Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer
File: hZApCIKLAzHpSNRu2zgl_2A9uYY.cer (raw, json)
Hash identifier: c4nAX+JrNEQ566NepyiM8r6X8oJI3dg8AkhHx5KFWuw=
Subject key identifier: 85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D7CC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jan 2024 22:50:49 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 45.249.44.0/22
IP: 103.208.252.0/22
IP: 2001:df0:aa00::/48
IP: 2402:ce40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120780 (0x1d7cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 10 22:50:49 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91EEE1B/serialNumber=85902908828B0331E948D46EDB3825FF603DB986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:13:17:77:fc:51:3a:73:d5:6d:63:52:8f:13:
3e:29:69:0a:30:f0:01:5a:1e:05:e9:67:ac:4c:14:
76:4f:98:30:e9:95:82:37:dc:6b:9c:ca:88:96:d9:
b1:62:7d:e1:92:d9:94:a2:f7:37:08:00:79:e7:89:
2a:6f:8c:2e:83:0a:a3:53:d6:26:4c:a3:5b:97:10:
b0:4c:f5:39:e1:c5:ea:3f:9f:48:4f:bd:8b:b6:1e:
3f:b6:fc:23:44:2f:88:2c:c7:a3:7c:7a:7c:19:24:
26:2e:a8:c7:b6:8b:f0:73:31:3e:77:7d:f4:7c:b8:
de:29:27:ac:d5:64:d4:99:ec:a8:be:16:0c:5e:a1:
61:e3:87:f2:ba:fa:37:75:e9:9d:2b:1f:76:04:57:
34:88:66:bc:dd:b8:05:f7:36:57:86:87:54:47:15:
31:55:f5:59:d3:a0:32:c7:5d:2d:47:b9:30:02:53:
11:0b:59:d0:dc:aa:bd:6e:b9:5e:7b:85:ba:c8:93:
7a:6c:e4:c8:c3:52:b9:88:f8:db:3e:28:fc:de:c0:
cc:da:73:67:21:05:b5:cd:97:4e:33:6d:5b:98:05:
eb:19:ca:fc:02:50:53:1e:80:d5:bf:43:cd:9c:e7:
f4:99:87:c6:19:40:4e:c6:97:3f:a8:9a:43:4f:df:
ed:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.249.44.0/22
103.208.252.0/22
IPv6:
2001:df0:aa00::/48
2402:ce40::/32
Signature Algorithm: sha256WithRSAEncryption
80:5e:e0:a9:7d:c1:7e:1b:cc:29:2b:0b:45:aa:3f:10:eb:e1:
2e:79:d0:55:9d:7d:fd:41:5e:82:f3:1b:7d:4f:68:db:8a:53:
b6:67:67:01:92:ab:44:23:ff:12:47:bf:ec:5e:e1:84:4a:73:
48:6d:e5:35:1b:77:a5:81:14:78:59:20:00:96:6b:de:72:3c:
b0:94:f2:72:de:e9:53:cc:36:ee:c4:66:32:93:fc:23:b7:30:
22:3f:e0:e3:f6:99:17:c1:9d:20:a4:89:55:8e:58:87:31:2a:
a0:62:70:27:b5:77:0e:5e:6f:af:40:da:26:10:3e:86:85:d7:
4a:87:fb:21:c8:ef:86:99:ab:43:88:31:d0:16:c6:69:c0:e6:
07:b8:58:de:5c:f0:38:77:57:cd:b9:2f:ba:24:c7:62:a2:f7:
9a:92:de:85:00:f3:c4:4e:5b:a2:e4:f0:fd:43:99:9d:e9:11:
61:7b:00:54:8c:a8:a3:7e:5c:d9:ea:7c:24:41:27:08:19:36:
4b:82:f0:50:a2:92:fd:a3:bc:ed:73:72:e8:e6:d9:00:1d:39:
96:b3:f5:bc:39:50:1d:e7:0a:1b:0e:35:00:bf:3b:9f:7f:e1:
e7:62:98:d0:b6:eb:c4:ff:3c:fb:bf:89:2c:f8:47:78:6b:17:
d3:dc:9c:92
-----BEGIN CERTIFICATE-----
MIIGHDCCBQSgAwIBAgIDAdfMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDExMDIyNTA0OVoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRUVFMUIxMTAvBgNVBAUTKDg1OTAyOTA4ODI4QjAzMzFFOTQ4RDQ2
RURCMzgyNUZGNjAzREI5ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDbExd3/FE6c9VtY1KPEz4paQow8AFaHgXpZ6xMFHZPmDDplYI33GucyoiW2bFi
feGS2ZSi9zcIAHnniSpvjC6DCqNT1iZMo1uXELBM9Tnhxeo/n0hPvYu2Hj+2/CNE
L4gsx6N8enwZJCYuqMe2i/BzMT53ffR8uN4pJ6zVZNSZ7Ki+FgxeoWHjh/K6+jd1
6Z0rH3YEVzSIZrzduAX3NleGh1RHFTFV9VnToDLHXS1HuTACUxELWdDcqr1uuV57
hbrIk3ps5MjDUrmI+Ns+KPzewMzac2chBbXNl04zbVuYBesZyvwCUFMegNW/Q82c
5/SZh8YZQE7Glz+omkNP3+19AgMBAAGjggMRMIIDDTAdBgNVHQ4EFgQUhZApCIKL
AzHpSNRu2zgl/2A9uYYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUVFRTFCLzIwNkRGQzI4NjQzODExRUI5NDY4M0I0RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFRUUxQi8yMDZERkMyODY0MzgxMUVCOTQ2ODNCNEVDNEY5QUUwMi9oWkFwQ0lL
TEF6SHBTTlJ1MnpnbF8yQTl1WVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8ELjAs
MBIEAgABMAwDBAIt+SwDBAJn0PwwFgQCAAIwEAMHACABDfCqAAMFACQCzkAwDQYJ
KoZIhvcNAQELBQADggEBAIBe4Kl9wX4bzCkrC0WqPxDr4S550FWdff1BXoLzG31P
aNuKU7ZnZwGSq0Qj/xJHv+xe4YRKc0ht5TUbd6WBFHhZIACWa95yPLCU8nLe6VPM
Nu7EZjKT/CO3MCI/4OP2mRfBnSCkiVWOWIcxKqBicCe1dw5eb69A2iYQPoaF10qH
+yHI74aZq0OIMdAWxmnA5ge4WN5c8Dh3V825L7okx2Ki95qS3oUA88ROW6Lk8P1D
mZ3pEWF7AFSMqKN+XNnqfCRBJwgZNkuC8FCikv2jvO1zcujm2QAdOZaz9bw5UB3n
ChsONQC/O59/4edimNC268T/PPu/iSz4R3hrF9PcnJI=
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:42 2024 by rpki-client on console-ams.rpki-client.org