Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pwfo7Wx0uvNh3UByccajTUQCIqw.cer
File: pwfo7Wx0uvNh3UByccajTUQCIqw.cer (raw, json)
Hash identifier: HX3vG8mB3hUQh40OFKIq7IdXRJb8hLdtyE4KqcIdHhQ=
Subject key identifier: A7:07:E8:ED:6C:74:BA:F3:61:DD:40:72:71:C6:A3:4D:44:02:22:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E39D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Mar 2024 20:05:37 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 58876
IP: 103.8.231.0/24
IP: 2001:df4:6200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 12:36:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123805 (0x1e39d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 8 20:05:37 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91D0C14/serialNumber=A707E8ED6C74BAF361DD407271C6A34D440222AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6a:cc:7c:ed:56:43:b5:a8:3b:3a:d4:c4:a3:
88:c8:9c:af:95:2b:35:47:e6:79:27:ec:ac:46:27:
d9:d2:4d:a1:67:ee:90:f6:2f:03:29:e8:38:2e:1a:
84:be:4e:11:87:b0:40:b1:36:9f:0d:eb:2f:7c:7e:
54:51:af:b7:36:0e:79:74:34:a1:b2:f9:a3:40:e4:
36:12:32:d6:90:f0:54:77:30:45:26:b7:e9:5e:ad:
c1:07:73:8f:6d:63:6b:83:59:45:09:6f:b1:de:5c:
f3:f3:df:c5:61:7e:7c:38:93:f1:0b:5e:5e:8d:dd:
50:e9:70:c6:82:4b:58:9c:e0:91:3d:ae:25:d7:60:
51:28:ed:92:e4:3c:57:bc:47:e4:ba:33:b3:63:30:
a2:4a:d8:2d:90:0f:1a:fc:b3:61:92:9b:01:80:37:
ab:98:9a:3b:49:45:04:24:11:44:58:ef:a8:d1:d5:
cb:56:86:04:c4:f6:0c:74:a3:a8:2d:6e:40:c9:36:
52:f1:1d:25:a0:7f:81:c8:7a:2b:e7:57:c8:9c:3d:
24:c8:9a:8a:8a:db:88:aa:0e:c8:43:65:be:3c:4d:
f7:37:e2:20:77:6c:b7:42:46:96:18:c3:86:c5:9f:
48:fd:d5:bf:85:5d:64:93:d7:b3:1a:fe:50:75:35:
3e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:07:E8:ED:6C:74:BA:F3:61:DD:40:72:71:C6:A3:4D:44:02:22:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58876
sbgp-ipAddrBlock: critical
IPv4:
103.8.231.0/24
IPv6:
2001:df4:6200::/48
Signature Algorithm: sha256WithRSAEncryption
d9:58:92:c5:9f:2c:fa:3c:49:14:ce:fd:1e:b1:d5:26:99:1c:
54:b1:ee:dd:32:e2:df:cf:a0:21:b7:83:b4:1d:94:35:68:2b:
c7:03:07:91:ad:a5:88:86:72:36:6b:5b:67:3f:f0:a2:5c:da:
f3:5e:02:eb:f6:38:8c:e3:4a:f1:ac:d5:e6:db:76:81:ba:46:
38:01:7a:f7:da:bc:3d:97:da:19:af:74:81:78:78:23:ee:86:
9e:3b:71:38:dc:8b:08:a4:fb:2d:ad:65:39:04:89:83:6c:ce:
43:a2:3b:22:28:f0:5b:f0:5f:d1:12:81:c0:0f:d7:52:8e:10:
e3:3c:38:36:5b:1c:cc:e0:4f:c0:9a:e6:f0:a1:53:3e:e8:02:
84:8a:3e:99:d2:6d:ef:7d:29:7d:c7:b3:a6:2c:a3:b5:ea:ba:
49:1e:30:80:ee:23:78:ad:c0:bb:69:45:1a:e7:37:74:09:58:
9d:63:66:84:8f:b3:36:fd:b4:27:59:9a:4c:48:8b:62:bb:58:
5a:a8:1b:d9:28:b7:83:eb:d2:74:f8:99:d4:9c:74:da:e4:79:
20:3d:54:46:58:72:5e:dd:4b:2d:52:97:2d:a7:74:27:14:15:
6e:55:16:0c:15:04:2d:9e:c7:eb:e4:fd:af:00:f3:04:bd:ed:
ff:cd:ab:6a
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAeOdMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwODIwMDUzN1oXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDBDMTQxMTAvBgNVBAUTKEE3MDdFOEVENkM3NEJBRjM2MURENDA3
MjcxQzZBMzRENDQwMjIyQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC/asx87VZDtag7OtTEo4jInK+VKzVH5nkn7KxGJ9nSTaFn7pD2LwMp6DguGoS+
ThGHsECxNp8N6y98flRRr7c2Dnl0NKGy+aNA5DYSMtaQ8FR3MEUmt+lercEHc49t
Y2uDWUUJb7HeXPPz38Vhfnw4k/ELXl6N3VDpcMaCS1ic4JE9riXXYFEo7ZLkPFe8
R+S6M7NjMKJK2C2QDxr8s2GSmwGAN6uYmjtJRQQkEURY76jR1ctWhgTE9gx0o6gt
bkDJNlLxHSWgf4HIeivnV8icPSTImoqK24iqDshDZb48Tfc34iB3bLdCRpYYw4bF
n0j91b+FXWST17Ma/lB1NT5hAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUpwfo7Wx0
uvNh3UByccajTUQCIqwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQwQzE0LzE4OEMxQzI2NEUxMzExRURCMTJGM0M2RkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEMEMxNC8xODhDMUMyNjRFMTMxMUVEQjEyRjNDNkZDNEY5QUUwMi9wd2ZvN1d4
MHV2TmgzVUJ5Y2NhalRVUUNJcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAOX8MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZwjnMA8EAgAC
MAkDBwAgAQ30YgAwDQYJKoZIhvcNAQELBQADggEBANlYksWfLPo8SRTO/R6x1SaZ
HFSx7t0y4t/PoCG3g7QdlDVoK8cDB5GtpYiGcjZrW2c/8KJc2vNeAuv2OIzjSvGs
1ebbdoG6RjgBevfavD2X2hmvdIF4eCPuhp47cTjciwik+y2tZTkEiYNszkOiOyIo
8FvwX9ESgcAP11KOEOM8ODZbHMzgT8Ca5vChUz7oAoSKPpnSbe99KX3Hs6Yso7Xq
ukkeMIDuI3itwLtpRRrnN3QJWJ1jZoSPszb9tCdZmkxIi2K7WFqoG9kot4Pr0nT4
mdScdNrkeSA9VEZYcl7dSy1Sly2ndCcUFW5VFgwVBC2ex+vk/a8A8wS97f/Nq2o=
-----END CERTIFICATE-----
Generated at Sat Apr 20 13:47:26 2024 by rpki-client on console-ams.rpki-client.org