Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer
File: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer (raw, json)
Hash identifier: KIrCQbow0ahMOlldwNGJObm/tF4AcFwuNgd/GgFw8hg=
Subject key identifier: F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020738
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Aug 2024 07:12:16 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 135058
IP: 27.0.156.0/22
IP: 103.208.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 16:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132920 (0x20738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 16 07:12:16 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91AF3E2/serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:35:46:0b:ff:41:88:f0:18:3c:7e:d1:2a:b1:
ac:e2:50:10:f6:a1:74:2f:77:e2:b9:5d:36:f7:80:
75:98:c1:57:e2:08:02:86:80:2e:12:e7:b0:0b:68:
e6:72:27:99:60:9f:86:af:4b:97:42:49:94:5a:bb:
23:4b:42:ee:80:b2:95:54:33:ae:c6:5d:c1:97:c6:
26:9b:3c:1b:a0:e1:07:8d:9a:17:c3:f0:5a:f8:be:
96:e3:cf:ba:de:bd:e1:37:dc:9c:bc:7f:cb:f8:e3:
37:e3:08:c6:7f:c7:71:d0:2c:8c:66:44:e2:f7:30:
db:21:bb:d2:0e:30:46:5e:f9:ed:61:7d:b3:6b:16:
09:60:87:8f:88:27:29:2d:92:ee:bf:71:4e:4c:e7:
62:08:41:f4:b9:62:6a:a4:ad:0c:32:60:04:f6:d4:
2f:40:d8:5c:b4:25:55:47:7f:aa:55:75:04:d2:4f:
9a:0f:b6:f2:2a:7c:20:20:c9:67:74:37:77:42:ff:
3b:af:8f:d7:07:cd:15:e8:c8:41:f2:62:be:3b:b6:
e1:72:c3:0b:dd:04:1f:75:d6:fb:ae:76:a8:14:fc:
a0:a7:5d:0c:a9:0f:31:99:43:da:82:53:84:a8:a0:
f3:14:8e:e8:37:6e:39:87:43:2d:bf:ce:a6:a7:a6:
1e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135058
sbgp-ipAddrBlock: critical
IPv4:
27.0.156.0/22
103.208.8.0/22
Signature Algorithm: sha256WithRSAEncryption
83:53:db:2f:67:dc:9e:ab:82:16:ad:9e:ce:69:f6:fd:a7:b5:
32:40:ac:99:e1:d8:84:51:44:2b:d0:3a:b3:4c:d2:a1:2c:a8:
a3:df:d1:be:69:8b:bf:04:15:2e:72:58:45:68:0d:57:94:ba:
7d:85:01:bf:f6:7c:22:09:ca:78:3a:d1:51:04:4c:7f:6f:a1:
6b:fa:38:41:4f:ba:e9:01:b0:b9:2b:09:54:24:4b:5b:ec:cb:
72:3c:e0:25:65:1a:51:dd:cb:49:16:a8:4c:98:97:4f:88:39:
af:78:cf:1d:e4:cc:c8:ed:73:f0:20:16:af:2b:21:34:74:cd:
47:3e:a2:f0:44:29:bb:a8:04:81:31:b5:c1:55:4c:9e:65:c4:
9e:b7:d6:33:45:fb:10:42:1d:48:d5:02:f4:42:b6:74:c7:bc:
12:1e:a0:d8:3d:46:5e:52:0c:66:12:39:2b:f6:1e:5d:0f:f6:
b6:fb:ee:eb:45:06:44:9f:5c:a8:32:88:f7:39:86:a7:b2:15:
d6:2c:ba:6a:c4:5f:93:12:d3:5f:65:bb:53:04:09:6e:ef:25:
db:7d:71:2d:52:72:5b:b8:38:31:41:ef:03:95:98:f1:85:30:
5f:4d:dc:79:b1:bf:f6:30:c1:04:9a:38:e3:1e:4a:56:54:ca:
4d:d3:ef:20
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgIDAgc4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgxNjA3MTIxNloXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUYzRTIxMTAvBgNVBAUTKEY2QkE2RTYzMEE2QUE5OEQ4MjE1Njgy
NjRFMDI3Qjk4OERGNUM5QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDHNUYL/0GI8Bg8ftEqsaziUBD2oXQvd+K5XTb3gHWYwVfiCAKGgC4S57ALaOZy
J5lgn4avS5dCSZRauyNLQu6AspVUM67GXcGXxiabPBug4QeNmhfD8Fr4vpbjz7re
veE33Jy8f8v44zfjCMZ/x3HQLIxmROL3MNshu9IOMEZe+e1hfbNrFglgh4+IJykt
ku6/cU5M52IIQfS5YmqkrQwyYAT21C9A2Fy0JVVHf6pVdQTST5oPtvIqfCAgyWd0
N3dC/zuvj9cHzRXoyEHyYr47tuFywwvdBB911vuudqgU/KCnXQypDzGZQ9qCU4So
oPMUjug3bjmHQy2/zqanph5tAgMBAAGjggMVMIIDETAdBgNVHQ4EFgQU9rpuYwpq
qY2CFWgmTgJ7mI31ybowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFGM0UyL0RBNjIyRTlBNUI5RTExRUZCQ0RCQzU1QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBRjNFMi9EQTYyMkU5QTVCOUUxMUVGQkNEQkM1NUJDNEY5QUUwMi85cnB1WXdw
cXFZMkNGV2dtVGdKN21JMzF5Ym8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg+SMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCGwCcAwQCZ9AI
MA0GCSqGSIb3DQEBCwUAA4IBAQCDU9svZ9yeq4IWrZ7Oafb9p7UyQKyZ4diEUUQr
0DqzTNKhLKij39G+aYu/BBUuclhFaA1XlLp9hQG/9nwiCcp4OtFRBEx/b6Fr+jhB
T7rpAbC5KwlUJEtb7MtyPOAlZRpR3ctJFqhMmJdPiDmveM8d5MzI7XPwIBavKyE0
dM1HPqLwRCm7qASBMbXBVUyeZcSet9YzRfsQQh1I1QL0QrZ0x7wSHqDYPUZeUgxm
Ejkr9h5dD/a2++7rRQZEn1yoMoj3OYanshXWLLpqxF+TEtNfZbtTBAlu7yXbfXEt
UnJbuDgxQe8DlZjxhTBfTdx5sb/2MMEEmjjjHkpWVMpN0+8g
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:56:35 2024 by rpki-client on console-fra.rpki-client.org