Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqTXApDMqv5dzJxdpfW-J_7d5F4.cer
File: PqTXApDMqv5dzJxdpfW-J_7d5F4.cer (raw, json)
Hash identifier: UzoHiqgx1hRd+MLEH4oQrhTOxhzEh1FmYFU/Vg90h7E=
Subject key identifier: 3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B267
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jul 2023 12:44:00 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 24543
IP: 202.14.196.0/22
IP: 203.17.32.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111207 (0x1b267)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 27 12:44:00 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A911FA74/serialNumber=3EA4D70290CCAAFE5DCC9C5DA5F5BE27FEDDE45E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:eb:fc:b9:c1:7e:bc:65:5c:4d:41:ba:3c:d7:
d5:c4:f8:62:05:20:91:46:61:df:ed:ba:a6:b6:38:
50:99:46:2c:80:70:48:75:c6:38:9f:73:eb:a9:0e:
ea:c5:3b:6b:e4:6d:4f:95:dc:36:cf:75:90:84:4a:
5f:4f:a1:c8:9a:e8:f5:98:15:b1:23:90:69:2c:e2:
d7:6c:4a:ba:88:15:79:49:f2:c1:3f:63:e9:eb:ea:
c2:17:8a:63:f1:f9:ba:02:e0:93:fc:84:06:25:32:
df:62:6d:2b:8b:bc:da:6b:88:90:a5:83:46:34:09:
79:28:e6:05:e6:16:11:41:92:f5:a0:b9:1e:9a:04:
43:ad:ce:c3:34:8b:b8:a4:63:e2:4a:96:6d:47:6b:
1d:c8:01:a5:d9:ce:7e:1a:32:30:ce:02:f9:1f:6e:
8d:83:1b:29:78:7e:b6:fd:06:35:da:9e:c9:33:ee:
06:dc:ab:b8:a9:cf:5b:3b:4d:fe:93:d3:98:72:71:
37:f8:2c:bc:09:69:c4:58:a5:de:99:69:e6:02:81:
8c:f8:2c:c8:b4:6e:85:a8:ea:52:56:b1:b0:77:ab:
e4:9a:51:e9:09:ec:ae:5c:10:1b:8e:d1:51:d3:36:
59:54:af:69:9b:d1:e8:5b:eb:3f:aa:73:46:6f:0f:
53:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A4:D7:02:90:CC:AA:FE:5D:CC:9C:5D:A5:F5:BE:27:FE:DD:E4:5E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911FA74/6101B5B61D8F11E2847C5FEE08B02CD2/PqTXApDMqv5dzJxdpfW-J_7d5F4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24543
sbgp-ipAddrBlock: critical
IPv4:
202.14.196.0/22
203.17.32.0/22
Signature Algorithm: sha256WithRSAEncryption
44:4e:f3:d0:2a:77:a2:65:1b:d9:08:bb:71:16:db:50:e5:02:
d4:f2:2e:22:c1:9a:99:6b:72:a0:a7:dc:53:a2:79:1d:ee:18:
e0:4b:a4:90:29:51:ac:6b:9c:f2:63:6a:c0:09:4e:1c:cf:0f:
f3:c4:56:82:3f:91:3d:8b:91:46:ca:c4:13:c2:3f:0d:e8:b7:
e7:a5:b8:d9:d7:0b:e9:c1:cd:67:3b:98:eb:b3:1f:c9:09:25:
d3:a6:84:b5:c3:51:1a:75:f6:37:d2:fa:74:b9:c6:df:28:8e:
40:7d:d9:74:22:23:6a:81:67:2c:e2:a1:bd:5d:46:c1:54:0b:
21:03:ba:bb:c7:a9:48:c8:fe:0e:0c:59:71:ab:8d:8f:17:74:
35:75:ed:8d:b7:c8:6c:f4:72:d9:fc:ad:c1:6f:69:df:37:d8:
e4:cd:3a:94:44:2f:f6:0b:98:4a:99:b5:cb:34:e8:68:7d:24:
06:64:92:3d:3b:0e:58:64:a6:b6:ad:e3:0d:1d:52:7a:88:c2:
c8:eb:63:b6:24:3b:da:69:5d:a4:9e:37:2e:d8:a1:85:87:01:
d5:30:6e:e5:6f:7e:69:f0:83:2f:b1:57:96:c0:c3:ef:f7:8d:
65:9e:5c:08:f3:aa:9b:0a:5d:36:41:f8:82:2c:97:ef:2b:04:
58:e1:d4:0e
-----BEGIN CERTIFICATE-----
MIIGHzCCBQegAwIBAgIDAbJnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcyNzEyNDQwMFoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUZBNzQxMTAvBgNVBAUTKDNFQTRENzAyOTBDQ0FBRkU1RENDOUM1
REE1RjVCRTI3RkVEREU0NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCy6/y5wX68ZVxNQbo819XE+GIFIJFGYd/tuqa2OFCZRiyAcEh1xjifc+upDurF
O2vkbU+V3DbPdZCESl9Pocia6PWYFbEjkGks4tdsSrqIFXlJ8sE/Y+nr6sIXimPx
+boC4JP8hAYlMt9ibSuLvNpriJClg0Y0CXko5gXmFhFBkvWguR6aBEOtzsM0i7ik
Y+JKlm1Hax3IAaXZzn4aMjDOAvkfbo2DGyl4frb9BjXanskz7gbcq7ipz1s7Tf6T
05hycTf4LLwJacRYpd6ZaeYCgYz4LMi0boWo6lJWsbB3q+SaUekJ7K5cEBuO0VHT
NllUr2mb0ehb6z+qc0ZvD1OXAgMBAAGjggMUMIIDEDAdBgNVHQ4EFgQUPqTXApDM
qv5dzJxdpfW+J/7d5F4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFGQTc0LzYxMDFCNUI2MUQ4RjExRTI4NDdDNUZFRTA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExRkE3NC82MTAxQjVCNjFEOEYxMUUyODQ3QzVGRUUwOEIwMkNEMi9QcVRYQXBE
TXF2NWR6SnhkcGZXLUpfN2Q1RjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICX98wJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBALKDsQDBALLESAw
DQYJKoZIhvcNAQELBQADggEBAERO89Aqd6JlG9kIu3EW21DlAtTyLiLBmplrcqCn
3FOieR3uGOBLpJApUaxrnPJjasAJThzPD/PEVoI/kT2LkUbKxBPCPw3ot+eluNnX
C+nBzWc7mOuzH8kJJdOmhLXDURp19jfS+nS5xt8ojkB92XQiI2qBZyziob1dRsFU
CyEDurvHqUjI/g4MWXGrjY8XdDV17Y23yGz0ctn8rcFvad832OTNOpREL/YLmEqZ
tcs06Gh9JAZkkj07Dlhkprat4w0dUnqIwsjrY7YkO9ppXaSeNy7YoYWHAdUwbuVv
fmnwgy+xV5bAw+/3jWWeXAjzqpsKXTZB+IIsl+8rBFjh1A4=
-----END CERTIFICATE-----
Generated at Fri Apr 19 07:43:22 2024 by rpki-client on console-fra.rpki-client.org