Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer
File:                     uOlsag2VSKKgQMvnGZdFun2x7Sg.cer (download)
Hash identifier:          UaY0wWSvd6CLIsFPG6atgzqQFOc0rQphx5QHTr39u8Y=
Subject key identifier:   B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       01725D
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate valid until:  Fri 01 Dec 2023 00:00:00 +0000
Subordinate resources:
    1: IP: 43.246.220.0/22
    2: IP: 103.35.208.0/22
    3: IP: 2401:f840::/32

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 94813 (0x1725d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Oct  7 16:55:45 2022 GMT
            Not After : Dec  1 00:00:00 2023 GMT
        Subject: CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:dd:44:22:81:c6:24:c7:f7:b0:b1:82:87:2e:
                    e9:5b:f6:83:f2:c6:36:79:e9:56:b0:3d:96:48:09:
                    2e:bd:f6:88:c9:0b:01:cd:ef:15:33:10:44:b9:0e:
                    49:8a:43:cf:3f:f3:75:c2:c1:1e:66:fc:d5:69:19:
                    0f:2f:fc:67:c0:85:8b:e1:3b:ea:cd:65:cd:1e:6f:
                    eb:35:e3:93:51:9f:02:4b:96:4a:d7:68:24:37:1d:
                    76:77:d0:92:ed:3f:c0:e3:29:ad:79:01:7c:69:0a:
                    08:dd:75:35:d5:49:1a:2d:c4:aa:37:06:fb:86:c0:
                    79:15:ff:ce:18:2c:c5:e5:0e:bb:05:db:21:3f:49:
                    7b:b1:12:82:07:1b:f1:c4:d6:03:8e:7d:e4:aa:94:
                    4c:64:34:83:8c:3c:54:35:33:56:66:28:f6:87:98:
                    6f:49:70:a7:d9:36:72:c8:0b:b6:a6:de:22:79:12:
                    4e:f4:bd:97:d9:ac:26:02:3a:8a:21:c8:e4:3a:7d:
                    44:16:37:3c:5f:5b:cd:34:c0:8f:8d:ed:1e:27:3b:
                    55:8e:c6:df:47:cc:75:6b:f6:2b:9b:6e:80:6f:1d:
                    23:f5:84:9b:66:ca:9b:e1:09:9e:30:26:86:ab:a1:
                    7f:95:82:8b:10:05:45:6c:e1:59:61:3f:16:4b:e8:
                    6c:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28
            X509v3 Authority Key Identifier: 
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  43.246.220.0/22
                  103.35.208.0/22
                IPv6:
                  2401:f840::/32

    Signature Algorithm: sha256WithRSAEncryption
         1a:48:bd:12:7b:61:05:55:f4:d7:ba:e1:8b:50:59:da:07:a1:
         a9:88:fa:b6:c4:c2:0d:6d:97:51:99:04:51:22:fd:ce:ad:0d:
         90:8d:3d:6c:a8:c0:ff:9d:fa:a1:e5:ff:e0:ef:1a:da:ff:4f:
         77:8e:13:b6:31:63:c1:d6:18:74:72:92:3f:7b:9c:86:91:2b:
         7e:21:ab:ef:8a:a7:7c:8c:68:2a:ae:c4:4a:24:b9:12:9c:f6:
         73:3b:85:dc:3b:43:9e:6a:24:17:20:71:4f:72:c4:26:4a:b6:
         9c:48:cd:e8:b7:9e:1f:dd:69:a2:de:75:21:52:7e:fa:de:30:
         86:21:be:a4:5e:bb:5a:eb:a8:62:a2:90:48:c2:25:01:2e:c1:
         3b:65:55:b5:2d:ee:72:b0:0c:11:10:8a:db:15:3c:c9:58:8e:
         c1:e1:bc:25:01:6c:df:7d:55:e1:96:25:1e:e3:36:27:2c:c8:
         8f:7c:a3:6a:fa:b6:56:be:f1:33:94:bc:de:f4:1e:5c:ba:b4:
         1f:1c:87:8b:b1:d9:59:c6:77:6a:12:33:85:64:b5:66:34:88:
         86:17:fc:bf:6e:b0:a7:b1:5e:52:6b:a1:af:75:f2:84:16:39:
         7d:89:ff:96:ad:87:6d:34:02:6b:ed:b9:a6:0a:c5:bd:51:50:
         0d:f9:74:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 30 09:36:02 2023 by rpki-client.