Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer
File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer (raw, json)
Hash identifier: Ti7PfNtO4G1E7LBPV/4Gn7JXVKntR99UCo6lNY5g4K8=
Subject key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BC30
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Sep 2023 18:49:40 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.38.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 15:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113712 (0x1bc30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 7 18:49:40 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:80:54:ec:cc:ff:60:4e:51:69:ef:48:ce:5c:
a3:fd:7c:49:93:5b:f3:05:17:e5:8a:08:85:3b:9e:
df:72:a3:26:07:88:3d:c1:ad:e7:95:92:b5:72:ea:
3b:b1:16:19:24:f0:fd:93:a1:51:7e:20:3d:30:47:
9b:6b:77:15:7d:27:10:00:58:0f:58:07:51:f9:ed:
7f:3e:58:27:01:52:d3:56:57:c7:55:11:d4:2e:09:
a3:92:7d:6f:6f:e9:6f:fb:0f:94:df:d5:38:bd:f6:
65:cc:22:4d:fc:7c:86:33:00:f5:1b:99:dc:37:d4:
f4:13:6e:e0:a3:49:0e:6d:80:9f:00:94:c8:3c:13:
38:21:67:4e:57:63:81:f6:6b:17:a2:8e:ea:df:a9:
e7:31:d2:67:f1:4e:22:44:d6:0b:d7:06:c2:ea:e1:
14:ba:8e:de:18:cb:1c:d4:26:fd:20:96:77:81:cf:
48:32:f8:01:00:52:3e:48:80:1a:32:bb:5b:24:6e:
f3:d0:ac:f8:f1:6b:fc:60:5c:0e:1f:5b:fd:c2:dc:
33:35:89:fe:78:39:2d:aa:21:38:f0:72:e6:70:23:
ef:d3:47:13:a6:30:5a:c9:2c:40:04:8c:6d:88:01:
e5:0c:8c:26:2f:e4:c0:a1:af:8e:45:09:a5:24:8a:
53:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.38.192.0/22
Signature Algorithm: sha256WithRSAEncryption
54:e2:2b:50:7a:0a:97:14:67:95:a2:72:79:ea:95:c9:7c:52:
77:5c:9b:fb:2d:55:44:5f:eb:05:d1:ac:69:94:00:95:e2:26:
1c:b9:ed:95:f7:93:0c:63:be:1b:e3:cc:cc:88:f8:42:06:ad:
5f:36:b2:fa:5b:46:1e:34:e7:cd:7f:46:5f:fa:00:59:6b:88:
9c:84:c6:a3:bd:6f:49:88:7a:d8:41:db:b4:d1:c6:5e:66:09:
0e:4d:39:88:3d:57:78:df:38:f5:17:96:23:4e:51:e9:df:7a:
ba:f4:e6:dd:15:10:98:0d:4e:01:e3:05:8c:24:77:cc:4b:27:
56:b0:b6:11:e1:eb:10:f0:05:f0:f8:e6:09:9d:8e:8d:60:3a:
fa:1d:45:c4:7c:c8:00:e7:0a:62:e5:b0:1d:6c:6b:c5:a3:03:
99:9e:31:a5:02:9c:2f:24:2e:b4:15:57:68:bc:aa:be:b3:70:
d7:bc:5b:7c:39:e5:ce:c8:50:fe:73:98:70:79:ab:a8:1b:50:
e9:d2:29:98:67:6b:9d:6e:b5:70:11:28:90:4c:cd:13:5f:e4:
6b:49:a7:e3:ea:24:65:95:c0:18:5b:81:b0:65:2f:e6:c0:d4:
31:19:92:7a:0c:b1:c5:b2:69:69:86:2e:7b:20:ee:df:68:d6:
ed:4a:1e:92
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAbwwMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkwNzE4NDk0MFoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQx
RjIwQzUyQjIwQ0FGNTU1QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDZgFTszP9gTlFp70jOXKP9fEmTW/MFF+WKCIU7nt9yoyYHiD3BreeVkrVy6jux
Fhkk8P2ToVF+ID0wR5trdxV9JxAAWA9YB1H57X8+WCcBUtNWV8dVEdQuCaOSfW9v
6W/7D5Tf1Ti99mXMIk38fIYzAPUbmdw31PQTbuCjSQ5tgJ8AlMg8EzghZ05XY4H2
axeijurfqecx0mfxTiJE1gvXBsLq4RS6jt4YyxzUJv0glneBz0gy+AEAUj5IgBoy
u1skbvPQrPjxa/xgXA4fW/3C3DM1if54OS2qITjwcuZwI+/TRxOmMFrJLEAEjG2I
AeUMjCYv5MChr45FCaUkilOfAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUkz73JgbZ
1bKf46QfIMUrIMr1VbowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ2NTAzLzAxNTRCNEI2RUU4NzExRUFCNTJBNUMwOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdi
WjFiS2Y0NlFmSU1VcklNcjFWYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAJnJsAwDQYJKoZIhvcNAQELBQADggEBAFTiK1B6CpcUZ5Wicnnq
lcl8Undcm/stVURf6wXRrGmUAJXiJhy57ZX3kwxjvhvjzMyI+EIGrV82svpbRh40
581/Rl/6AFlriJyExqO9b0mIethB27TRxl5mCQ5NOYg9V3jfOPUXliNOUenferr0
5t0VEJgNTgHjBYwkd8xLJ1awthHh6xDwBfD45gmdjo1gOvodRcR8yADnCmLlsB1s
a8WjA5meMaUCnC8kLrQVV2i8qr6zcNe8W3w55c7IUP5zmHB5q6gbUOnSKZhna51u
tXARKJBMzRNf5GtJp+PqJGWVwBhbgbBlL+bA1DEZknoMscWyaWmGLnsg7t9o1u1K
HpI=
-----END CERTIFICATE-----
Generated at Thu Apr 25 16:41:07 2024 by rpki-client on console-ams.rpki-client.org