Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A_8GV8Ds-HOYMDP3xsZIizN4nEM.cer
File: A_8GV8Ds-HOYMDP3xsZIizN4nEM.cer (raw, json)
Hash identifier: h2P/A72CawaHm9eATleNz+svB2ugHpFOSBVuwCcS88s=
Subject key identifier: 03:FF:06:57:C0:EC:F8:73:98:30:33:F7:C6:C6:48:8B:33:78:9C:43
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E623
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/A_8GV8Ds-HOYMDP3xsZIizN4nEM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 24 Mar 2024 17:31:31 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 152593
IP: 2001:df3:81c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:14:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124451 (0x1e623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 24 17:31:31 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A918CFAD/serialNumber=03FF0657C0ECF873983033F7C6C6488B33789C43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:24:d7:c8:9b:cd:64:1d:53:76:75:00:ac:05:
dc:ac:2d:b2:6c:a8:bd:d6:84:6d:00:d8:ca:4c:19:
48:33:14:a6:6d:b5:7c:32:f4:9e:ab:6f:30:05:eb:
16:b1:16:11:cc:86:39:1a:4b:a3:c2:54:65:28:e0:
4b:68:92:7d:b9:26:60:0d:a3:43:67:32:b8:24:bb:
78:8e:9b:1a:79:e0:f4:0e:93:fa:95:d1:cc:7f:9b:
c2:4c:49:ab:8d:23:65:b7:4b:24:db:0e:4e:a8:3e:
6b:bc:b2:23:a1:40:24:08:eb:ea:eb:51:0a:3d:fa:
62:05:4e:93:88:67:4b:a3:56:17:9e:36:80:11:14:
5a:91:ff:24:39:f0:b7:bc:a1:86:67:3a:6f:24:ca:
e9:e5:89:b9:f7:70:eb:33:c3:8c:79:0f:25:cb:3f:
84:3e:96:f2:8b:b7:37:bf:3e:df:a8:81:55:98:37:
9b:63:14:e4:f6:ba:2b:1b:48:4d:15:7d:8d:0f:09:
6d:27:4b:f4:49:b8:06:10:31:e4:3a:0c:de:af:76:
18:d0:73:c3:80:5a:eb:4f:4d:38:72:77:62:ba:85:
2e:b0:d8:9a:3f:08:46:50:1d:43:27:79:1b:29:6b:
d4:1c:12:a4:41:68:47:9e:e7:55:37:d9:9f:33:07:
60:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:FF:06:57:C0:EC:F8:73:98:30:33:F7:C6:C6:48:8B:33:78:9C:43
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/A_8GV8Ds-HOYMDP3xsZIizN4nEM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152593
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:81c0::/48
Signature Algorithm: sha256WithRSAEncryption
18:f8:16:de:d3:50:d9:7f:67:c3:c1:ce:f0:0f:93:4e:77:ac:
8b:2d:f0:e1:a0:5c:9b:fb:0e:59:a2:c9:d6:bd:ce:57:75:0c:
f8:79:89:6d:57:85:26:c6:b9:60:6d:d5:aa:f8:a0:d0:ec:07:
6f:50:b5:00:2b:c3:57:9e:f8:70:0a:02:6b:9d:2c:ca:61:b5:
f3:80:2b:1e:ac:ff:6b:93:bb:f4:fe:51:3b:9d:e5:18:9c:e3:
40:c9:0d:e7:3c:26:d3:12:ba:e5:44:91:4d:2e:0d:96:4d:2f:
b9:66:29:ed:28:bb:70:72:99:e4:4d:00:b5:41:19:f0:60:18:
1f:be:a7:40:8b:c1:b6:61:7b:3d:37:ff:7b:a1:ff:8b:34:c0:
a8:b6:b0:35:ad:a8:77:c5:f6:01:cb:44:29:39:18:dd:31:19:
c4:99:74:54:54:bd:79:02:f6:cf:0a:16:88:13:ac:99:79:6b:
85:91:16:84:70:c5:02:0e:78:47:99:8d:bf:b0:ca:bf:0b:c7:
9c:d0:0c:35:0a:72:eb:84:5f:5b:9d:d8:a9:6e:db:46:28:5c:
c0:f9:f2:b9:8e:e5:8f:99:ca:f0:6e:eb:48:8c:50:e9:5f:6d:
55:6c:bc:15:f0:7b:f9:53:02:af:d3:8d:3d:3c:8e:77:d5:ee:
f0:cd:64:4b
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgIDAeYjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMyNDE3MzEzMVoXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOENGQUQxMTAvBgNVBAUTKDAzRkYwNjU3QzBFQ0Y4NzM5ODMwMzNG
N0M2QzY0ODhCMzM3ODlDNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDTJNfIm81kHVN2dQCsBdysLbJsqL3WhG0A2MpMGUgzFKZttXwy9J6rbzAF6xax
FhHMhjkaS6PCVGUo4Etokn25JmANo0NnMrgku3iOmxp54PQOk/qV0cx/m8JMSauN
I2W3SyTbDk6oPmu8siOhQCQI6+rrUQo9+mIFTpOIZ0ujVheeNoARFFqR/yQ58Le8
oYZnOm8kyunlibn3cOszw4x5DyXLP4Q+lvKLtze/Pt+ogVWYN5tjFOT2uisbSE0V
fY0PCW0nS/RJuAYQMeQ6DN6vdhjQc8OAWutPTThyd2K6hS6w2Jo/CEZQHUMneRsp
a9QcEqRBaEee51U32Z8zB2BHAgMBAAGjggMSMIIDDjAdBgNVHQ4EFgQUA/8GV8Ds
+HOYMDP3xsZIizN4nEMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThDRkFELzU2MUQ2NjJFRUEwNDExRUU5MkQxMDYxMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4Q0ZBRC81NjFENjYyRUVBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9BXzhHVjhE
cy1IT1lNRFAzeHNaSWl6TjRuRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlQRMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN84HAMA0G
CSqGSIb3DQEBCwUAA4IBAQAY+Bbe01DZf2fDwc7wD5NOd6yLLfDhoFyb+w5ZosnW
vc5XdQz4eYltV4UmxrlgbdWq+KDQ7AdvULUAK8NXnvhwCgJrnSzKYbXzgCserP9r
k7v0/lE7neUYnONAyQ3nPCbTErrlRJFNLg2WTS+5ZintKLtwcpnkTQC1QRnwYBgf
vqdAi8G2YXs9N/97of+LNMCotrA1rah3xfYBy0QpORjdMRnEmXRUVL15AvbPChaI
E6yZeWuFkRaEcMUCDnhHmY2/sMq/C8ec0Aw1CnLrhF9bndipbttGKFzA+fK5juWP
mcrwbutIjFDpX21VbLwV8Hv5UwKv0409PI531e7wzWRL
-----END CERTIFICATE-----
Generated at Thu May 2 05:58:15 2024 by rpki-client on console-ams.rpki-client.org