Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer
File: e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer (raw, json)
Hash identifier: iCYuPAp9tzIKJFNLxAW9Bnw9FbBEaV7I1hxgE9RKj9A=
Subject key identifier: 7B:E9:8C:7A:AA:D8:7C:9F:25:92:96:30:16:43:A3:61:0A:7B:51:88
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DA6A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Jan 2024 11:50:20 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 152446
IP: 2001:df3:66c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121450 (0x1da6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 25 11:50:20 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91CDB75/serialNumber=7BE98C7AAAD87C9F259296301643A3610A7B5188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cd:ad:fc:ba:be:31:08:8f:0e:f3:47:1b:af:
a0:3b:f3:23:5b:0d:7a:ca:26:fa:f6:15:6f:8d:c4:
72:84:33:1c:4a:7d:24:4f:07:56:9d:f4:ff:ad:5d:
69:c1:7e:cc:00:62:1b:ba:1a:b0:ec:e8:0e:5c:8c:
94:4d:ca:8a:5e:ae:51:f1:a4:70:0d:8a:1f:67:12:
1d:35:46:ff:64:3e:f3:86:9a:55:02:d8:06:72:dc:
f1:06:65:93:9c:0a:34:3e:85:e7:46:0b:e1:62:3c:
8e:31:77:2c:9a:8d:83:66:06:1d:8b:a7:6c:fb:85:
56:e0:5a:8c:56:e5:e3:ec:e2:82:35:0b:bf:dc:86:
6c:73:49:fe:b0:68:e4:d7:b8:19:f9:cd:75:18:16:
4c:56:1a:ec:a1:19:d5:1c:d4:25:46:c7:de:d9:56:
b3:ea:85:d4:c2:fa:0b:c9:43:a4:72:dc:44:1e:51:
94:e9:f3:39:57:5f:25:e0:5e:33:36:f5:86:a5:04:
54:b1:9f:1f:61:f1:4e:21:9e:70:45:59:e5:9a:91:
04:89:bf:67:97:ee:9a:3b:38:84:e5:1d:70:8f:0a:
f1:df:fb:35:3f:49:84:1c:54:5a:2a:37:b6:8e:1d:
fe:63:9b:05:30:78:0b:50:d9:aa:cb:70:a5:16:8e:
8a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E9:8C:7A:AA:D8:7C:9F:25:92:96:30:16:43:A3:61:0A:7B:51:88
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152446
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:66c0::/48
Signature Algorithm: sha256WithRSAEncryption
75:1d:a8:7c:6b:3a:75:b9:fe:94:c1:3e:ac:50:14:80:66:01:
1a:96:c9:e4:c1:05:40:d4:23:04:90:43:e8:b9:8b:8e:4f:88:
72:27:95:3c:a4:fa:a3:a4:1e:71:ea:a7:07:87:8d:67:55:4f:
04:bb:54:68:33:0e:0b:d5:56:37:1c:41:6e:bb:cf:9d:9c:78:
71:5f:8a:14:bb:1a:aa:9a:48:10:e5:11:21:48:26:40:04:2d:
1c:3b:45:b7:41:6d:e2:97:c8:d5:00:37:aa:54:93:76:e5:80:
36:1a:a9:7b:a4:d8:3b:98:04:78:89:3b:39:c5:bc:39:47:bd:
d1:0c:66:7d:b6:b8:18:df:43:06:1b:4e:2c:a5:d0:1b:e0:80:
30:23:1b:2b:f7:48:38:3d:f6:9a:8a:b1:8e:84:e6:d7:e1:df:
14:5b:d3:2b:af:f6:fd:b3:80:39:af:dc:cb:74:75:fe:14:d0:
9a:95:96:d8:4f:60:45:7e:d0:10:c9:9e:a3:0b:6a:c8:5b:e3:
7e:e0:35:9f:3b:62:bd:2f:52:b1:07:97:3d:85:4b:46:c5:7b:
e4:be:5c:98:61:84:3c:ce:25:74:ac:de:c3:79:8a:02:e8:e8:
ea:5b:ed:12:8e:f6:cb:30:95:1a:d9:74:96:29:a2:55:fd:ac:
0d:27:3e:b7
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgIDAdpqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEyNTExNTAyMFoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0RCNzUxMTAvBgNVBAUTKDdCRTk4QzdBQUFEODdDOUYyNTkyOTYz
MDE2NDNBMzYxMEE3QjUxODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDUza38ur4xCI8O80cbr6A78yNbDXrKJvr2FW+NxHKEMxxKfSRPB1ad9P+tXWnB
fswAYhu6GrDs6A5cjJRNyoperlHxpHANih9nEh01Rv9kPvOGmlUC2AZy3PEGZZOc
CjQ+hedGC+FiPI4xdyyajYNmBh2Lp2z7hVbgWoxW5ePs4oI1C7/chmxzSf6waOTX
uBn5zXUYFkxWGuyhGdUc1CVGx97ZVrPqhdTC+gvJQ6Ry3EQeUZTp8zlXXyXgXjM2
9YalBFSxnx9h8U4hnnBFWeWakQSJv2eX7po7OITlHXCPCvHf+zU/SYQcVFoqN7aO
Hf5jmwUweAtQ2arLcKUWjoqhAgMBAAGjggMSMIIDDjAdBgNVHQ4EFgQUe+mMeqrY
fJ8lkpYwFkOjYQp7UYgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNEQjc1L0U2NTE5QTE0QkI3NzExRUVBQUQ3QjI0MUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDREI3NS9FNjUxOUExNEJCNzcxMUVFQUFEN0IyNDFDNEY5QUUwMi9lLW1NZXFy
WWZKOGxrcFl3RmtPallRcDdVWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlN+MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN82bAMA0G
CSqGSIb3DQEBCwUAA4IBAQB1Hah8azp1uf6UwT6sUBSAZgEalsnkwQVA1CMEkEPo
uYuOT4hyJ5U8pPqjpB5x6qcHh41nVU8Eu1RoMw4L1VY3HEFuu8+dnHhxX4oUuxqq
mkgQ5REhSCZABC0cO0W3QW3il8jVADeqVJN25YA2Gql7pNg7mAR4iTs5xbw5R73R
DGZ9trgY30MGG04spdAb4IAwIxsr90g4PfaairGOhObX4d8UW9Mrr/b9s4A5r9zL
dHX+FNCalZbYT2BFftAQyZ6jC2rIW+N+4DWfO2K9L1KxB5c9hUtGxXvkvlyYYYQ8
ziV0rN7DeYoC6OjqW+0SjvbLMJUa2XSWKaJV/awNJz63
-----END CERTIFICATE-----
Generated at Thu May 2 08:52:48 2024 by rpki-client on console-fra.rpki-client.org