Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer
File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer (raw, json)
Hash identifier: WPHQv3E9qr3Qts5g+tJjvY1imRnBakn4BCiE7J9VhLQ=
Subject key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021C21
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Nov 2024 20:51:24 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 139744
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138273 (0x21c21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 18 20:51:24 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:33:9e:9f:d0:e9:7c:5a:51:ae:b1:fa:fd:8b:
c6:75:31:db:ad:db:02:11:e8:ae:54:68:5a:81:4c:
74:d2:b7:93:34:49:0e:57:a1:20:77:9a:2d:f1:85:
42:7d:35:ff:a4:1a:7a:b3:3f:fb:d8:ad:cd:5f:e9:
85:d2:5a:ee:f7:0c:88:16:36:e7:73:9e:02:c0:32:
06:a4:3c:55:e8:ae:60:15:e8:ef:51:39:73:59:0f:
9c:79:30:db:cd:22:d6:1f:17:9b:b4:ad:37:8a:3e:
b3:bc:b0:7f:d4:59:7b:c2:91:91:9b:43:f7:b7:79:
72:d1:8d:f5:6c:ab:7c:b5:d9:20:e8:9d:ef:d5:64:
ef:6e:39:87:6a:9f:bf:82:02:c0:77:4c:7e:70:b1:
d7:26:25:12:03:1a:9e:5f:7f:a3:11:80:dd:89:78:
c1:19:fe:17:eb:43:b4:af:70:10:65:5f:c7:f5:40:
e8:65:64:d7:7a:3b:53:5f:9e:a6:a4:64:7d:fb:f7:
aa:8d:02:3f:12:c2:e4:da:51:26:ad:02:e7:6e:50:
7f:c8:ba:36:8b:82:be:c0:93:1b:98:98:cb:be:fc:
37:49:7c:86:c6:b9:34:f4:8e:f6:8b:d7:e8:a1:2b:
c5:a8:e1:ae:91:29:24:1b:d5:fc:ab:1b:63:e6:f5:
0a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139744
Signature Algorithm: sha256WithRSAEncryption
a1:73:8c:53:4a:b0:b4:45:a8:93:0d:ca:05:c9:29:a4:06:b1:
76:6d:ca:49:f9:8f:98:a8:dc:d9:12:e7:27:87:6f:24:7e:2f:
4e:4f:b4:da:d5:be:aa:d7:b8:ab:df:b2:f0:78:d9:80:7a:c5:
ce:42:12:32:b9:22:02:a8:6f:10:4e:66:dc:e4:52:07:b1:83:
21:64:cb:d0:e6:f8:52:f4:da:5f:26:6e:fe:fb:0c:97:b1:d3:
b8:f3:e9:59:fb:6e:e3:db:dc:26:26:a3:1f:ac:38:58:96:b8:
4e:37:4a:ad:28:84:84:8b:7f:7f:9c:96:5c:b7:de:a7:f4:20:
5e:6e:41:d0:49:b2:59:bc:06:fe:f2:14:9a:e9:a0:3a:78:b3:
28:b2:ef:17:de:25:1c:fa:7a:3b:bc:30:7e:53:5f:20:09:7d:
b9:9b:37:06:5a:a5:1c:3f:78:c8:51:f8:4a:a6:35:da:c8:77:
36:00:a7:84:ce:97:dc:c1:34:d1:63:c0:a7:88:47:b6:c4:94:
59:65:5f:98:2b:16:12:4d:69:e5:28:13:39:51:50:0e:18:52:
a1:b3:72:94:7f:ef:be:96:36:c8:2b:a6:84:60:a3:36:18:52:
90:be:4d:e2:73:e5:1f:74:63:07:0c:5c:f0:db:b2:d0:06:eb:
75:69:82:a8
-----BEGIN CERTIFICATE-----
MIIF+TCCBOGgAwIBAgIDAhwhMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTExODIwNTEyNFoXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4
MDYwNjlGM0M5M0NFNjVDQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCvM56f0Ol8WlGusfr9i8Z1Mdut2wIR6K5UaFqBTHTSt5M0SQ5XoSB3mi3xhUJ9
Nf+kGnqzP/vYrc1f6YXSWu73DIgWNudzngLAMgakPFXormAV6O9ROXNZD5x5MNvN
ItYfF5u0rTeKPrO8sH/UWXvCkZGbQ/e3eXLRjfVsq3y12SDone/VZO9uOYdqn7+C
AsB3TH5wsdcmJRIDGp5ff6MRgN2JeMEZ/hfrQ7SvcBBlX8f1QOhlZNd6O1Nfnqak
ZH3796qNAj8SwuTaUSatAuduUH/IujaLgr7AkxuYmMu+/DdJfIbGuTT0jvaL1+ih
K8Wo4a6RKSQb1fyrG2Pm9QoZAgMBAAGjggLuMIIC6jAdBgNVHQ4EFgQUXPVbiKZp
3H6CEV+AYGnzyTzmXLUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQzMThBL0Y1QjVDQTgwODdFNjExRUU5N0U2Qzc0NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEMzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUta
cDNINkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiHgMA0GCSqGSIb3DQEBCwUAA4IBAQChc4xTSrC0RaiTDcoFySmkBrF2
bcpJ+Y+YqNzZEucnh28kfi9OT7Ta1b6q17ir37LweNmAesXOQhIyuSICqG8QTmbc
5FIHsYMhZMvQ5vhS9NpfJm7++wyXsdO48+lZ+27j29wmJqMfrDhYlrhON0qtKISE
i39/nJZct96n9CBebkHQSbJZvAb+8hSa6aA6eLMosu8X3iUc+no7vDB+U18gCX25
mzcGWqUcP3jIUfhKpjXayHc2AKeEzpfcwTTRY8CniEe2xJRZZV+YKxYSTWnlKBM5
UVAOGFKhs3KUf+++ljbIK6aEYKM2GFKQvk3ic+UfdGMHDFzw27LQBut1aYKo
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:34 2024 by rpki-client on console-fra.rpki-client.org