Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer
File: hPqw1oT6rxaVCqyjjm1lOszyWLw.cer (raw, json)
Hash identifier: +kY5Ml2vQfjNeFkjEPCdWWlbtTOF8zORajR56XBRm58=
Subject key identifier: 84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B901
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 27 Aug 2023 14:24:45 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 24014
IP: 2001:df3:c600::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112897 (0x1b901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 27 14:24:45 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A914247C/serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0d:4e:1e:31:98:ce:ab:f8:a0:a8:71:ab:38:
a9:13:8d:6a:14:bc:f1:0c:78:0d:66:7b:70:6b:1c:
5d:86:db:ee:fa:e6:2d:77:62:9e:34:fc:e0:0a:93:
04:76:8c:b2:f6:b3:50:56:d1:5e:00:55:40:99:7d:
34:e1:80:a8:ce:b5:70:67:db:fb:c5:15:0c:d7:1d:
75:56:d9:39:8b:d3:aa:38:17:15:f0:3c:f9:f6:c9:
6c:3f:9b:37:e3:e2:99:74:67:39:b7:89:d8:ca:e6:
24:ab:a4:39:8f:f4:78:00:9d:e5:0e:65:ff:e9:bf:
1d:c4:be:48:5f:5e:e1:1a:c5:d1:27:04:42:01:f4:
4a:48:cb:42:b1:be:d6:b7:c0:7e:38:6b:ad:f8:3e:
40:3f:00:f7:07:75:27:a3:78:ef:04:dd:d4:d7:29:
8d:c1:f1:a2:7e:10:4c:66:1e:4e:ed:cb:2d:c1:45:
4c:6f:50:8a:08:e6:26:ba:69:14:df:4b:6f:da:e9:
65:39:22:21:17:f9:56:1d:ab:ea:13:79:89:2e:44:
b1:07:42:12:09:df:ed:f4:c2:62:67:eb:80:08:08:
46:4d:1f:1e:98:6d:95:54:d1:f3:f3:cd:59:f5:a3:
30:09:74:e4:df:5d:85:9e:c1:5f:df:9c:c4:8d:07:
b2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24014
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:c600::/48
Signature Algorithm: sha256WithRSAEncryption
73:2c:15:7a:a0:c7:17:d2:22:ad:54:1f:ce:88:dd:dc:25:99:
38:59:da:96:1a:6a:60:a4:07:3f:e7:37:77:68:2d:4c:01:11:
e8:19:61:7e:09:34:17:73:2c:a5:19:0f:b9:df:40:9d:7e:cb:
f1:e0:dc:a4:3e:52:96:3d:df:86:50:42:a8:07:9c:a4:94:ed:
2c:fb:f3:1b:d2:75:87:4e:8c:2f:e5:05:ea:d4:50:e2:34:49:
df:93:03:d6:c9:18:64:f6:cb:e9:17:41:00:33:d7:a1:5d:7a:
fc:d1:f1:30:05:f4:2d:0e:37:a0:45:27:56:ee:53:64:41:e6:
b2:a0:0e:35:89:5c:61:7f:05:d9:03:7e:64:1a:49:25:0c:e1:
62:e0:7a:c2:ff:2a:76:b6:69:2f:d5:22:16:37:d9:5a:bd:0d:
7a:2e:37:99:70:d8:79:68:58:77:8e:d8:36:cf:2d:26:a7:3d:
47:6b:19:dd:f5:03:c9:f7:91:30:a7:cf:a1:8b:a6:54:69:c3:
02:c0:bb:61:51:79:3b:44:b5:6d:09:a9:5a:10:89:67:ea:0e:
d2:5a:b0:82:ab:b1:fb:95:07:87:59:00:25:ff:86:06:27:f0:
4e:10:0e:b5:36:6d:e6:c1:ca:5c:6e:48:f0:4f:7c:01:36:c4:
b8:a0:63:72
-----BEGIN CERTIFICATE-----
MIIGHDCCBQSgAwIBAgIDAbkBMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgyNzE0MjQ0NVoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDI0N0MxMTAvBgNVBAUTKDg0RkFCMEQ2ODRGQUFGMTY5NTBBQUNB
MzhFNkQ2NTNBQ0NGMjU4QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCpDU4eMZjOq/igqHGrOKkTjWoUvPEMeA1me3BrHF2G2+765i13Yp40/OAKkwR2
jLL2s1BW0V4AVUCZfTThgKjOtXBn2/vFFQzXHXVW2TmL06o4FxXwPPn2yWw/mzfj
4pl0Zzm3idjK5iSrpDmP9HgAneUOZf/pvx3EvkhfXuEaxdEnBEIB9EpIy0Kxvta3
wH44a634PkA/APcHdSejeO8E3dTXKY3B8aJ+EExmHk7tyy3BRUxvUIoI5ia6aRTf
S2/a6WU5IiEX+VYdq+oTeYkuRLEHQhIJ3+30wmJn64AICEZNHx6YbZVU0fPzzVn1
ozAJdOTfXYWewV/fnMSNB7KPAgMBAAGjggMRMIIDDTAdBgNVHQ4EFgQUhPqw1oT6
rxaVCqyjjm1lOszyWLwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQyNDdDLzkwRjYzMkRBNDMwQTExRUE4NThDREM3NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0MjQ3Qy85MEY2MzJEQTQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi9oUHF3MW9U
NnJ4YVZDcXlqam0xbE9zenlXTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICXc4wIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3zxgAwDQYJ
KoZIhvcNAQELBQADggEBAHMsFXqgxxfSIq1UH86I3dwlmThZ2pYaamCkBz/nN3do
LUwBEegZYX4JNBdzLKUZD7nfQJ1+y/Hg3KQ+UpY934ZQQqgHnKSU7Sz78xvSdYdO
jC/lBerUUOI0Sd+TA9bJGGT2y+kXQQAz16FdevzR8TAF9C0ON6BFJ1buU2RB5rKg
DjWJXGF/BdkDfmQaSSUM4WLgesL/Kna2aS/VIhY32Vq9DXouN5lw2HloWHeO2DbP
LSanPUdrGd31A8n3kTCnz6GLplRpwwLAu2FReTtEtW0JqVoQiWfqDtJasIKrsfuV
B4dZACX/hgYn8E4QDrU2bebBylxuSPBPfAE2xLigY3I=
-----END CERTIFICATE-----
Generated at Fri Apr 19 16:13:24 2024 by rpki-client on console-ams.rpki-client.org