Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
File: sBO5crQspa2fahYr87XHT5M8HgU.cer (raw, json)
Hash identifier: DcWd39Ew2UdVUkG+9aJn4l2B522BEI8MktiDHkyRhyA=
Subject key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FAE7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 24 Jun 2024 21:31:59 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 103.168.209.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129767 (0x1fae7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 24 21:31:59 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91E2B66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:f8:c9:07:69:d2:ee:66:ff:7b:6c:a7:90:
6a:44:c7:6a:0d:bc:35:1c:b1:26:bb:5b:85:33:98:
fd:ed:00:2d:ba:1d:fb:32:90:08:87:8a:04:ff:50:
6f:a1:45:cf:13:d0:ff:6f:fa:ff:cd:f0:a2:bd:aa:
8a:49:56:98:8d:bd:dd:1c:d3:01:0b:63:c5:60:74:
63:42:56:11:3d:5c:93:3f:3b:56:06:a7:bd:f0:d1:
2d:46:1d:b6:b9:e4:08:86:05:6f:f8:5e:32:73:e7:
5f:01:51:ac:ef:59:6d:05:fc:78:8f:e4:30:1c:8a:
cb:95:88:34:ef:4c:88:66:a8:07:63:3f:67:ac:ba:
a0:d1:15:a7:32:6d:86:fc:88:63:23:25:f5:24:f2:
97:3c:f9:83:17:4a:77:0c:d6:65:39:52:f7:04:7a:
66:d6:75:ec:97:a4:90:84:fc:47:62:86:1a:e8:c8:
78:20:c8:35:11:9f:a8:ee:fb:89:c8:94:15:85:d8:
ab:f2:2c:35:b3:0c:5e:d6:ff:65:f7:c9:61:a1:df:
bf:fe:a6:1c:3e:26:23:7b:55:88:33:69:d8:c9:1c:
03:69:9b:92:e6:80:ca:a4:c0:72:0c:d0:94:a4:95:
06:2e:63:80:bc:86:eb:6d:94:dc:28:cd:5a:e8:a7:
41:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.168.209.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:33:98:5e:d6:5d:a7:f8:06:1c:f2:94:f5:40:8f:9d:ca:0d:
25:0c:b5:19:6b:af:c3:e2:54:b5:98:c3:86:14:e5:28:54:4c:
6b:28:bf:d3:d6:36:61:2e:4a:6d:db:fd:0c:48:f6:1e:57:bb:
7e:2b:7c:29:6d:09:78:cf:41:96:2b:ab:c8:40:0e:27:6a:c5:
f2:d8:53:91:75:17:45:7d:a2:c8:65:20:94:d9:27:10:8b:14:
6d:33:2f:64:96:99:67:ad:b7:15:69:b5:e4:88:12:4d:c0:4a:
e1:e2:a1:4e:22:1e:f1:9a:7b:60:30:e2:52:23:a2:e7:a8:cf:
54:14:60:b3:a1:77:09:8c:02:68:c0:da:18:05:d9:93:85:f2:
ec:84:fb:86:41:21:16:12:d9:f4:6e:0e:be:9f:cc:50:51:7a:
fc:21:35:23:af:7f:4e:40:ed:f4:5e:7f:58:2e:6c:b2:8e:61:
cd:ee:41:55:25:35:47:59:76:33:81:f6:c8:ba:a4:de:cf:24:
d7:cd:17:97:94:fa:38:c4:67:64:10:c3:8b:a0:d2:30:b8:d1:
79:35:6b:bb:30:8a:1f:58:a6:59:4a:98:64:5c:ef:67:38:ac:
12:2a:6b:8d:1d:4c:ed:1c:b4:52:d1:f9:cd:43:82:e1:4e:49:
90:cc:2e:95
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAfrnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDYyNDIxMzE1OVoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYy
QkYzQjVDNzRGOTMzQzFFMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC/yvjJB2nS7mb/e2ynkGpEx2oNvDUcsSa7W4UzmP3tAC26HfsykAiHigT/UG+h
Rc8T0P9v+v/N8KK9qopJVpiNvd0c0wELY8VgdGNCVhE9XJM/O1YGp73w0S1GHba5
5AiGBW/4XjJz518BUazvWW0F/HiP5DAcisuViDTvTIhmqAdjP2esuqDRFacybYb8
iGMjJfUk8pc8+YMXSncM1mU5UvcEembWdeyXpJCE/EdihhroyHggyDURn6ju+4nI
lBWF2KvyLDWzDF7W/2X3yWGh37/+phw+JiN7VYgzadjJHANpm5LmgMqkwHIM0JSk
lQYuY4C8huttlNwozVrop0EjAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUsBO5crQs
pa2fahYr87XHT5M8HgUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUyQjY2LzUzRThGQkVBREE1QjExRUI4M0JFMzcxQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JR
c3BhMmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBABnqNEwDQYJKoZIhvcNAQELBQADggEBAC4zmF7WXaf4BhzylPVA
j53KDSUMtRlrr8PiVLWYw4YU5ShUTGsov9PWNmEuSm3b/QxI9h5Xu34rfCltCXjP
QZYrq8hADidqxfLYU5F1F0V9oshlIJTZJxCLFG0zL2SWmWettxVpteSIEk3ASuHi
oU4iHvGae2Aw4lIjoueoz1QUYLOhdwmMAmjA2hgF2ZOF8uyE+4ZBIRYS2fRuDr6f
zFBRevwhNSOvf05A7fRef1gubLKOYc3uQVUlNUdZdjOB9si6pN7PJNfNF5eU+jjE
Z2QQw4ug0jC40Xk1a7swih9YpllKmGRc72c4rBIqa40dTO0ctFLR+c1DguFOSZDM
LpU=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:03 2025 by rpki-client