Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer
File: wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer (raw, json)
Hash identifier: 9ZmmzWmJoM0OxpZONxxnqEO8RewtziWjvfW3k2XfDQ0=
Subject key identifier: C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E022
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Feb 2024 06:17:18 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 45580
IP: 123.108.112.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122914 (0x1e022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 22 06:17:18 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91B7292/serialNumber=C2FC6448564EC6526B91B2FE23B4FD58342D20F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:56:3b:d4:e9:02:4d:93:fd:d1:5b:ee:5c:cc:
4d:f1:83:b5:ef:1a:d1:1b:3e:ba:87:ca:a4:7c:2a:
8f:a0:81:54:e2:5c:bf:b8:9f:dd:61:f9:ce:65:92:
d4:dd:1b:ae:71:f7:61:7f:b4:42:e4:4e:0e:f9:ed:
df:71:cc:7e:70:41:fb:7d:96:63:61:62:cc:49:a8:
28:7f:43:63:de:d1:ce:64:a4:5c:13:b0:5d:9f:27:
75:de:50:a5:53:69:27:8c:18:76:dd:e1:01:0d:b1:
0b:b5:44:85:dd:fe:a7:a8:4b:47:db:5b:34:f5:51:
cb:67:fe:7e:82:72:6a:2b:c4:03:51:2b:24:6f:5c:
c4:4c:8f:87:14:9d:f6:80:e4:58:4a:d6:b4:fb:35:
35:29:b7:89:41:8d:39:27:ff:d3:eb:a1:d7:bd:6f:
eb:bd:4f:1b:03:2c:d3:02:13:f2:fb:a0:ec:67:b0:
df:b9:ef:af:3e:35:52:1c:74:37:b7:8f:af:26:c4:
2b:e5:9c:21:45:51:82:21:00:23:a1:f6:e8:b6:4b:
70:60:1f:bd:e5:3a:29:a9:d3:ba:a6:ba:1a:b5:e3:
99:8c:69:c0:af:86:b6:c8:27:59:68:d5:b4:bf:fc:
cd:12:9d:7c:7d:3d:c9:19:05:ce:ee:e8:5f:3a:c2:
9d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45580
sbgp-ipAddrBlock: critical
IPv4:
123.108.112.0/20
Signature Algorithm: sha256WithRSAEncryption
65:91:63:3b:18:02:99:95:4f:18:dc:cf:f5:85:ee:12:23:52:
87:34:0b:3a:ae:38:c9:3c:31:c5:6d:cc:4d:61:b9:50:7b:17:
ac:eb:46:b1:44:ac:b5:0c:a7:67:8b:56:6e:ac:59:8d:99:9c:
fc:7c:0e:72:09:c4:10:3c:ff:8b:e6:35:01:5e:ae:84:73:49:
7f:1e:92:3a:47:32:8a:b5:21:42:78:82:8f:83:93:94:17:5a:
7e:90:a4:31:9e:5c:66:12:dc:23:66:fd:8a:c7:3d:52:00:ca:
44:79:e5:49:87:2e:4d:dd:ac:5f:00:87:e9:95:50:aa:bc:e9:
08:2b:6d:34:b6:b4:a8:a6:8f:27:1b:00:f9:0c:20:6e:d2:66:
56:6b:98:87:3d:d2:10:00:19:05:77:c5:2d:a9:05:a6:52:5b:
45:ff:07:40:38:ae:11:53:ab:c1:b6:89:b7:95:ec:b2:ff:a1:
26:00:65:0b:18:9e:d5:d6:21:78:e8:f8:c8:36:aa:22:61:e4:
89:fe:a4:00:69:3b:bf:14:c6:00:2c:1f:1f:4f:c5:a4:8a:e0:
d2:23:05:53:d6:47:77:14:81:66:fb:d6:0e:12:f2:0e:b3:30:
33:cb:2e:9c:ca:de:16:0e:ee:ab:13:e9:ed:bd:a6:89:6a:74:
dc:1f:4d:5b
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAeAiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDIyMjA2MTcxOFoXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjcyOTIxMTAvBgNVBAUTKEMyRkM2NDQ4NTY0RUM2NTI2QjkxQjJG
RTIzQjRGRDU4MzQyRDIwRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDxVjvU6QJNk/3RW+5czE3xg7XvGtEbPrqHyqR8Ko+ggVTiXL+4n91h+c5lktTd
G65x92F/tELkTg757d9xzH5wQft9lmNhYsxJqCh/Q2Pe0c5kpFwTsF2fJ3XeUKVT
aSeMGHbd4QENsQu1RIXd/qeoS0fbWzT1Uctn/n6CcmorxANRKyRvXMRMj4cUnfaA
5FhK1rT7NTUpt4lBjTkn/9Prode9b+u9TxsDLNMCE/L7oOxnsN+5768+NVIcdDe3
j68mxCvlnCFFUYIhACOh9ui2S3BgH73lOimp07qmuhq145mMacCvhrbIJ1lo1bS/
/M0SnXx9PckZBc7u6F86wp3hAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUwvxkSFZO
xlJrkbL+I7T9WDQtIPQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI3MjkyLzAzQjg4QURBRDE0QTExRUU5OURFMkI1MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNzI5Mi8wM0I4OEFEQUQxNEExMUVFOTlERTJCNTJDNEY5QUUwMi93dnhrU0Za
T3hsSnJrYkwtSTdUOVdEUXRJUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDALIMMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEe2xwMA0GCSqG
SIb3DQEBCwUAA4IBAQBlkWM7GAKZlU8Y3M/1he4SI1KHNAs6rjjJPDHFbcxNYblQ
exes60axRKy1DKdni1ZurFmNmZz8fA5yCcQQPP+L5jUBXq6Ec0l/HpI6RzKKtSFC
eIKPg5OUF1p+kKQxnlxmEtwjZv2Kxz1SAMpEeeVJhy5N3axfAIfplVCqvOkIK200
trSopo8nGwD5DCBu0mZWa5iHPdIQABkFd8UtqQWmUltF/wdAOK4RU6vBtom3leyy
/6EmAGULGJ7V1iF46PjINqoiYeSJ/qQAaTu/FMYALB8fT8WkiuDSIwVT1kd3FIFm
+9YOEvIOszAzyy6cyt4WDu6rE+ntvaaJanTcH01b
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:56 2024 by rpki-client on console-fra.rpki-client.org