Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer
File: dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer (raw, json)
Hash identifier: HG/IDnRE1JUssD0WVkvT/rpYoNquRSZ/2J2Rn1eraB0=
Subject key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D96
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 14 Sep 2024 18:26:43 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.99.60.0/22
IP: 2401:a940::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:58:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134550 (0x20d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 14 18:26:43 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a9:26:64:be:6d:e4:84:3b:2b:88:32:d2:c4:
7d:19:0c:bb:07:5c:21:c4:c2:85:0a:2e:22:a5:b0:
2e:cd:d7:ea:89:d0:1a:10:a6:16:1f:d2:37:87:40:
1c:a8:df:30:a5:74:f9:c8:36:6d:0b:03:21:ce:25:
4d:d2:98:38:6b:4c:e7:d7:8a:2d:71:4e:c5:df:b0:
84:4b:da:0f:46:2e:c1:b9:ff:84:51:01:40:1a:06:
11:a8:2b:4b:a0:31:ed:e9:ad:ed:45:a2:ea:1f:b1:
a5:bf:40:d4:b7:26:be:78:66:c2:55:80:80:72:be:
31:76:e7:b2:2a:df:03:e5:d8:5b:24:4a:22:86:84:
98:5c:75:85:9c:e9:ff:dc:36:77:ec:0c:b3:17:ff:
f6:5a:ef:23:b9:92:64:5f:6e:53:4b:0a:53:7e:15:
c0:24:af:5d:c5:34:6e:ce:a5:9e:f5:20:a1:89:04:
5e:7c:18:6c:60:7c:99:b4:01:b1:46:2e:c7:7f:1e:
ce:ea:38:46:33:cd:40:00:69:34:5d:f2:5d:4a:63:
c0:bd:d9:5b:37:30:93:76:74:95:2d:97:98:fb:25:
1f:ef:7d:35:95:99:28:7a:24:6b:51:49:ce:9a:a8:
76:48:85:60:1f:a2:ad:9b:06:b6:cf:03:52:e0:78:
01:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.60.0/22
IPv6:
2401:a940::/32
Signature Algorithm: sha256WithRSAEncryption
23:55:b8:e4:93:97:b1:96:d1:db:51:c2:58:a2:22:46:7a:8a:
72:57:4a:90:66:af:1a:41:7d:f3:1b:d4:ac:20:15:66:b2:89:
54:66:e5:9f:b1:9f:3c:a2:75:01:c4:10:8a:67:0d:f8:ed:f6:
62:63:a1:45:f0:1b:1a:4b:c4:c6:cd:3b:74:d3:cb:65:be:21:
fb:21:2a:e3:15:c1:5b:ff:4e:cd:59:5b:5c:42:2f:b7:0a:76:
07:2e:90:a9:16:d6:99:00:69:91:58:39:d3:d8:cd:02:8f:d3:
f8:c3:59:2a:b2:64:22:11:70:da:9e:db:28:dd:c4:ab:f5:72:
a9:bb:3c:28:ec:eb:f5:7c:2d:fa:5c:b8:65:dc:61:59:e8:79:
12:4d:59:82:c3:f1:68:76:98:07:da:8e:ad:49:ca:68:0c:03:
c4:cf:09:1d:36:8e:8b:69:14:2e:7f:4a:be:52:50:4c:40:8f:
dd:56:82:49:dd:9e:e4:91:6a:66:dd:9a:14:cf:76:de:3f:8b:
72:06:89:ee:3c:ba:b6:79:25:79:1a:0d:01:1c:9e:bb:c0:0f:
52:f6:da:e7:2c:cd:03:76:99:a4:4b:03:a7:41:1f:9b:92:2f:
96:82:2f:a8:42:3a:2d:4b:32:87:34:cf:9c:84:da:03:60:48:
25:d8:3f:47
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAg2WMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDkxNDE4MjY0M1oXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIz
NkEyQTVBNTBBRjA5Rjg0MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDdqSZkvm3khDsriDLSxH0ZDLsHXCHEwoUKLiKlsC7N1+qJ0BoQphYf0jeHQByo
3zCldPnINm0LAyHOJU3SmDhrTOfXii1xTsXfsIRL2g9GLsG5/4RRAUAaBhGoK0ug
Me3pre1FouofsaW/QNS3Jr54ZsJVgIByvjF257Iq3wPl2FskSiKGhJhcdYWc6f/c
NnfsDLMX//Za7yO5kmRfblNLClN+FcAkr13FNG7OpZ71IKGJBF58GGxgfJm0AbFG
Lsd/Hs7qOEYzzUAAaTRd8l1KY8C92Vs3MJN2dJUtl5j7JR/vfTWVmSh6JGtRSc6a
qHZIhWAfoq2bBrbPA1LgeAGPAgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUdsjgEVVJ
7akt4iI2oqWlCvCfhBEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIyOUY4LzkyRDBCRTAyOTA2ODExRUI5RTNGQzY2Q0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCMjlGOC85MkQwQkUwMjkwNjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZW
Sjdha3Q0aUkyb3FXbEN2Q2ZoQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAJnYzwwDQQCAAIwBwMFACQBqUAwDQYJKoZIhvcNAQELBQADggEB
ACNVuOSTl7GW0dtRwliiIkZ6inJXSpBmrxpBffMb1KwgFWayiVRm5Z+xnzyidQHE
EIpnDfjt9mJjoUXwGxpLxMbNO3TTy2W+IfshKuMVwVv/Ts1ZW1xCL7cKdgcukKkW
1pkAaZFYOdPYzQKP0/jDWSqyZCIRcNqe2yjdxKv1cqm7PCjs6/V8LfpcuGXcYVno
eRJNWYLD8Wh2mAfajq1JymgMA8TPCR02jotpFC5/Sr5SUExAj91WgkndnuSRambd
mhTPdt4/i3IGie48urZ5JXkaDQEcnrvAD1L22ucszQN2maRLA6dBH5uSL5aCL6hC
Oi1LMoc0z5yE2gNgSCXYP0c=
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:24:37 2024 by rpki-client on console-ams.rpki-client.org