Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer
File: hsI8F7xNIO4W8JLTWiz2VU_scRk.cer (raw, json)
Hash identifier: hK1EUPdFKHlmFQGU7ktOvIdDAmtBz2ooBfB8ANofrao=
Subject key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A4DA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 23 May 2023 22:59:45 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 9221
AS: 17786
IP: 27.110.72.0/21
IP: 203.112.80.0/20
IP: 2406:dc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107738 (0x1a4da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 22:59:45 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:f2:91:0a:72:e5:cb:0f:dc:97:c8:d3:de:
ee:5e:13:65:18:7e:c1:60:ae:b1:ae:bd:02:e1:37:
7f:2e:04:b7:c0:1b:da:6b:ff:c5:9a:cf:03:9f:ae:
89:42:63:9b:91:17:d1:7e:9b:29:fe:8f:97:29:8a:
0f:8c:51:c3:b8:1e:ee:db:ae:cf:00:c6:bc:a2:a7:
2d:b3:dc:85:63:ac:41:fb:e6:09:f7:66:e1:c5:a9:
f3:63:fc:ad:58:85:62:3d:6d:70:9a:dd:bf:2b:cd:
a6:b2:b6:76:2e:a3:02:9c:48:22:80:b4:88:4d:9a:
38:af:82:20:25:fb:12:1b:9f:7e:fb:0f:f9:a2:ef:
1d:35:3e:6e:15:44:6d:f7:f1:79:a4:d3:04:c8:43:
a1:62:7e:c5:d1:9d:46:d5:bf:68:ad:1c:4f:dc:39:
cb:be:1a:eb:77:a2:3d:09:43:51:f4:00:8c:f4:13:
c6:80:60:95:d8:20:ce:a3:da:e1:65:cc:5c:b1:f6:
58:96:80:ea:de:be:1d:01:20:40:71:8b:37:aa:7d:
32:ea:2c:ff:fa:fe:52:b4:1b:9e:da:fb:be:52:da:
9a:be:56:c6:cd:0d:bc:c2:5a:80:eb:74:b3:6a:29:
49:eb:ab:c1:8a:65:01:fa:9a:7b:a4:23:77:88:91:
51:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9221
17786
sbgp-ipAddrBlock: critical
IPv4:
27.110.72.0/21
203.112.80.0/20
IPv6:
2406:dc0::/32
Signature Algorithm: sha256WithRSAEncryption
a4:a8:ff:c7:50:7a:55:d0:d5:e0:2a:75:71:44:34:66:2b:25:
4f:5c:14:df:82:a5:18:8d:d0:01:bc:94:79:af:ec:b2:95:5a:
07:b3:9a:d8:7a:bd:f7:fc:4c:ef:ea:03:67:35:d9:27:48:9c:
3b:a8:7a:96:ec:d5:c6:1d:4c:35:e0:fe:da:7b:64:e3:d0:b5:
21:bd:be:c7:5e:36:e5:05:38:44:31:af:05:b4:b2:f7:5d:8a:
1c:4f:b2:56:12:bf:64:f9:62:cd:ee:5b:6f:27:a4:cf:67:96:
b7:d4:c1:ce:4b:de:ab:ad:a0:ab:d9:7b:0e:c7:f5:bc:7a:28:
1d:1b:29:8a:39:4a:26:3b:93:dd:68:db:5c:7a:d3:21:63:c2:
e1:03:06:5f:ed:71:1b:89:33:98:bd:f6:c0:be:aa:a6:21:ef:
10:cf:e1:1b:67:54:1b:f8:b1:fb:15:55:43:f5:bd:83:84:b6:
e1:ae:78:a3:b7:16:c4:58:80:51:4e:ae:d9:87:15:03:8b:9a:
f6:66:d1:90:72:3f:bc:e6:ee:12:93:b5:5e:f0:27:47:96:cb:
df:1c:f8:21:96:d2:12:ae:ec:45:48:73:c6:fd:80:b7:07:36:
29:8b:1c:32:ee:d1:12:1b:ef:c8:d6:01:f5:e6:ae:2f:7c:c7:
75:a9:b8:6d
-----BEGIN CERTIFICATE-----
MIIGMjCCBRqgAwIBAgIDAaTaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDUyMzIyNTk0NVoXDTI0MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJE
MzVBMkNGNjU1NEZFQzcxMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC+qPKRCnLlyw/cl8jT3u5eE2UYfsFgrrGuvQLhN38uBLfAG9pr/8WazwOfrolC
Y5uRF9F+myn+j5cpig+MUcO4Hu7brs8Axryipy2z3IVjrEH75gn3ZuHFqfNj/K1Y
hWI9bXCa3b8rzaaytnYuowKcSCKAtIhNmjivgiAl+xIbn377D/mi7x01Pm4VRG33
8Xmk0wTIQ6FifsXRnUbVv2itHE/cOcu+Gut3oj0JQ1H0AIz0E8aAYJXYIM6j2uFl
zFyx9liWgOrevh0BIEBxizeqfTLqLP/6/lK0G57a+75S2pq+VsbNDbzCWoDrdLNq
KUnrq8GKZQH6mnukI3eIkVH/AgMBAAGjggMnMIIDIzAdBgNVHQ4EFgQUhsI8F7xN
IO4W8JLTWiz2VU/scRkwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUxRDc3LzRCNjQyN0UyQUJGOTExRUE4OEFBRTMyQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4
TklPNFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHQYIKwYBBQUHAQgBAf8EDjAM
oAowCAICJAUCAkV6MDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDG25IAwQE
y3BQMA0EAgACMAcDBQAkBg3AMA0GCSqGSIb3DQEBCwUAA4IBAQCkqP/HUHpV0NXg
KnVxRDRmKyVPXBTfgqUYjdABvJR5r+yylVoHs5rYer33/Ezv6gNnNdknSJw7qHqW
7NXGHUw14P7ae2Tj0LUhvb7HXjblBThEMa8FtLL3XYocT7JWEr9k+WLN7ltvJ6TP
Z5a31MHOS96rraCr2XsOx/W8eigdGymKOUomO5PdaNtcetMhY8LhAwZf7XEbiTOY
vfbAvqqmIe8Qz+EbZ1Qb+LH7FVVD9b2DhLbhrnijtxbEWIBRTq7ZhxUDi5r2ZtGQ
cj+85u4Sk7Ve8CdHlsvfHPghltISruxFSHPG/YC3BzYpixwy7tESG+/I1gH15q4v
fMd1qbht
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:37:15 2024 by rpki-client on console-ams.rpki-client.org