Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rZUV35W_1Pjt_12MvSq0ub2E-KQ.cer
File: rZUV35W_1Pjt_12MvSq0ub2E-KQ.cer (raw, json)
Hash identifier: wP70/nBAu4xW1VuqmG6IWedHnIc80CWIueZ4b6yCh4w=
Subject key identifier: AD:95:15:DF:95:BF:D4:F8:ED:FF:5D:8C:BD:2A:B4:B9:BD:84:F8:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E721
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167427/6AB91FF6BD8711EDB5E40847C4F9AE02/rZUV35W_1Pjt_12MvSq0ub2E-KQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167427/6AB91FF6BD8711EDB5E40847C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Mar 2024 15:43:19 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 103.96.226.0/23
IP: 2400:e2e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124705 (0x1e721)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 28 15:43:19 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9167427/serialNumber=AD9515DF95BFD4F8EDFF5D8CBD2AB4B9BD84F8A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:be:6f:4e:3b:06:09:5f:8b:89:13:29:c4:17:
63:19:85:42:b5:c7:a3:67:8c:fe:78:45:d1:97:47:
e1:9e:f0:00:58:43:54:c4:1a:24:65:9a:d4:8f:1f:
14:6a:48:5b:09:93:76:62:db:92:8d:05:90:ed:60:
09:94:0e:54:1f:8f:6e:fd:b3:0d:9a:e5:f0:85:9f:
09:fe:7b:f0:38:b9:40:d5:59:df:2b:55:37:45:3a:
c2:a4:9d:db:1c:0c:29:98:db:95:ad:8e:b1:a9:1c:
bb:6c:f8:fb:98:df:15:6a:8a:7f:6b:32:89:2c:bb:
f6:36:57:73:aa:74:ef:6d:2d:2b:29:3f:d0:5c:b0:
4c:c8:9f:91:72:63:7d:10:bc:af:e4:ad:b5:c9:61:
29:15:8b:65:40:d3:60:67:c0:fd:8d:23:2a:df:fe:
64:f2:18:77:5f:72:ba:9f:e1:ad:69:4a:7b:21:e9:
6c:a3:13:de:49:3d:e2:97:6e:ba:10:2b:1d:1c:bb:
89:65:d7:fd:35:e0:89:be:1d:8e:70:96:03:34:51:
2d:75:0c:20:ce:69:47:fe:f1:9a:fd:85:4d:43:a9:
b8:26:f2:25:90:e1:b2:4c:06:67:5f:79:42:98:14:
f7:ab:2c:19:23:52:f5:5f:da:3f:91:8b:a1:40:14:
a9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:95:15:DF:95:BF:D4:F8:ED:FF:5D:8C:BD:2A:B4:B9:BD:84:F8:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167427/6AB91FF6BD8711EDB5E40847C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167427/6AB91FF6BD8711EDB5E40847C4F9AE02/rZUV35W_1Pjt_12MvSq0ub2E-KQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.96.226.0/23
IPv6:
2400:e2e0::/32
Signature Algorithm: sha256WithRSAEncryption
2c:a2:79:73:98:3e:e2:93:e1:2e:1d:5c:f3:b4:5a:89:ae:f6:
a3:7e:c3:6b:df:2e:1a:63:67:27:97:06:27:1f:45:9b:c2:a9:
7a:50:f5:80:f2:da:97:92:31:3b:9f:46:5f:99:61:37:aa:b9:
b0:40:bf:c9:c0:30:9b:b9:34:8f:1d:87:1b:15:fc:8d:37:e7:
b3:cc:2f:5d:06:0f:7e:de:9b:87:e9:66:24:f9:bd:47:f5:e9:
33:d0:88:55:f1:18:3a:f6:a8:b9:e5:5c:60:97:22:39:8c:b8:
86:55:c9:6c:7e:23:2a:74:42:6a:62:0a:b8:e5:fc:52:db:bb:
db:e3:3c:55:a6:07:64:f0:7d:5b:4e:9c:b0:16:9a:69:4d:d4:
0b:9c:37:1e:c9:04:f0:e1:40:2a:fe:04:8e:98:08:63:2b:ef:
2c:2b:01:c7:2d:4f:f8:d7:28:71:b6:bc:58:8a:14:61:92:52:
7f:09:8e:cd:16:00:97:8f:e0:9b:fb:c7:5e:6e:9b:0c:cc:d0:
0f:52:9a:3c:cf:13:d9:d7:fd:36:18:e3:58:6e:5c:96:87:32:
78:db:c8:a1:80:89:44:69:dc:9e:71:93:3e:27:22:5e:69:c6:
2a:5d:9c:2e:e1:20:29:7a:de:1f:a2:b2:80:81:da:34:72:da:
87:05:f2:35
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAechMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMyODE1NDMxOVoXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjc0MjcxMTAvBgNVBAUTKEFEOTUxNURGOTVCRkQ0RjhFREZGNUQ4
Q0JEMkFCNEI5QkQ4NEY4QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCgvm9OOwYJX4uJEynEF2MZhUK1x6NnjP54RdGXR+Ge8ABYQ1TEGiRlmtSPHxRq
SFsJk3Zi25KNBZDtYAmUDlQfj279sw2a5fCFnwn+e/A4uUDVWd8rVTdFOsKkndsc
DCmY25WtjrGpHLts+PuY3xVqin9rMoksu/Y2V3OqdO9tLSspP9BcsEzIn5FyY30Q
vK/krbXJYSkVi2VA02BnwP2NIyrf/mTyGHdfcrqf4a1pSnsh6WyjE95JPeKXbroQ
Kx0cu4ll1/014Im+HY5wlgM0US11DCDOaUf+8Zr9hU1Dqbgm8iWQ4bJMBmdfeUKY
FPerLBkjUvVf2j+Ri6FAFKlnAgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUrZUV35W/
1Pjt/12MvSq0ub2E+KQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY3NDI3LzZBQjkxRkY2QkQ4NzExRURCNUU0MDg0N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2NzQyNy82QUI5MUZGNkJEODcxMUVEQjVFNDA4NDdDNEY5QUUwMi9yWlVWMzVX
XzFQanRfMTJNdlNxMHViMkUtS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAFnYOIwDQQCAAIwBwMFACQA4uAwDQYJKoZIhvcNAQELBQADggEB
ACyieXOYPuKT4S4dXPO0Womu9qN+w2vfLhpjZyeXBicfRZvCqXpQ9YDy2peSMTuf
Rl+ZYTequbBAv8nAMJu5NI8dhxsV/I0357PML10GD37em4fpZiT5vUf16TPQiFXx
GDr2qLnlXGCXIjmMuIZVyWx+Iyp0QmpiCrjl/FLbu9vjPFWmB2TwfVtOnLAWmmlN
1AucNx7JBPDhQCr+BI6YCGMr7ywrAcctT/jXKHG2vFiKFGGSUn8Jjs0WAJeP4Jv7
x15umwzM0A9SmjzPE9nX/TYY41huXJaHMnjbyKGAiURp3J5xkz4nIl5pxipdnC7h
ICl63h+isoCB2jRy2ocF8jU=
-----END CERTIFICATE-----
Generated at Fri Apr 19 15:10:25 2024 by rpki-client on console-fra.rpki-client.org