7:83:ad:0e:c8:7c:92:0a:e4:2b:
b6:0d:dd:73:f3:0e:5b:79:7a:67:ec:03:08:fa:68:
42:01:c3:ff:d8:f1:a0:37:37:d5:2f:ce:66:2d:eb:
0b:c5:7e:6b:e0:d2:fd:9c:50:11:a2:07:67:93:ec:
64:7e:9f:6e:c3:50:58:96:44:91:c1:5a:15:d2:7e:
3c:d8:64:67:0e:c7:23:7f:d8:46:70:5d:88:15:01:
5f:2a:87:e1:83:49:06:5a:05:cd:1c:ae:79:38:fd:
5f:e0:46:e6:77:cb:76:39:2e:7d:50:d4:55:ec:d1:
ee:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139353
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:ff80::/48
Signature Algorithm: sha256WithRSAEncryption
b9:87:92:aa:f8:a3:cf:36:59:39:62:46:22:46:bd:7a:33:0b:
3d:d2:df:cf:ee:04:1f:b9:96:19:57:ae:74:8c:e5:5b:02:c8:
79:e8:8e:15:69:24:3e:b3:d7:0a:c7:fc:6f:69:e7:50:8e:90:
4d:0e:2b:c4:cc:cb:98:14:f3:8b:91:2e:ef:f0:f9:b0:45:0b:
bc:bb:da:97:b3:7e:84:e8:7f:10:64:60:07:a3:fe:0f:c8:52:
0b:33:05:6b:54:c6:28:5e:cd:2c:b6:f0:4f:17:01:20:fa:58:
85:c2:ad:34:c3:b4:75:96:dc:9c:4e:a8:77:56:71:35:3d:8f:
d8:ca:ae:34:03:95:31:99:83:88:64:ea:31:6f:af:91:bd:55:
5e:1c:36:3f:d4:0c:4d:80:ba:ec:6d:03:ab:66:d9:36:15:8c:
c4:3a:79:28:64:40:14:03:0b:fa:cd:5e:17:30:3f:88:60:39:
15:17:c0:71:e4:dd:97:84:32:e6:b9:12:c5:ee:9b:bf:42:61:
b0:9c:96:ff:7e:75:55:c1:a3:fc:53:c6:07:75:ab:7b:89:49:
a9:4e:3e:cd:4a:b6:8a:56:85:ab:40:b6:27:5b:9b:24:7d:d2:
63:c5:4f:b6:d0:34:62:72:16:f4:b6:8a:22:55:48:a4:89:dc:
51:b0:05:a4
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgIDAhP8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAxNTAxNTUxNloXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzI5QzExMTAvBgNVBAUTKEYyNTlCOEFDOUNGNDNCRDdDNTk0NTRF
NUM4M0VDRjQ4RjlGQjg3MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDGHI5xU+qhZqmaoOvjSTbTm+hD3yZE1qegNm79sjLqtrXxQQ6xAtWIlUmvJEiy
jPWp1dbfnY67K+Xlgp9RXkB8iwq5oLLDi8JC6DCqeoWIRXpFPwhDEox03PIgP0p0
+En2RpPe3MtM5T5qEvueXqLy5z81IvjUaNv+ONfF5AXSL8qZEX39jICKGloT94Ot
Dsh8kgrkK7YN3XPzDlt5emfsAwj6aEIBw//Y8aA3N9UvzmYt6wvFfmvg0v2cUBGi
B2eT7GR+n27DUFiWRJHBWhXSfjzYZGcOxyN/2EZwXYgVAV8qh+GDSQZaBc0crnk4
/V/gRuZ3y3Y5Ln1Q1FXs0e5hAgMBAAGjggMSMIIDDjAdBgNVHQ4EFgQU8lm4rJz0
O9fFlFTlyD7PSPn7hxcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTMyOUMxLzQ0MjM2RjA0MDVCRDExRURBMDBBNUYzREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzMjlDMS80NDIzNkYwNDA1QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6
ME85ZkZsRlRseUQ3UFNQbjdoeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiBZMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8P+AMA0G
CSqGSIb3DQEBCwUAA4IBAQC5h5Kq+KPPNlk5YkYiRr16Mws90t/P7gQfuZYZV650
jOVbAsh56I4VaSQ+s9cKx/xvaedQjpBNDivEzMuYFPOLkS7v8PmwRQu8u9qXs36E
6H8QZGAHo/4PyFILMwVrVMYoXs0stvBPFwEg+liFwq00w7R1ltycTqh3VnE1PY/Y
yq40A5UxmYOIZOoxb6+RvVVeHDY/1AxNgLrsbQOrZtk2FYzEOnkoZEAUAwv6zV4X
MD+IYDkVF8Bx5N2XhDLmuRLF7pu/QmGwnJb/fnVVwaP8U8YHdat7iUmpTj7NSraK
VoWrQLYnW5skfdJjxU+20DRichb0tooiVUikidxRsAWk
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:21:30 2024 by rpki-client on console-fra.rpki-client.org