Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer
File:                     rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer (raw, json)
Hash identifier:          tagTv2HEOTV0T5QK7Dcen5c8aBypDirQl4ojAiXYVcc=
Subject key identifier:   AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02C30D
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Mon 06 Jul 2026 12:32:18 +0000
Certificate not after:    Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources:    AS: 152853
                          IP: 103.158.118.0/23
                          IP: 2001:df3:cec0::/48
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 18:39:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 181005 (0x2c30d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jul  6 12:32:18 2026 GMT
            Not After : Aug 31 00:00:00 2027 GMT
        Subject: CN=A911B6FB, serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:17:1b:6a:59:43:c6:04:a1:f8:f9:d1:21:25:
                    68:92:c1:9a:8b:cd:8c:7f:cb:10:53:f5:1e:c2:00:
                    89:7b:cd:8e:f7:d5:97:bc:52:ab:bc:8f:8a:e5:bc:
                    f7:3b:1b:24:d2:ee:b3:1b:df:df:72:0e:b2:06:39:
                    ed:3c:e8:08:31:82:5b:63:da:ce:ae:fd:d7:95:e8:
                    48:97:d6:81:81:f0:90:c9:db:07:ab:ed:29:65:c9:
                    5f:9b:ca:5e:71:a9:ff:cc:91:6a:54:59:02:01:bd:
                    4e:01:fc:67:4f:f7:3f:2b:be:6a:0c:62:33:0f:a4:
                    72:64:13:13:1d:81:a8:c3:b9:2a:95:d2:a4:17:ef:
                    96:63:a3:c9:5c:ef:9a:78:56:68:25:41:55:fa:3d:
                    f7:ee:94:45:c3:60:03:fb:af:07:ba:2a:ad:1e:b7:
                    58:0b:3a:7f:18:a5:93:f1:43:84:c4:d1:c6:c6:35:
                    58:26:a0:b0:24:51:c5:ed:42:ba:36:1b:ec:f3:4d:
                    48:39:21:a1:7d:dd:13:cf:d1:92:29:f7:63:03:05:
                    69:32:6f:a0:82:d8:02:d5:c5:0c:bc:cd:36:09:38:
                    df:50:24:ab:00:87:02:d7:08:64:de:15:90:3a:da:
                    8d:aa:1a:d8:3f:ab:83:43:57:45:2e:5d:42:dc:f1:
                    13:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  152853

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.158.118.0/23
                IPv6:
                  2001:df3:cec0::/48

    Signature Algorithm: sha256WithRSAEncryption
         49:1b:f6:e6:0d:e6:b7:69:75:88:72:3c:04:cf:53:a3:11:8b:
         0c:f6:d3:d2:14:31:2f:b9:bb:8f:f8:20:4b:97:a4:34:54:62:
         19:93:22:d7:cd:fd:88:ee:32:4d:4e:ee:76:81:10:43:7a:cf:
         87:c9:21:3e:89:ea:ff:92:6c:bd:dd:ba:77:8a:33:e0:54:34:
         4c:3e:61:27:21:a9:ab:d3:1f:8f:93:ad:e7:22:13:51:5b:b7:
         4b:97:af:d3:7f:49:ac:18:96:97:66:cc:5e:d3:b7:78:e3:cf:
         cb:85:c6:74:54:d5:af:ff:a6:72:1e:74:83:ca:4e:34:4b:35:
         cd:1d:b8:68:3c:d7:54:56:46:1c:8c:ea:ed:a6:5d:60:a6:b7:
         8b:5f:fa:0b:28:ba:a5:af:4b:35:da:7c:4a:9f:14:9f:bb:a8:
         05:53:8a:57:fa:c9:32:36:40:3f:70:61:b3:10:23:db:bc:c3:
         aa:0a:8e:a7:45:8e:62:bc:fb:f0:ab:e6:fd:ef:28:ad:72:db:
         a3:f2:d3:10:4a:12:77:5c:3b:a3:66:4a:68:b2:03:78:a6:cd:
         af:c7:2e:bd:a0:87:58:ae:96:9b:d8:19:af:5a:0b:76:68:e5:
         df:1d:a8:ab:f9:b5:3e:9a:24:ed:d9:88:5e:41:3d:0c:cc:ad:
         3f:b1:20:a2
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAsMNMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDcwNjEyMzIxOFoXDTI3MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUI2RkIxMTAvBgNVBAUTKEFEMjM0RTNGMUVCQkFEQUQwMTlGRTA5
QUZGRjcwRTgwNzVBRkRFMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCjFxtqWUPGBKH4+dEhJWiSwZqLzYx/yxBT9R7CAIl7zY731Ze8Uqu8j4rlvPc7
GyTS7rMb399yDrIGOe086Agxgltj2s6u/deV6EiX1oGB8JDJ2wer7SllyV+byl5x
qf/MkWpUWQIBvU4B/GdP9z8rvmoMYjMPpHJkExMdgajDuSqV0qQX75Zjo8lc75p4
VmglQVX6PffulEXDYAP7rwe6Kq0et1gLOn8YpZPxQ4TE0cbGNVgmoLAkUcXtQro2
G+zzTUg5IaF93RPP0ZIp92MDBWkyb6CC2ALVxQy8zTYJON9QJKsAhwLXCGTeFZA6
2o2qGtg/q4NDV0UuXULc8RNLAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUrSNOPx67
ra0Bn+Ca//cOgHWv3hcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFCNkZCL0Q5Q0M5RURFMTFGNzExRUY5M0JEOTQ0RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExQjZGQi9EOUNDOUVERTExRjcxMUVGOTNCRDk0NEVDNEY5QUUwMi9yU05PUHg2
N3JhMEJuLUNhX19jT2dIV3YzaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlUVMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ552MA8EAgAC
MAkDBwAgAQ3zzsAwDQYJKoZIhvcNAQELBQADggEBAEkb9uYN5rdpdYhyPATPU6MR
iwz209IUMS+5u4/4IEuXpDRUYhmTItfN/YjuMk1O7naBEEN6z4fJIT6J6v+SbL3d
uneKM+BUNEw+YSchqavTH4+TreciE1Fbt0uXr9N/SawYlpdmzF7Tt3jjz8uFxnRU
1a//pnIedIPKTjRLNc0duGg811RWRhyM6u2mXWCmt4tf+gsouqWvSzXafEqfFJ+7
qAVTilf6yTI2QD9wYbMQI9u8w6oKjqdFjmK8+/Cr5v3vKK1y26Py0xBKEndcO6Nm
SmiyA3imza/HLr2gh1iulpvYGa9aC3Zo5d8dqKv5tT6aJO3ZiF5BPQzMrT+xIKI=
-----END CERTIFICATE-----
Generated at Sun Jul 12 22:31:33 2026 by rpki-client