Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer
File: raez5kKEQOUk2gaDhqHt8yH4gR4.cer (raw, json)
Hash identifier: og0UcjFsOBpC1qRLYl4P8llCozm+RWOyvLNF9Tsp9UI=
Subject key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B8B2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Aug 2023 23:03:52 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 203.99.64.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112818 (0x1b8b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 24 23:03:52 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ec:6c:7d:cc:3d:ec:71:f3:6d:23:3a:5e:77:
98:c5:9f:46:a4:62:1a:39:c6:75:da:b2:43:78:db:
34:57:72:e1:48:b5:31:94:ce:65:05:25:4c:11:07:
2d:d2:9e:ec:30:f8:00:ef:47:0d:38:3e:40:7c:91:
eb:ef:8a:7c:b3:cb:7d:1c:94:eb:19:c5:cd:5b:04:
d1:84:68:a7:3e:ac:67:25:ed:e5:46:4f:de:cb:7d:
10:e7:87:12:2a:19:9c:57:7f:99:b0:ca:42:3a:5b:
4f:f6:fc:3c:56:22:d5:6f:20:85:87:e9:d2:62:84:
e2:d1:81:a2:66:5d:15:b3:98:68:49:ac:3b:60:2d:
89:c5:e9:68:ac:ae:81:a0:c3:65:bb:79:65:1a:18:
91:2b:46:1a:58:9f:31:3b:ea:e7:5a:99:46:d8:b5:
17:70:40:76:86:ec:e4:e5:44:57:ae:d4:ad:b2:d4:
9f:26:3d:63:74:a7:72:a5:4f:02:bf:80:8d:77:9f:
fc:22:0d:9f:35:39:a8:f6:ff:73:f2:02:62:85:9c:
9d:2c:0c:55:6f:a7:54:09:6a:e9:20:5d:11:23:1c:
6e:8c:64:db:35:89:f8:1c:6c:6a:3a:e3:5c:96:8e:
21:eb:45:9d:16:91:c1:65:56:7d:ee:f4:c5:7b:14:
3c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.99.64.0/21
Signature Algorithm: sha256WithRSAEncryption
83:6c:fd:56:44:4b:fb:c3:e3:a2:54:e8:f5:bc:91:bd:3d:9d:
47:c4:dd:80:aa:63:30:fd:01:b7:1a:c8:cb:4c:77:88:b5:65:
7a:36:9c:c5:ca:f4:3e:41:1a:4d:d4:b0:d7:ba:6e:31:c5:7a:
b3:1c:0e:9a:c8:8a:21:46:8c:33:cd:73:5c:db:0f:c9:91:5a:
82:1d:1f:80:f2:df:91:da:ae:b7:0d:bb:f1:8c:ea:fe:f2:48:
5c:d2:0e:bf:fd:97:fb:1e:55:f5:bd:cd:3b:73:26:dd:1a:44:
07:3f:ac:57:4c:cc:8f:c5:d7:15:e4:fb:b7:c6:20:e6:45:8b:
b3:ec:55:73:86:d5:6a:59:95:e7:8a:2a:37:76:22:9c:5f:e1:
0d:f5:45:0e:7c:20:e4:7e:3c:98:2b:92:7b:b0:ac:d8:d6:cc:
b0:d0:4e:50:04:8a:b9:b9:84:4a:8f:46:71:8f:17:39:93:4f:
48:db:0b:28:ad:29:0a:61:ea:68:00:e7:9f:27:0f:73:4b:ec:
e7:ad:9e:50:d0:98:dc:e1:52:c1:82:9b:75:a0:06:87:47:f8:
ca:c2:fd:06:af:fa:cf:52:39:d8:32:4f:7c:52:ab:f5:6e:92:
48:96:dc:c6:3d:8a:23:f0:69:dd:ef:07:35:2b:02:0d:5c:cd:
26:28:2a:05
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAbiyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgyNDIzMDM1MloXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDcxMDMxMTAvBgNVBAUTKEFEQTdCM0U2NDI4NDQwRTUyNERBMDY4
Mzg2QTFFREYzMjFGODgxMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDx7Gx9zD3scfNtIzped5jFn0akYho5xnXaskN42zRXcuFItTGUzmUFJUwRBy3S
nuww+ADvRw04PkB8kevvinyzy30clOsZxc1bBNGEaKc+rGcl7eVGT97LfRDnhxIq
GZxXf5mwykI6W0/2/DxWItVvIIWH6dJihOLRgaJmXRWzmGhJrDtgLYnF6WisroGg
w2W7eWUaGJErRhpYnzE76udamUbYtRdwQHaG7OTlRFeu1K2y1J8mPWN0p3KlTwK/
gI13n/wiDZ81Oaj2/3PyAmKFnJ0sDFVvp1QJaukgXREjHG6MZNs1ifgcbGo641yW
jiHrRZ0WkcFlVn3u9MV7FDzhAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUraez5kKE
QOUk2gaDhqHt8yH4gR4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ3MTAzLzdBQjgxMTJBNDJEMjExRUVCN0M0RDAxRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENzEwMy83QUI4MTEyQTQyRDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9yYWV6NWtL
RVFPVWsyZ2FEaHFIdDh5SDRnUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAPLY0AwDQYJKoZIhvcNAQELBQADggEBAINs/VZES/vD46JU6PW8
kb09nUfE3YCqYzD9AbcayMtMd4i1ZXo2nMXK9D5BGk3UsNe6bjHFerMcDprIiiFG
jDPNc1zbD8mRWoIdH4Dy35HarrcNu/GM6v7ySFzSDr/9l/seVfW9zTtzJt0aRAc/
rFdMzI/F1xXk+7fGIOZFi7PsVXOG1WpZleeKKjd2Ipxf4Q31RQ58IOR+PJgrknuw
rNjWzLDQTlAEirm5hEqPRnGPFzmTT0jbCyitKQph6mgA558nD3NL7OetnlDQmNzh
UsGCm3WgBodH+MrC/Qav+s9SOdgyT3xSq/VukkiW3MY9iiPwad3vBzUrAg1czSYo
KgU=
-----END CERTIFICATE-----
Generated at Thu May 2 01:07:30 2024 by rpki-client on console-fra.rpki-client.org