Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdHLvF31vfq7s62vErACVrfxjRI.cer
File: HdHLvF31vfq7s62vErACVrfxjRI.cer (raw, json)
Hash identifier: G+eNkROf8bQ1RouuLEB3lqFlg2QQrwsCPNSe5qBQt9E=
Subject key identifier: 1D:D1:CB:BC:5D:F5:BD:FA:BB:B3:AD:AF:12:B0:02:56:B7:F1:8D:12
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E46A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/HdHLvF31vfq7s62vErACVrfxjRI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Mar 2024 01:55:36 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 136419
AS: 137707
AS: 152300
IP: 2401:72a0::/32
IP: 2402:ca40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124010 (0x1e46a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 14 01:55:36 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A915ADC4/serialNumber=1DD1CBBC5DF5BDFABBB3ADAF12B00256B7F18D12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9c:63:12:d6:5b:18:c3:de:d9:fe:ac:ce:be:
0a:4e:76:6b:9c:02:99:a6:12:a5:1b:8c:1a:62:f9:
59:cd:a5:a2:7d:fa:48:82:00:35:a1:d4:55:d3:2b:
8e:b4:a3:41:77:78:cb:ae:d6:58:ae:fd:97:60:6a:
19:26:37:74:b5:97:25:97:ae:ad:40:f4:dd:b8:bd:
8b:84:58:bd:2c:13:fa:45:86:5f:47:f0:e0:e1:80:
1e:74:14:fc:86:c2:c2:08:e3:2f:f4:5a:f6:c3:74:
b0:e1:5b:9b:dc:02:79:83:d3:c6:96:0e:7d:03:57:
2a:b7:a1:19:b0:6d:44:23:cf:b8:ac:15:5d:a8:39:
3d:92:b0:58:35:79:e8:3e:27:91:c6:b7:b4:53:c5:
94:5e:3d:43:60:d2:8f:7f:14:cb:04:8d:bf:f2:e2:
c9:9f:08:3f:7e:8a:41:60:f3:16:82:35:43:bc:bb:
9e:3c:f8:09:05:4d:00:36:5a:b7:9d:d8:d6:09:ca:
7d:63:05:18:5f:46:1c:c5:1a:33:a5:51:87:fe:fd:
eb:6b:4f:6a:bc:d3:b7:76:3e:3b:22:e5:57:63:19:
dc:17:1a:06:bf:e1:29:fe:fe:5b:f6:51:68:f2:ef:
3d:4e:14:2e:72:e4:93:60:b2:33:7f:f7:3c:be:e2:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D1:CB:BC:5D:F5:BD:FA:BB:B3:AD:AF:12:B0:02:56:B7:F1:8D:12
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/HdHLvF31vfq7s62vErACVrfxjRI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136419
137707
152300
sbgp-ipAddrBlock: critical
IPv6:
2401:72a0::/32
2402:ca40::/32
Signature Algorithm: sha256WithRSAEncryption
2f:37:84:a8:db:84:b8:5d:6d:5d:a1:12:b0:a3:10:c3:25:dc:
0c:7a:de:c4:c4:71:bf:a5:bf:34:ad:30:6a:82:49:78:68:f1:
45:33:53:75:39:4a:e5:5e:95:1d:88:be:1a:04:03:62:c6:4f:
9d:36:02:6a:50:cc:2f:9d:81:30:b3:de:54:32:5c:b7:85:f3:
04:d7:48:45:7c:ee:ec:46:71:1a:26:1a:3e:ac:c2:69:fb:a8:
0e:c0:47:9d:95:25:21:ca:87:41:fe:03:3b:18:f4:61:69:55:
55:3a:86:fe:92:b3:04:73:2d:f9:53:fa:af:42:de:7e:10:86:
5b:47:2b:10:58:20:e6:7c:15:8f:be:ff:22:a6:be:5b:e2:85:
26:8d:eb:14:c0:bc:e2:a7:10:a8:ea:1f:50:1a:49:d2:ba:83:
8c:6c:10:db:a6:32:dc:e4:03:6e:7e:32:ae:77:66:df:25:01:
42:9a:75:88:a9:4a:ba:4e:f3:1d:01:2d:81:60:56:9d:84:f4:
92:0f:ac:34:4d:ce:bd:cb:10:30:de:48:23:48:20:d7:da:0f:
75:51:9e:22:b2:46:79:45:19:94:4a:02:c9:e0:ef:5d:bf:73:
bc:3a:f0:df:f3:52:02:98:c6:c8:a4:d6:e3:93:cd:31:3b:a0:
cf:11:4b:76
-----BEGIN CERTIFICATE-----
MIIGLDCCBRSgAwIBAgIDAeRqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMxNDAxNTUzNloXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUFEQzQxMTAvBgNVBAUTKDFERDFDQkJDNURGNUJERkFCQkIzQURB
RjEyQjAwMjU2QjdGMThEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCdnGMS1lsYw97Z/qzOvgpOdmucApmmEqUbjBpi+VnNpaJ9+kiCADWh1FXTK460
o0F3eMuu1liu/ZdgahkmN3S1lyWXrq1A9N24vYuEWL0sE/pFhl9H8ODhgB50FPyG
wsII4y/0WvbDdLDhW5vcAnmD08aWDn0DVyq3oRmwbUQjz7isFV2oOT2SsFg1eeg+
J5HGt7RTxZRePUNg0o9/FMsEjb/y4smfCD9+ikFg8xaCNUO8u548+AkFTQA2Wred
2NYJyn1jBRhfRhzFGjOlUYf+/etrT2q807d2Pjsi5VdjGdwXGga/4Sn+/lv2UWjy
7z1OFC5y5JNgsjN/9zy+4s89AgMBAAGjggMhMIIDHTAdBgNVHQ4EFgQUHdHLvF31
vfq7s62vErACVrfxjRIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVBREM0LzYxNDE1RjU4QTlGNzExRUU4RUI0OEQyMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1QURDNC82MTQxNUY1OEE5RjcxMUVFOEVCNDhEMjJDNEY5QUUwMi9IZEhMdkYz
MXZmcTdzNjJ2RXJBQ1ZyZnhqUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQgBAf8EFTAT
oBEwDwIDAhTjAgMCGesCAwJS7DAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAIwDgMF
ACQBcqADBQAkAspAMA0GCSqGSIb3DQEBCwUAA4IBAQAvN4So24S4XW1doRKwoxDD
JdwMet7ExHG/pb80rTBqgkl4aPFFM1N1OUrlXpUdiL4aBANixk+dNgJqUMwvnYEw
s95UMly3hfME10hFfO7sRnEaJho+rMJp+6gOwEedlSUhyodB/gM7GPRhaVVVOob+
krMEcy35U/qvQt5+EIZbRysQWCDmfBWPvv8ipr5b4oUmjesUwLzipxCo6h9QGknS
uoOMbBDbpjLc5ANufjKud2bfJQFCmnWIqUq6TvMdAS2BYFadhPSSD6w0Tc69yxAw
3kgjSCDX2g91UZ4iskZ5RRmUSgLJ4O9dv3O8OvDf81ICmMbIpNbjk80xO6DPEUt2
-----END CERTIFICATE-----
Generated at Thu May 2 11:35:10 2024 by rpki-client on console-fra.rpki-client.org