Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer
File: M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer (raw, json)
Hash identifier: nC2jDYBC7zG91WGbYxndgVkVRBjutJunQDCwAtmyHuU=
Subject key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B7A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 18 Aug 2023 17:02:25 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 134373
IP: 45.122.136.0/22
IP: 103.63.4.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 19:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112549 (0x1b7a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 18 17:02:25 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:79:0a:0b:e3:f7:25:b7:d1:ee:b4:16:83:4e:
44:e0:07:9a:6d:d6:50:bc:9e:5f:22:7d:d2:ff:67:
3d:1f:53:21:ff:2c:9c:29:ae:4e:ef:02:c7:3e:cc:
dd:b4:ff:b5:80:ad:f0:31:e7:b8:79:47:6a:e1:b0:
c0:cb:58:16:71:40:83:ae:f3:62:b2:26:cc:4f:54:
22:99:5b:7b:b5:23:23:eb:44:62:11:4d:a9:f8:9f:
1e:85:9d:e8:bf:01:76:32:3f:03:91:e6:92:cf:ab:
ce:83:e5:09:49:31:7e:de:9a:93:d8:5d:ba:ab:fe:
80:1d:f4:e1:24:78:e5:cf:9d:9c:a8:e5:df:2c:a4:
62:f0:a3:26:12:f9:09:e7:f5:12:f7:ad:ef:f0:74:
e0:96:66:ab:40:36:da:6c:53:28:50:03:e7:da:71:
89:39:40:cb:33:78:cd:07:bd:b2:60:9c:1e:84:3d:
78:c5:9a:22:0b:0a:3a:7a:0e:23:81:83:66:a4:24:
5c:b8:a0:0c:c8:66:f3:a8:44:22:7a:d3:97:a4:d3:
a9:92:8c:6b:c6:27:91:46:f4:d8:13:80:56:72:6c:
ec:0c:e3:d5:9e:23:c9:10:a5:dc:98:dc:6a:af:15:
6f:81:3f:d6:e4:86:83:e8:c3:47:ac:7f:e9:ae:cc:
e1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134373
sbgp-ipAddrBlock: critical
IPv4:
45.122.136.0/22
103.63.4.0/22
Signature Algorithm: sha256WithRSAEncryption
24:10:8c:74:d6:de:e9:d5:75:d5:b6:4b:1a:b3:99:7b:80:c2:
8a:84:61:01:50:6a:8b:5d:81:b6:25:24:30:bd:14:80:26:8b:
04:64:0d:5e:bd:55:01:4b:d4:e4:ca:b1:29:fe:17:f1:ca:1b:
1b:79:54:37:17:ca:ca:07:b4:e7:91:b9:18:85:34:3f:ec:6b:
92:7d:64:52:70:c9:df:f5:48:f0:e6:ad:f2:1c:06:25:f1:17:
36:4d:9f:d3:5a:af:7a:b2:22:91:08:29:b6:90:27:30:6e:58:
a1:bc:e7:53:ae:6a:ee:af:25:16:bd:ff:3d:bc:3a:d7:c9:7a:
9b:dd:1d:1c:a3:5a:e6:d2:4e:9e:9a:9b:67:8d:e9:af:8d:59:
05:77:35:f1:8b:04:46:6a:13:da:a0:69:21:bc:5f:c8:5c:d9:
c3:bd:5c:5e:ac:20:2c:27:c0:9b:09:4a:b8:1d:63:f1:e6:af:
38:df:f4:98:c9:00:b8:03:2a:20:c1:96:8d:ff:db:cc:b8:48:
e8:31:ab:03:40:3d:16:6a:cd:2d:36:7d:00:d8:42:b8:1a:db:
8c:fe:cd:f3:c6:9b:d5:8a:06:33:f8:67:88:48:3e:26:7f:a3:
23:90:ed:48:e2:48:22:33:5d:c8:14:56:46:7e:27:44:5f:04:
72:c6:44:57
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgIDAbelMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgxODE3MDIyNVoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2
NUQ0NzA3ODFBNUNDNzcyQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC6eQoL4/clt9HutBaDTkTgB5pt1lC8nl8ifdL/Zz0fUyH/LJwprk7vAsc+zN20
/7WArfAx57h5R2rhsMDLWBZxQIOu82KyJsxPVCKZW3u1IyPrRGIRTan4nx6Fnei/
AXYyPwOR5pLPq86D5QlJMX7empPYXbqr/oAd9OEkeOXPnZyo5d8spGLwoyYS+Qnn
9RL3re/wdOCWZqtANtpsUyhQA+facYk5QMszeM0HvbJgnB6EPXjFmiILCjp6DiOB
g2akJFy4oAzIZvOoRCJ605ek06mSjGvGJ5FG9NgTgFZybOwM49WeI8kQpdyY3Gqv
FW+BP9bkhoPow0esf+muzOERAgMBAAGjggMVMIIDETAdBgNVHQ4EFgQUM7aVMpWA
EDjwF/pl1HB4GlzHcsAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTkxRTA4LzlFQzYzMUVDQzYwOTExRUNCNDYwRUM1N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5MUUwOC85RUM2MzFFQ0M2MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBX
QUVEandGX3BsMUhCNEdsekhjc0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgzlMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLXqIAwQCZz8E
MA0GCSqGSIb3DQEBCwUAA4IBAQAkEIx01t7p1XXVtksas5l7gMKKhGEBUGqLXYG2
JSQwvRSAJosEZA1evVUBS9TkyrEp/hfxyhsbeVQ3F8rKB7TnkbkYhTQ/7GuSfWRS
cMnf9Ujw5q3yHAYl8Rc2TZ/TWq96siKRCCm2kCcwblihvOdTrmruryUWvf89vDrX
yXqb3R0co1rm0k6emptnjemvjVkFdzXxiwRGahPaoGkhvF/IXNnDvVxerCAsJ8Cb
CUq4HWPx5q843/SYyQC4AyogwZaN/9vMuEjoMasDQD0Was0tNn0A2EK4GtuM/s3z
xpvVigYz+GeISD4mf6MjkO1I4kgiM13IFFZGfidEXwRyxkRX
-----END CERTIFICATE-----
Generated at Tue Apr 16 20:24:00 2024 by rpki-client on console-fra.rpki-client.org