Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer
File: wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer (raw, json)
Hash identifier: OlM/imuWINCYeJJk6VLYLgfOvW33CuICND7usOy1byQ=
Subject key identifier: C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0204B5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Aug 2024 21:58:34 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 103.70.224.0/22
IP: 182.255.60.0/22
IP: 2402:67c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132277 (0x204b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 21:58:34 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91E54CF/serialNumber=C1BECF97CA95E06DC06E00C239F62CC6942416D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e3:66:fe:53:ab:b2:ba:20:7e:41:12:2a:f8:
dc:55:36:99:fd:22:4a:b8:36:58:95:3f:0c:57:19:
f7:67:58:25:21:90:b4:de:0e:09:ac:49:53:e9:b2:
ff:73:0c:bc:2f:41:23:15:fe:81:51:88:50:e6:36:
e8:2c:08:e9:55:8f:82:84:3e:fb:9d:0b:0f:9a:53:
ae:52:e6:7a:14:34:ac:83:45:08:b0:7d:51:71:5e:
50:cd:30:b1:b4:9a:2c:cf:46:72:9f:a0:b8:3a:04:
97:e1:48:7b:ca:1a:f6:67:5b:54:f4:95:cb:71:55:
ae:e9:df:dd:b1:77:fd:1c:69:c1:9c:fa:f3:f3:a5:
55:0d:d1:49:fc:92:fd:5e:08:0d:cb:d6:9f:e3:e5:
d2:38:1d:31:57:dc:e4:75:12:9d:d4:cb:69:af:d4:
16:cf:46:70:4c:d7:38:44:da:4f:04:dc:ac:69:8c:
b3:b6:f2:6b:e6:da:34:be:d9:01:66:2f:30:72:ed:
71:c2:a3:1e:1f:0b:87:88:79:ba:20:41:fb:17:52:
e9:fa:4e:e5:d5:25:85:6b:68:71:6a:a2:ee:f9:7d:
18:f8:68:ad:3a:6c:1b:7f:ac:ec:ed:b6:c4:76:a7:
1d:34:1d:8f:1d:30:46:10:ee:5b:02:59:b0:fc:fc:
97:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.70.224.0/22
182.255.60.0/22
IPv6:
2402:67c0::/32
Signature Algorithm: sha256WithRSAEncryption
b3:71:61:4b:b6:cd:68:35:46:4a:56:6c:8f:3e:39:20:c2:fa:
6d:7c:11:d7:00:02:be:1d:4b:2d:07:51:10:6c:16:d6:50:29:
67:97:4e:cd:e7:d9:1e:82:f1:e9:07:26:1b:54:35:aa:21:32:
85:8d:92:c1:ba:e6:46:2f:b4:b4:96:6a:fe:34:cc:b7:3e:8e:
a6:70:b9:b1:58:e7:12:69:f3:85:00:f3:98:0a:79:b6:7e:a4:
fa:15:74:9d:8b:67:81:d0:d6:e8:4e:08:76:9f:97:e3:a2:e6:
b1:84:af:e1:8e:8c:f7:37:2f:fb:90:0b:da:d2:54:a0:db:7b:
e3:c8:ef:dc:dc:1e:6f:53:86:70:18:92:1c:12:18:66:4e:db:
91:37:55:05:d7:55:4c:2c:ac:81:1f:1b:36:46:a3:93:26:fb:
6c:58:1a:9e:c0:bd:c8:04:c1:1c:70:27:ac:a1:a2:6e:66:08:
92:0a:ec:f4:29:f7:96:05:b7:b3:e3:a7:14:89:e8:e9:74:8d:
0f:44:bc:52:e4:4d:4c:ee:5a:86:c5:48:50:85:41:16:54:d7:
23:c4:b2:6f:65:ed:e7:d4:1f:5b:1f:51:b9:01:9c:f4:8d:ca:
24:64:5f:4a:bd:b3:45:12:49:4a:f0:0e:cb:ba:a1:ff:e9:8f:
30:67:65:6e
-----BEGIN CERTIFICATE-----
MIIGEzCCBPugAwIBAgIDAgS1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgwMjIxNTgzNFoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTU0Q0YxMTAvBgNVBAUTKEMxQkVDRjk3Q0E5NUUwNkRDMDZFMDBD
MjM5RjYyQ0M2OTQyNDE2RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDT42b+U6uyuiB+QRIq+NxVNpn9Ikq4NliVPwxXGfdnWCUhkLTeDgmsSVPpsv9z
DLwvQSMV/oFRiFDmNugsCOlVj4KEPvudCw+aU65S5noUNKyDRQiwfVFxXlDNMLG0
mizPRnKfoLg6BJfhSHvKGvZnW1T0lctxVa7p392xd/0cacGc+vPzpVUN0Un8kv1e
CA3L1p/j5dI4HTFX3OR1Ep3Uy2mv1BbPRnBM1zhE2k8E3KxpjLO28mvm2jS+2QFm
LzBy7XHCox4fC4eIebogQfsXUun6TuXVJYVraHFqou75fRj4aK06bBt/rOzttsR2
px00HY8dMEYQ7lsCWbD8/JcbAgMBAAGjggMIMIIDBDAdBgNVHQ4EFgQUwb7Pl8qV
4G3AbgDCOfYsxpQkFtEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUU1NENGL0Q4RjNBQ0FDQ0M4RjExRUFCQzFGMTQ0MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFNTRDRi9EOEYzQUNBQ0NDOEYxMUVBQkMxRjE0NDJDNEY5QUUwMi93YjdQbDhx
VjRHM0FiZ0RDT2ZZc3hwUWtGdEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8EJTAj
MBIEAgABMAwDBAJnRuADBAK2/zwwDQQCAAIwBwMFACQCZ8AwDQYJKoZIhvcNAQEL
BQADggEBALNxYUu2zWg1RkpWbI8+OSDC+m18EdcAAr4dSy0HURBsFtZQKWeXTs3n
2R6C8ekHJhtUNaohMoWNksG65kYvtLSWav40zLc+jqZwubFY5xJp84UA85gKebZ+
pPoVdJ2LZ4HQ1uhOCHafl+Oi5rGEr+GOjPc3L/uQC9rSVKDbe+PI79zcHm9ThnAY
khwSGGZO25E3VQXXVUwsrIEfGzZGo5Mm+2xYGp7AvcgEwRxwJ6yhom5mCJIK7PQp
95YFt7PjpxSJ6Ol0jQ9EvFLkTUzuWobFSFCFQRZU1yPEsm9l7efUH1sfUbkBnPSN
yiRkX0q9s0USSUrwDsu6of/pjzBnZW4=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:14 2024 by rpki-client on console.sobornost.net