Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQVBhnn0PKiIyyO_K8sr5pnAw2Y.cer
File: aQVBhnn0PKiIyyO_K8sr5pnAw2Y.cer (raw, json)
Hash identifier: HSkL2bAWg6a8yuVMt62aCjWFecj42w7OzFjFefCRhqI=
Subject key identifier: 69:05:41:86:79:F4:3C:A8:88:CB:23:BF:2B:CB:2B:E6:99:C0:C3:66
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DDB2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9183010/5F1DDB121DA311E293B19E9808B02CD2/aQVBhnn0PKiIyyO_K8sr5pnAw2Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9183010/5F1DDB121DA311E293B19E9808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Feb 2024 15:18:33 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 131279
IP: 175.45.176.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122290 (0x1ddb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 6 15:18:33 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9183010/serialNumber=6905418679F43CA888CB23BF2BCB2BE699C0C366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d6:6f:71:d1:a0:72:b9:44:ac:c9:e0:74:ba:
fb:a6:c5:eb:76:da:e0:04:bc:6e:f1:75:e6:62:fc:
9a:15:1e:4e:12:28:c8:60:ee:8c:9c:ab:22:16:be:
7d:c8:50:cc:92:4f:41:85:bf:4b:6a:db:e6:f6:c9:
be:d1:d6:51:ad:af:27:fc:9c:74:66:8e:55:01:e8:
4e:b2:8e:60:4c:15:59:ea:1c:82:4d:cb:20:cf:c3:
8c:ad:59:57:50:7b:08:e1:7f:0a:96:6a:82:50:50:
a9:fc:9b:ad:ff:0c:cc:66:dd:da:cc:34:ad:5f:7b:
91:e5:d3:44:d8:bb:ce:de:a8:fb:c2:e8:9f:28:d8:
c1:15:67:83:47:d8:a5:61:4d:e3:d0:bf:b0:50:1b:
e6:ca:65:b6:5e:cd:76:11:d5:46:2a:af:6c:e3:60:
bc:00:10:b5:1d:a3:ec:c9:63:98:63:0e:1c:73:68:
7e:ea:ab:31:91:85:b1:d4:65:c5:1d:a9:3c:0b:d4:
91:20:e2:e9:23:4a:c8:d2:78:14:6e:dd:c1:06:2b:
2f:5d:3f:a8:bf:cc:a6:81:d1:f8:5c:2a:b4:64:26:
0b:ba:8f:87:e6:ea:ba:f8:da:75:2e:5e:40:05:e9:
dd:fc:1a:2c:ff:3c:a8:bc:b9:6d:ac:41:46:16:39:
a0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:05:41:86:79:F4:3C:A8:88:CB:23:BF:2B:CB:2B:E6:99:C0:C3:66
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9183010/5F1DDB121DA311E293B19E9808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9183010/5F1DDB121DA311E293B19E9808B02CD2/aQVBhnn0PKiIyyO_K8sr5pnAw2Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131279
sbgp-ipAddrBlock: critical
IPv4:
175.45.176.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:8d:7b:80:7e:74:12:75:cc:bb:a2:1d:6d:51:d8:48:27:c5:
e7:17:7f:b4:0d:60:d7:dc:72:5b:ec:43:c9:90:06:1d:8b:99:
3e:ee:d5:17:89:34:72:ed:47:cc:f3:83:f1:cd:a6:94:e8:15:
d4:b4:bd:12:03:75:94:39:8c:63:63:23:2f:8d:e8:a0:73:59:
fb:1f:69:3c:19:9b:fd:bc:aa:b0:34:57:34:7b:11:21:39:47:
99:8d:48:7b:7d:bd:c1:ab:5b:b5:0d:47:ef:8a:87:af:2e:9c:
8d:a8:44:9e:c8:5f:fc:b2:d2:4f:33:9f:95:2d:44:ea:36:a9:
0b:23:f4:24:fd:8b:6d:42:55:d9:c1:6f:cb:c1:87:76:dc:6c:
e6:42:60:1f:14:5a:e0:92:db:7a:c4:f4:59:d2:cc:86:22:0e:
0c:91:10:92:dd:5d:7e:51:d6:9e:7b:c2:be:c3:75:ac:a8:4a:
5a:95:1e:c2:1c:cd:ec:7a:01:c1:bb:ec:e1:45:28:2f:42:7d:
70:cd:aa:a0:fb:80:97:c9:0a:dc:da:4a:87:30:cf:8b:aa:0c:
c9:8f:92:50:64:10:02:e7:8f:a7:a0:97:19:60:bd:cc:43:0c:
88:4c:f5:79:c4:96:e7:25:b6:32:c7:59:8d:a1:c5:e5:02:ef:
bf:4b:eb:e0
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAd2yMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDIwNjE1MTgzM1oXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODMwMTAxMTAvBgNVBAUTKDY5MDU0MTg2NzlGNDNDQTg4OENCMjNC
RjJCQ0IyQkU2OTlDMEMzNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDX1m9x0aByuUSsyeB0uvumxet22uAEvG7xdeZi/JoVHk4SKMhg7oycqyIWvn3I
UMyST0GFv0tq2+b2yb7R1lGtryf8nHRmjlUB6E6yjmBMFVnqHIJNyyDPw4ytWVdQ
ewjhfwqWaoJQUKn8m63/DMxm3drMNK1fe5Hl00TYu87eqPvC6J8o2MEVZ4NH2KVh
TePQv7BQG+bKZbZezXYR1UYqr2zjYLwAELUdo+zJY5hjDhxzaH7qqzGRhbHUZcUd
qTwL1JEg4ukjSsjSeBRu3cEGKy9dP6i/zKaB0fhcKrRkJgu6j4fm6rr42nUuXkAF
6d38Giz/PKi8uW2sQUYWOaCbAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUaQVBhnn0
PKiIyyO/K8sr5pnAw2YwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTgzMDEwLzVGMUREQjEyMURBMzExRTI5M0IxOUU5ODA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4MzAxMC81RjFEREIxMjFEQTMxMUUyOTNCMTlFOTgwOEIwMkNEMi9hUVZCaG5u
MFBLaUl5eU9fSzhzcjVwbkF3MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgDPMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCry2wMA0GCSqG
SIb3DQEBCwUAA4IBAQC8jXuAfnQSdcy7oh1tUdhIJ8XnF3+0DWDX3HJb7EPJkAYd
i5k+7tUXiTRy7UfM84PxzaaU6BXUtL0SA3WUOYxjYyMvjeigc1n7H2k8GZv9vKqw
NFc0exEhOUeZjUh7fb3Bq1u1DUfvioevLpyNqESeyF/8stJPM5+VLUTqNqkLI/Qk
/YttQlXZwW/LwYd23GzmQmAfFFrgktt6xPRZ0syGIg4MkRCS3V1+Udaee8K+w3Ws
qEpalR7CHM3segHBu+zhRSgvQn1wzaqg+4CXyQrc2kqHMM+LqgzJj5JQZBAC54+n
oJcZYL3MQwyITPV5xJbnJbYyx1mNocXlAu+/S+vg
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:45 2024 by rpki-client on console-fra.rpki-client.org