Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer
File: gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer (raw, json)
Hash identifier: YxiViEZKPppr0eFm/fxZEjRhpL1KPEKpU2ZhAmvI+ZQ=
Subject key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DB55
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jan 2024 13:06:06 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 9474
IP: 202.140.64.0/18
IP: 2403:fa00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121685 (0x1db55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 30 13:06:06 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A911C005/serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4a:ca:ce:10:29:9b:ce:b3:08:d0:fd:90:1a:
cb:cc:4c:f3:92:ff:9e:ef:20:ee:c1:11:33:28:de:
d7:13:17:a8:47:5f:cb:35:d5:ea:a6:05:41:5f:09:
4c:bc:02:83:e5:92:f0:22:7b:a5:e1:7d:74:1b:df:
76:b8:fd:27:16:21:32:a3:a6:51:84:33:52:d5:f8:
ac:f6:b3:a7:b3:7b:0e:f6:d6:ef:31:d3:65:68:c3:
12:57:d9:0a:63:39:a9:6d:73:d5:4b:9f:c4:81:e4:
35:ea:32:c2:15:24:6d:ce:35:36:8d:01:cd:53:a2:
e0:d3:bb:31:b0:0e:13:26:ab:5e:19:d9:25:5b:d2:
9b:6d:9b:84:c6:15:37:db:66:19:41:86:10:6a:cc:
4e:74:88:e9:a6:16:2e:8e:4b:4e:f5:4c:bb:9a:e8:
40:47:8f:ac:92:3c:79:86:97:87:e7:d8:dc:c7:d0:
f7:e6:2e:16:38:20:c4:87:77:2a:df:3a:57:dc:84:
a7:5d:76:8a:41:36:1b:ae:76:6e:b6:de:18:5c:52:
6e:ed:f8:7a:1b:37:bf:52:19:e4:3c:9a:6c:77:ee:
5c:16:75:6e:15:1c:d2:ff:76:75:e9:0b:ea:f8:9b:
a6:ff:c2:b0:08:f1:df:76:9e:61:80:42:f9:56:39:
27:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9474
sbgp-ipAddrBlock: critical
IPv4:
202.140.64.0/18
IPv6:
2403:fa00::/32
Signature Algorithm: sha256WithRSAEncryption
35:a8:92:02:cf:5f:2b:fc:93:d4:6a:8c:b4:0d:a7:04:df:5a:
21:b4:cc:d6:42:93:8b:13:bd:fb:19:c8:b8:e8:5d:08:8a:63:
4e:c9:a0:7b:35:03:38:7d:6c:4f:66:47:6c:2c:62:91:fe:ae:
16:1a:dd:3c:d4:de:58:bd:78:b5:a1:53:13:ed:ff:2c:61:5f:
75:c8:30:24:c6:93:0f:c9:42:de:af:f8:6a:87:dd:f2:42:af:
a4:12:ed:dc:8e:5b:4e:b2:05:38:f2:95:bc:6a:c8:f8:ce:78:
9c:b9:0e:81:06:29:a9:f5:59:91:9e:a9:d2:bf:54:1c:08:28:
b1:4e:da:9e:9d:cc:c4:00:a2:d1:31:50:fa:e3:9b:9d:15:97:
50:30:e9:0e:e2:9e:d2:0d:88:c0:05:a8:ab:0b:65:92:f0:eb:
57:91:1b:de:7f:c1:ed:98:08:84:4d:00:3e:9c:ff:b2:87:d8:
bd:b0:15:08:09:85:20:8e:8b:13:75:7b:c0:bc:75:47:f0:5e:
2a:26:60:4c:d9:16:da:a4:59:fd:76:71:63:c6:8c:bd:3c:c6:
d2:93:4b:c3:d4:b5:7d:45:f6:0a:59:4a:63:89:f0:98:de:f2:
fb:ed:cc:80:c0:33:84:e6:85:93:ef:6a:c0:d5:13:00:ff:07:
fd:76:6f:01
-----BEGIN CERTIFICATE-----
MIIGKDCCBRCgAwIBAgIDAdtVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEzMDEzMDYwNloXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUMwMDUxMTAvBgNVBAUTKDgzMERDRkNCNUE5QUEwQzdGQTdEN0FC
OTk4OURBMjM0M0RFRDJDMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC5SsrOECmbzrMI0P2QGsvMTPOS/57vIO7BETMo3tcTF6hHX8s11eqmBUFfCUy8
AoPlkvAie6XhfXQb33a4/ScWITKjplGEM1LV+Kz2s6ezew721u8x02VowxJX2Qpj
Oaltc9VLn8SB5DXqMsIVJG3ONTaNAc1TouDTuzGwDhMmq14Z2SVb0pttm4TGFTfb
ZhlBhhBqzE50iOmmFi6OS071TLua6EBHj6ySPHmGl4fn2NzH0PfmLhY4IMSHdyrf
OlfchKdddopBNhuudm623hhcUm7t+HobN79SGeQ8mmx37lwWdW4VHNL/dnXpC+r4
m6b/wrAI8d92nmGAQvlWOSddAgMBAAGjggMdMIIDGTAdBgNVHQ4EFgQUgw3Py1qa
oMf6fXq5mJ2iND3tLCIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFDMDA1LzhDQTY4Mjc2QUFFNzExRUFBOTEyMkIwRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExQzAwNS84Q0E2ODI3NkFBRTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFx
YW9NZjZmWHE1bUoyaU5EM3RMQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICJQIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAbKjEAwDQQCAAIw
BwMFACQD+gAwDQYJKoZIhvcNAQELBQADggEBADWokgLPXyv8k9RqjLQNpwTfWiG0
zNZCk4sTvfsZyLjoXQiKY07JoHs1Azh9bE9mR2wsYpH+rhYa3TzU3li9eLWhUxPt
/yxhX3XIMCTGkw/JQt6v+GqH3fJCr6QS7dyOW06yBTjylbxqyPjOeJy5DoEGKan1
WZGeqdK/VBwIKLFO2p6dzMQAotExUPrjm50Vl1Aw6Q7intINiMAFqKsLZZLw61eR
G95/we2YCIRNAD6c/7KH2L2wFQgJhSCOixN1e8C8dUfwXiomYEzZFtqkWf12cWPG
jL08xtKTS8PUtX1F9gpZSmOJ8Jje8vvtzIDAM4TmhZPvasDVEwD/B/12bwE=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:31 2024 by rpki-client on console-fra.rpki-client.org