Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNcVUq-qATj5pk4BYO7wYJYGUyM.cer
File: PNcVUq-qATj5pk4BYO7wYJYGUyM.cer (raw, json)
Hash identifier: yYpWWXhVczIXIRs6L1vAJxW7fAcwEaPj9eQsvyuwsE8=
Subject key identifier: 3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CAB3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Nov 2023 06:27:45 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 136418
IP: 202.47.164.0/23
IP: 2001:df3:2440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117427 (0x1cab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 06:27:45 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9196CE1/serialNumber=3CD71552AFAA0138F9A64E0160EEF06096065323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:56:54:f0:47:58:0e:45:47:1a:8e:07:cc:e2:
96:d1:8c:e9:37:1b:39:d0:2a:af:8d:2e:a3:31:fa:
30:30:e7:d4:97:9b:68:fd:27:27:18:e1:64:9b:06:
ce:bf:b0:81:72:f5:f9:68:28:fc:a0:5a:ab:71:9f:
69:51:e3:67:58:20:f4:6a:54:03:d3:97:57:22:43:
8d:71:80:f1:99:31:b1:22:e0:43:73:f7:04:30:96:
0f:6a:a0:7a:08:5f:f4:d8:32:2d:d9:ee:70:23:ce:
74:fe:05:df:a4:88:de:ff:38:8e:90:2f:79:08:11:
8a:c1:e9:da:59:50:c8:6c:82:28:0a:3c:18:2f:86:
d0:52:dc:74:4f:5c:bf:5d:cc:bf:b4:ff:24:8e:99:
2f:86:7e:71:44:ce:66:68:38:dd:44:03:34:0a:b8:
3f:05:df:68:f2:f5:5c:66:1a:c4:55:f6:4a:f4:05:
ec:fd:38:32:cd:87:00:42:53:74:a9:f1:e2:91:28:
0a:fa:9b:cd:8c:20:f9:e4:9e:ab:a0:89:ad:c6:e4:
a8:e7:5f:f3:a2:bb:67:d8:2f:68:1a:c0:5c:2d:74:
8e:57:95:b2:98:9a:d8:52:8e:bb:c9:1a:73:f3:ad:
17:ac:01:3b:60:76:1c:5e:b6:dc:71:52:17:db:a3:
d8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D7:15:52:AF:AA:01:38:F9:A6:4E:01:60:EE:F0:60:96:06:53:23
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9196CE1/E881E8EC82B611EE9BFC061DC4F9AE02/PNcVUq-qATj5pk4BYO7wYJYGUyM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136418
sbgp-ipAddrBlock: critical
IPv4:
202.47.164.0/23
IPv6:
2001:df3:2440::/48
Signature Algorithm: sha256WithRSAEncryption
26:3c:f2:7d:23:52:4d:59:53:8d:1c:0a:54:c1:2d:f1:15:85:
1e:78:27:2d:ba:00:63:f2:2b:79:51:e3:01:c0:c2:ca:1f:71:
ef:5d:82:fd:7a:d5:d5:d9:33:97:fa:f8:32:79:37:8b:50:69:
9f:fd:c8:e6:20:d5:c7:6f:9c:b8:72:c7:40:dd:47:38:5a:6a:
52:d9:a8:53:fa:69:67:9b:d1:da:67:bd:0c:cb:e6:73:25:91:
52:4a:ee:f3:94:ab:9d:24:35:78:93:a1:c0:b1:29:dc:0f:19:
61:86:22:02:2d:0a:14:c1:9b:db:55:29:01:80:c4:3a:a0:ca:
a2:85:b9:0a:99:2c:3f:41:2d:b0:a4:ef:26:a8:ee:2f:6d:65:
3d:4a:40:e9:b2:30:6e:70:88:b4:cc:87:c0:2e:20:8f:62:dd:
15:1d:b6:48:dc:82:cb:40:b9:cd:e7:78:3e:47:bf:e2:29:66:
3c:5e:40:9b:47:de:ab:de:35:96:26:23:53:b6:0e:3c:29:40:
e7:a8:04:77:97:d4:c8:e7:d1:9c:db:ac:06:47:80:09:36:06:
77:34:f3:0e:ba:f8:b3:2d:d1:f4:9f:68:ea:77:0b:3d:39:1c:
9a:fb:0b:86:97:d6:ef:ff:d3:7b:7c:99:51:ad:f1:b3:09:a8:
12:c0:e9:5f
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcqzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTExNDA2Mjc0NVoXDTI1MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTZDRTExMTAvBgNVBAUTKDNDRDcxNTUyQUZBQTAxMzhGOUE2NEUw
MTYwRUVGMDYwOTYwNjUzMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCrVlTwR1gORUcajgfM4pbRjOk3GznQKq+NLqMx+jAw59SXm2j9JycY4WSbBs6/
sIFy9floKPygWqtxn2lR42dYIPRqVAPTl1ciQ41xgPGZMbEi4ENz9wQwlg9qoHoI
X/TYMi3Z7nAjznT+Bd+kiN7/OI6QL3kIEYrB6dpZUMhsgigKPBgvhtBS3HRPXL9d
zL+0/ySOmS+GfnFEzmZoON1EAzQKuD8F32jy9VxmGsRV9kr0Bez9ODLNhwBCU3Sp
8eKRKAr6m82MIPnknqugia3G5KjnX/Oiu2fYL2gawFwtdI5XlbKYmthSjrvJGnPz
rResATtgdhxettxxUhfbo9jrAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUPNcVUq+q
ATj5pk4BYO7wYJYGUyMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTk2Q0UxL0U4ODFFOEVDODJCNjExRUU5QkZDMDYxREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5NkNFMS9FODgxRThFQzgyQjYxMUVFOUJGQzA2MURDNEY5QUUwMi9QTmNWVXEt
cUFUajVwazRCWU83d1lKWUdVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhTiMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQByi+kMA8EAgAC
MAkDBwAgAQ3zJEAwDQYJKoZIhvcNAQELBQADggEBACY88n0jUk1ZU40cClTBLfEV
hR54Jy26AGPyK3lR4wHAwsofce9dgv161dXZM5f6+DJ5N4tQaZ/9yOYg1cdvnLhy
x0DdRzhaalLZqFP6aWeb0dpnvQzL5nMlkVJK7vOUq50kNXiTocCxKdwPGWGGIgIt
ChTBm9tVKQGAxDqgyqKFuQqZLD9BLbCk7yao7i9tZT1KQOmyMG5wiLTMh8AuII9i
3RUdtkjcgstAuc3neD5Hv+IpZjxeQJtH3qveNZYmI1O2DjwpQOeoBHeX1Mjn0Zzb
rAZHgAk2Bnc08w66+LMt0fSfaOp3Cz05HJr7C4aX1u//03t8mVGt8bMJqBLA6V8=
-----END CERTIFICATE-----
Generated at Thu May 2 08:52:34 2024 by rpki-client on console-fra.rpki-client.org