Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jIBwVSUDCAuWcjTt7IDAHT25bPY.cer
File: jIBwVSUDCAuWcjTt7IDAHT25bPY.cer (raw, json)
Hash identifier: hwION/hf4Edu4muNJffBd/uyc+gSS5CLwI1FMYMJXrw=
Subject key identifier: 8C:80:70:55:25:03:08:0B:96:72:34:ED:EC:80:C0:1D:3D:B9:6C:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EB04
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B59C1/C5E8797800B211EC8968832CC4F9AE02/jIBwVSUDCAuWcjTt7IDAHT25bPY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B59C1/C5E8797800B211EC8968832CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Apr 2024 19:46:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.112.28.0/22
IP: 2402:a3c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125700 (0x1eb04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 10 19:46:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91B59C1/serialNumber=8C8070552503080B967234EDEC80C01D3DB96CF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cd:de:9a:09:1d:fa:93:e8:de:11:b4:92:bb:
68:76:90:43:e1:cb:d5:90:b8:f9:f9:92:a8:c1:87:
76:e9:31:1c:04:4f:b6:ad:49:81:12:ef:22:c0:74:
94:f9:a1:9d:09:e3:4e:8c:24:78:c7:74:f5:70:3d:
f8:56:5a:6f:b6:0c:73:eb:76:ce:84:ba:93:6f:23:
29:ba:3a:52:bf:f7:af:a2:cc:a4:6e:04:45:53:2b:
61:fd:b3:07:7c:9c:e3:f0:31:43:05:9e:95:23:ea:
75:e6:b9:aa:e1:6f:85:0e:83:c5:f2:59:b8:c9:04:
02:09:d4:0c:5c:2a:ad:fc:87:18:7c:31:71:78:3b:
d2:e2:b3:b7:24:b2:80:1b:90:a8:e2:84:c5:e4:f7:
7b:1c:12:43:cf:b7:c2:be:a3:d1:ae:0d:13:4c:7b:
50:28:7c:73:25:38:f3:ef:12:98:c4:fc:b4:3a:e2:
59:ee:f9:bf:97:cd:09:a2:35:ed:05:31:85:de:40:
24:4c:a5:bc:5b:93:c4:99:85:d6:6c:cb:ee:8f:ee:
c9:d5:ff:68:db:01:55:28:fe:f8:4f:84:93:eb:a7:
a8:0e:a1:75:13:a7:63:13:5c:12:38:68:b1:01:79:
61:71:87:73:15:93:0c:be:b9:07:54:3b:42:35:3f:
ee:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:80:70:55:25:03:08:0B:96:72:34:ED:EC:80:C0:1D:3D:B9:6C:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B59C1/C5E8797800B211EC8968832CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B59C1/C5E8797800B211EC8968832CC4F9AE02/jIBwVSUDCAuWcjTt7IDAHT25bPY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.112.28.0/22
IPv6:
2402:a3c0::/32
Signature Algorithm: sha256WithRSAEncryption
4d:1f:a9:00:83:2e:e8:37:1f:74:f3:81:d7:c9:b1:3f:21:5c:
ee:13:eb:cf:6e:1f:c1:88:71:8b:aa:f3:c0:1d:08:26:e1:5e:
4f:6b:70:d9:85:1a:27:99:f4:21:76:f1:da:1c:c8:f0:6f:ee:
ac:38:8b:ff:05:02:0a:b0:b1:4d:36:1a:b5:59:de:26:46:62:
e1:c3:b3:b3:67:a9:ac:73:41:6f:05:9c:9b:9d:17:90:4c:1e:
0c:f4:b0:d9:f7:db:85:d2:45:45:a1:11:cd:c7:17:13:a7:c0:
cf:6d:08:71:a4:7c:92:c9:d3:9c:a4:36:b7:05:1c:90:65:ce:
84:96:12:65:a1:37:59:d9:75:71:44:01:c8:8a:2c:df:25:18:
cf:d4:4c:0e:c8:bd:fb:b6:90:06:27:1c:a6:fd:dc:97:02:dd:
5f:06:66:3d:f9:16:9f:3f:a6:e5:8d:ef:2b:20:74:2f:68:88:
42:13:85:11:22:ed:cb:30:5b:be:05:70:20:68:14:33:54:83:
2a:7f:80:d9:0a:45:21:8d:bd:ea:e9:a1:25:31:e3:5e:cd:46:
51:86:cd:53:59:cf:25:e8:b0:f3:39:9e:9c:88:1c:51:e8:cc:
4d:85:e4:a3:2f:61:df:6d:d4:fb:a0:1a:97:7c:03:d5:c3:04:
94:f7:95:a9
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAesEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQxMDE5NDYwN1oXDTI1MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjU5QzExMTAvBgNVBAUTKDhDODA3MDU1MjUwMzA4MEI5NjcyMzRF
REVDODBDMDFEM0RCOTZDRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1zd6aCR36k+jeEbSSu2h2kEPhy9WQuPn5kqjBh3bpMRwET7atSYES7yLAdJT5
oZ0J406MJHjHdPVwPfhWWm+2DHPrds6EupNvIym6OlK/96+izKRuBEVTK2H9swd8
nOPwMUMFnpUj6nXmuarhb4UOg8XyWbjJBAIJ1AxcKq38hxh8MXF4O9Lis7cksoAb
kKjihMXk93scEkPPt8K+o9GuDRNMe1AofHMlOPPvEpjE/LQ64lnu+b+XzQmiNe0F
MYXeQCRMpbxbk8SZhdZsy+6P7snV/2jbAVUo/vhPhJPrp6gOoXUTp2MTXBI4aLEB
eWFxh3MVkwy+uQdUO0I1P+5TAgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUjIBwVSUD
CAuWcjTt7IDAHT25bPYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI1OUMxL0M1RTg3OTc4MDBCMjExRUM4OTY4ODMyQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNTlDMS9DNUU4Nzk3ODAwQjIxMUVDODk2ODgzMkNDNEY5QUUwMi9qSUJ3VlNV
RENBdVdjalR0N0lEQUhUMjViUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAJncBwwDQQCAAIwBwMFACQCo8AwDQYJKoZIhvcNAQELBQADggEB
AE0fqQCDLug3H3TzgdfJsT8hXO4T689uH8GIcYuq88AdCCbhXk9rcNmFGieZ9CF2
8docyPBv7qw4i/8FAgqwsU02GrVZ3iZGYuHDs7NnqaxzQW8FnJudF5BMHgz0sNn3
24XSRUWhEc3HFxOnwM9tCHGkfJLJ05ykNrcFHJBlzoSWEmWhN1nZdXFEAciKLN8l
GM/UTA7Ivfu2kAYnHKb93JcC3V8GZj35Fp8/puWN7ysgdC9oiEIThREi7cswW74F
cCBoFDNUgyp/gNkKRSGNverpoSUx417NRlGGzVNZzyXosPM5npyIHFHozE2F5KMv
Yd9t1PugGpd8A9XDBJT3lak=
-----END CERTIFICATE-----
Generated at Wed Apr 24 08:35:52 2024 by rpki-client on console-fra.rpki-client.org