Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer
File:                     VWyosJdH0HtvaiekBVKNOfpbgkw.cer (raw, json)
Hash identifier:          UfJZOOA7G4S8WwOaf/GGNZogVWrZ90BNp5TT1PaDSt8=
Subject key identifier:   55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       024738
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Mon 19 May 2025 12:51:47 +0000
Certificate not after:    Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources:    AS: 140878
                          IP: 103.152.214.0/23
                          IP: 2001:df4:1d80::/48
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 19 Jun 2025 14:56:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 149304 (0x24738)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: May 19 12:51:47 2025 GMT
            Not After : Sep 30 00:00:00 2026 GMT
        Subject: CN=A912A4D7, serialNumber=556CA8B09747D07B6F6A27A405528D39FA5B824C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:3a:1a:08:71:81:aa:61:2c:45:12:f1:fb:cb:
                    9b:37:46:0c:92:50:ab:2a:9f:7a:51:b5:b0:78:b9:
                    d5:94:e1:ef:22:56:3c:aa:44:68:3f:3f:b0:ff:89:
                    dd:ba:4e:32:bb:ce:57:2c:01:93:d2:18:ba:2a:37:
                    21:a6:6d:81:8b:b9:26:a6:7c:ab:e2:7b:95:90:09:
                    d8:8b:bd:2a:29:d7:cf:00:aa:d5:4d:0d:bc:45:1a:
                    fe:68:56:de:18:bf:fc:c9:7d:09:b3:8c:e8:96:76:
                    bc:54:bf:97:0d:c3:73:38:7a:91:c9:1c:06:19:ca:
                    68:53:7a:10:1c:da:0b:59:6f:cb:3a:4b:e7:c3:0b:
                    03:c5:4b:b3:a5:95:42:cd:4a:31:8c:19:91:b9:34:
                    c3:a4:ee:30:fe:3a:51:74:61:6b:58:5c:c6:3a:0b:
                    17:ed:ac:04:b1:c7:21:c5:e7:99:89:7e:30:e8:34:
                    b3:1d:b5:c6:76:ae:c5:82:d0:df:0c:65:2e:cb:80:
                    9e:df:eb:61:13:b5:c1:f7:09:c9:d5:ef:8b:88:37:
                    b2:04:59:52:b9:52:9c:d6:54:db:9a:66:76:9b:7b:
                    95:17:a6:e1:fd:a4:e2:ec:79:56:65:42:f9:fe:3b:
                    52:56:76:24:1a:6b:75:99:5f:44:40:ea:fc:c6:58:
                    7a:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  140878

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.152.214.0/23
                IPv6:
                  2001:df4:1d80::/48

    Signature Algorithm: sha256WithRSAEncryption
         69:2f:a9:cf:67:53:63:83:8c:b0:bc:bc:91:6d:cc:b5:c0:5a:
         0c:4c:6d:78:c9:a8:50:a1:8c:fb:26:c7:6a:58:8e:fa:56:eb:
         de:7f:4c:f2:28:92:19:02:d6:c9:59:5d:50:c6:92:de:07:29:
         58:00:c8:0b:53:a2:34:51:8d:76:45:bc:7e:09:e5:24:43:f5:
         c2:bb:8b:f5:31:57:56:38:51:b0:ed:d1:96:de:35:84:a6:e2:
         41:53:94:f0:1c:b7:01:d0:6e:72:24:af:12:dc:40:97:d9:e4:
         f5:66:3f:09:80:a8:55:4f:7f:c8:61:3c:bb:e2:d1:2c:e6:03:
         cd:38:6a:03:99:86:ab:da:a0:c6:f2:3d:2d:95:70:b7:b6:78:
         29:01:f7:0f:83:c6:aa:33:26:03:12:74:f2:19:a5:b1:01:b4:
         8c:ae:c1:98:07:66:da:2e:de:34:06:5c:21:cb:e0:b6:91:c8:
         00:3a:97:f3:61:d7:48:db:7c:c6:64:e1:6e:e7:a6:59:4b:24:
         b0:17:b6:99:20:af:2c:51:1b:3c:2b:8a:0c:e1:09:11:71:c0:
         9f:c6:69:80:45:de:49:e8:d7:d4:71:b5:63:58:3c:ff:9c:d5:
         17:e9:78:dc:59:f0:91:ac:48:b7:33:51:dc:3a:38:ec:91:1b:
         41:14:37:92
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 12 16:38:16 2025 by rpki-client