Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer
File: gFLXiRiFOIg0vD1ozrIclvdiXmc.cer (raw, json)
Hash identifier: QITGF13bPo4snY9CZz9AHGigx/X4D5deSeGNoNubtkY=
Subject key identifier: 80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ADF4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Jul 2023 21:09:57 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 103.248.97.0/24
IP: 2001:df0:a000::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 21:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110068 (0x1adf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 21:09:57 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6f:98:fd:a0:ee:7b:53:08:07:20:63:cc:d2:
27:5d:36:33:e3:d5:b5:11:86:86:f5:7c:a0:72:e2:
d8:cd:33:0d:ed:ed:0f:0d:e4:28:ee:dd:89:de:15:
9e:2a:a6:ea:6c:00:9d:17:40:f3:db:90:b9:5d:fd:
f4:26:b8:e1:4e:b5:22:42:98:ce:f6:67:35:ee:05:
c3:df:a0:8e:06:d9:9a:d1:64:78:99:ab:e6:0b:dc:
d7:24:24:6d:b7:e4:64:cc:84:1a:96:e2:b1:5f:fc:
2f:3d:21:91:d9:7c:23:72:92:95:b2:09:c9:9d:9e:
b9:2a:da:07:57:9b:4e:a6:57:d7:11:cd:6e:78:0d:
da:af:ff:f1:9d:ff:de:d5:d6:de:aa:54:ae:17:cf:
ef:d9:75:c2:ef:30:38:9e:c1:3e:c5:28:75:a7:cb:
53:e6:2e:be:83:04:5a:50:61:51:90:32:9f:5c:31:
31:c7:5b:45:e5:d4:d1:e3:d6:69:5f:da:f1:9d:5f:
22:07:31:55:f2:3b:16:c9:f9:91:85:6a:c4:07:e5:
d8:fe:25:10:d8:29:2b:b8:0e:16:6f:47:0e:44:69:
43:f0:fc:b5:91:de:be:91:c0:c2:36:9b:4a:b6:bb:
87:bd:8e:49:74:48:db:c3:46:c1:33:c2:e6:c6:dd:
72:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.248.97.0/24
IPv6:
2001:df0:a000::/48
Signature Algorithm: sha256WithRSAEncryption
7a:61:cb:60:88:95:06:7c:aa:fe:e9:2a:47:97:39:de:9e:f4:
4b:dc:9d:8c:54:9c:e2:4b:d4:29:12:82:92:90:36:fb:16:ef:
c9:ef:05:4d:95:25:ae:dc:ec:04:0f:f0:16:7f:25:3a:db:05:
ed:87:0f:78:c1:e1:8c:c0:18:3b:8e:93:28:8c:8b:85:82:4c:
fe:e9:cf:71:96:90:90:83:c5:4e:df:61:2e:1d:7b:9f:5c:a9:
8e:1b:48:0d:72:ed:c6:15:32:b4:a4:b5:0a:cf:5d:64:7f:2b:
c9:df:e6:76:1b:35:7c:9a:ab:6c:e1:e0:58:c9:af:86:cc:1c:
af:ee:bb:12:a1:e3:b1:c2:f5:d6:69:38:07:3a:e8:8b:8d:34:
05:56:9e:01:f7:1e:9d:fc:c5:9d:ca:56:d9:cf:a2:59:c5:04:
ed:d2:7b:9b:26:5d:c0:c1:c6:4b:6c:7c:7a:09:44:11:90:37:
d2:bc:bf:80:ae:08:39:62:15:b9:97:09:16:11:21:b1:56:eb:
01:0a:64:3e:cd:e5:7f:9e:9d:c1:8d:63:61:30:6d:b7:d4:15:
99:6b:91:59:87:6c:57:90:f6:29:91:1f:f1:3c:08:0a:74:85:
8e:6c:f3:48:2a:0c:c7:56:ea:c9:a7:56:77:5f:fc:ea:b8:c6:
62:46:08:32
-----BEGIN CERTIFICATE-----
MIIGDzCCBPegAwIBAgIDAa30MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcwMzIxMDk1N1oXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0JFODkxMTAvBgNVBAUTKDgwNTJENzg5MTg4NTM4ODgzNEJDM0Q2
OENFQjIxQzk2Rjc2MjVFNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDKb5j9oO57UwgHIGPM0iddNjPj1bURhob1fKBy4tjNMw3t7Q8N5Cju3YneFZ4q
pupsAJ0XQPPbkLld/fQmuOFOtSJCmM72ZzXuBcPfoI4G2ZrRZHiZq+YL3NckJG23
5GTMhBqW4rFf/C89IZHZfCNykpWyCcmdnrkq2gdXm06mV9cRzW54Ddqv//Gd/97V
1t6qVK4Xz+/ZdcLvMDiewT7FKHWny1PmLr6DBFpQYVGQMp9cMTHHW0Xl1NHj1mlf
2vGdXyIHMVXyOxbJ+ZGFasQH5dj+JRDYKSu4DhZvRw5EaUPw/LWR3r6RwMI2m0q2
u4e9jkl0SNvDRsEzwubG3XKxAgMBAAGjggMEMIIDADAdBgNVHQ4EFgQUgFLXiRiF
OIg0vD1ozrIclvdiXmcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCRTg5L0YyNzI2QTE4NzYzQzExRTZCMDFFMDg1OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQkU4OS9GMjcyNkExODc2M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJp
Rk9JZzB2RDFvenJJY2x2ZGlYbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8EITAf
MAwEAgABMAYDBABn+GEwDwQCAAIwCQMHACABDfCgADANBgkqhkiG9w0BAQsFAAOC
AQEAemHLYIiVBnyq/ukqR5c53p70S9ydjFSc4kvUKRKCkpA2+xbvye8FTZUlrtzs
BA/wFn8lOtsF7YcPeMHhjMAYO46TKIyLhYJM/unPcZaQkIPFTt9hLh17n1ypjhtI
DXLtxhUytKS1Cs9dZH8ryd/mdhs1fJqrbOHgWMmvhswcr+67EqHjscL11mk4Bzro
i400BVaeAfcenfzFncpW2c+iWcUE7dJ7myZdwMHGS2x8eglEEZA30ry/gK4IOWIV
uZcJFhEhsVbrAQpkPs3lf56dwY1jYTBtt9QVmWuRWYdsV5D2KZEf8TwICnSFjmzz
SCoMx1bqyadWd1/86rjGYkYIMg==
-----END CERTIFICATE-----
Generated at Fri Apr 19 22:16:48 2024 by rpki-client on console-fra.rpki-client.org