Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/povAkQ-DHeyBilCjIUX3Q1XOY8A.cer
File:                     povAkQ-DHeyBilCjIUX3Q1XOY8A.cer (raw, json)
Hash identifier:          UJLAh7l6jp4wKjJSyP2rQOHTJCGVlm9a06I4Hx0qP0Y=
Subject key identifier:   A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       01F31D
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Tue 21 May 2024 20:18:29 +0000
Certificate not after:    Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources:    AS: 142024
                          IP: 103.165.54.0/23
                          IP: 2407:46c0::/32

Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 04 Dec 2024 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 127773 (0x1f31d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: May 21 20:18:29 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=A919B6FC/serialNumber=A68BC0910F831DEC818A50A32145F74355CE63C0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:e4:8d:3b:9f:ae:be:bd:0d:9d:f3:38:2b:80:
                    90:bf:f9:96:14:52:b1:77:ec:b4:7c:27:3b:11:72:
                    fa:62:81:77:27:19:fd:20:0b:ea:91:cc:4b:11:7c:
                    02:67:8e:3f:9e:4c:f5:e3:fa:9b:79:dc:35:d8:4a:
                    1d:54:91:98:30:d2:4c:ee:20:06:23:2a:86:0f:8f:
                    7c:84:7e:30:f8:70:a4:a7:1d:2c:ee:e3:9c:e0:35:
                    84:6a:40:76:65:4f:5e:04:83:d2:46:9c:82:f1:5a:
                    87:2d:80:6e:5e:9f:76:78:08:02:21:33:f8:a6:bb:
                    73:ef:ba:fe:4f:0c:44:b4:93:89:12:29:20:41:3d:
                    46:50:c4:1d:6b:95:a8:35:d3:08:20:21:08:4f:06:
                    ad:fb:b2:f0:69:ab:41:20:fa:73:e5:d9:f6:db:fd:
                    d6:2d:9b:15:8b:d7:15:b8:ab:51:72:2b:25:34:e2:
                    52:cd:c8:0d:36:c6:aa:e4:7f:17:ea:bc:9b:06:a2:
                    d5:46:58:f4:f4:03:45:85:c2:2e:dd:70:f2:e9:cd:
                    0f:c0:98:7f:0b:40:9b:96:75:4c:71:41:4f:26:b5:
                    2e:48:a3:9b:2c:aa:e0:71:5b:36:3f:3d:2a:b7:10:
                    24:de:98:2d:0b:4f:dc:47:75:82:7e:97:6c:9e:3a:
                    37:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  142024

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.165.54.0/23
                IPv6:
                  2407:46c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         ae:81:c2:df:5b:21:db:0d:d5:d8:7f:b9:5c:23:6a:aa:cb:7c:
         ba:c9:70:ab:cf:3b:61:ca:b2:a4:b2:1c:18:92:83:d4:57:7f:
         04:52:51:da:fe:f9:76:04:c6:d3:dd:66:94:6b:62:e7:97:31:
         8f:51:e5:20:38:86:5a:f4:cc:84:fa:a2:a5:f9:34:48:d6:01:
         d8:29:5c:66:4a:ad:9a:c6:3f:40:ed:19:9a:9b:74:d6:e4:86:
         07:ed:25:87:d0:cb:6e:73:71:a5:72:0f:10:5e:3f:f2:8c:4f:
         d5:7c:90:a1:8c:35:e8:f4:86:68:56:f8:d9:37:b6:62:e6:9d:
         7b:b9:0e:4d:29:8f:2d:a0:ce:52:e7:76:b7:06:0c:0b:33:84:
         47:ff:c1:57:c6:9e:e9:03:a9:69:8e:e0:c0:a4:be:3f:13:2a:
         4f:33:70:cd:4b:89:e1:d3:9e:63:03:23:92:60:42:f8:5c:91:
         09:86:cf:01:a1:60:64:ad:06:e1:2a:ff:4f:0d:6a:03:45:e1:
         0d:28:9b:fc:58:e6:75:93:0d:9d:ac:d9:e6:9f:0a:eb:99:f6:
         8a:c1:51:b0:55:6c:04:fc:cc:42:61:2d:4e:dc:e4:c7:b9:34:
         93:fd:f1:72:3d:b3:8f:9f:aa:75:64:b9:86:90:6c:71:7f:6b:
         a1:d3:d3:bc
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAfMdMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUyMTIwMTgyOVoXDTI1MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOUI2RkMxMTAvBgNVBAUTKEE2OEJDMDkxMEY4MzFERUM4MThBNTBB
MzIxNDVGNzQzNTVDRTYzQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDS5I07n66+vQ2d8zgrgJC/+ZYUUrF37LR8JzsRcvpigXcnGf0gC+qRzEsRfAJn
jj+eTPXj+pt53DXYSh1UkZgw0kzuIAYjKoYPj3yEfjD4cKSnHSzu45zgNYRqQHZl
T14Eg9JGnILxWoctgG5en3Z4CAIhM/imu3Pvuv5PDES0k4kSKSBBPUZQxB1rlag1
0wggIQhPBq37svBpq0Eg+nPl2fbb/dYtmxWL1xW4q1FyKyU04lLNyA02xqrkfxfq
vJsGotVGWPT0A0WFwi7dcPLpzQ/AmH8LQJuWdUxxQU8mtS5Io5ssquBxWzY/PSq3
ECTemC0LT9xHdYJ+l2yeOjfBAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUpovAkQ+D
HeyBilCjIUX3Q1XOY8AwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlCNkZDLzg4OTJDQzRBOTgzOTExRUJBMTQwOTk2MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5QjZGQy84ODkyQ0M0QTk4MzkxMUVCQTE0MDk5NjBDNEY5QUUwMi9wb3ZBa1Et
REhleUJpbENqSVVYM1ExWE9ZOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAirIMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ6U2MA0EAgAC
MAcDBQAkB0bAMA0GCSqGSIb3DQEBCwUAA4IBAQCugcLfWyHbDdXYf7lcI2qqy3y6
yXCrzzthyrKkshwYkoPUV38EUlHa/vl2BMbT3WaUa2LnlzGPUeUgOIZa9MyE+qKl
+TRI1gHYKVxmSq2axj9A7Rmam3TW5IYH7SWH0Mtuc3Glcg8QXj/yjE/VfJChjDXo
9IZoVvjZN7Zi5p17uQ5NKY8toM5S53a3BgwLM4RH/8FXxp7pA6lpjuDApL4/EypP
M3DNS4nh055jAyOSYEL4XJEJhs8BoWBkrQbhKv9PDWoDReENKJv8WOZ1kw2drNnm
nwrrmfaKwVGwVWwE/MxCYS1O3OTHuTST/fFyPbOPn6p1ZLmGkGxxf2uh09O8
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:08:14 2024 by rpki-client on console-ams.rpki-client.org