Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7BeaWHQiKOMLffeXiCZYOHglW3g.cer
File: 7BeaWHQiKOMLffeXiCZYOHglW3g.cer (raw, json)
Hash identifier: oXr7HwUA/ndRp1pNWfOh98eMT2Agu/5YcLwAsjPZMs0=
Subject key identifier: EC:17:9A:58:74:22:28:E3:0B:7D:F7:97:88:26:58:38:78:25:5B:78
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EB4E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AA95A/B0D1D5FCBE7411E98F95FA64C4F9AE02/7BeaWHQiKOMLffeXiCZYOHglW3g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AA95A/B0D1D5FCBE7411E98F95FA64C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 Apr 2024 18:29:46 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 137473
AS: 139685
IP: 103.110.28.0/23
IP: 2402:8e40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125774 (0x1eb4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 12 18:29:46 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91AA95A/serialNumber=EC179A58742228E30B7DF7978826583878255B78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e3:c6:12:78:29:6a:38:a6:a7:86:ee:53:cd:
5d:a3:1b:d5:01:d9:02:e7:89:15:13:8a:f2:91:9a:
5b:0b:1d:4a:f2:74:67:e1:bb:02:19:5d:a4:1e:89:
d6:86:80:52:66:c7:7e:73:30:de:20:76:f4:07:71:
a1:15:ec:05:ac:b7:6b:10:f6:c5:9a:91:95:88:8c:
54:48:eb:16:ae:19:8f:ec:35:6d:5d:78:1a:78:1d:
1c:b3:5f:42:cb:f2:90:7f:c7:d0:58:c7:73:0d:15:
d8:1e:5d:dc:ff:c4:6a:f9:f7:b8:a3:ca:a0:65:bb:
5c:0a:5d:da:12:4a:2a:b1:60:70:21:72:fe:f5:5b:
f6:40:75:e2:80:06:45:11:b1:ff:b8:c7:09:61:f3:
d2:4c:bc:70:59:1a:2f:59:52:31:a4:01:5b:c1:2b:
a5:8b:40:32:7f:bd:e9:94:a7:93:95:2b:14:96:d6:
a1:58:23:0b:44:58:2f:ff:d6:fd:fb:d5:45:43:8f:
7e:77:76:b6:48:23:34:3b:8f:69:06:28:0f:d1:d9:
7b:dd:13:09:ba:8f:97:32:c1:9e:3b:42:d2:08:37:
f9:0c:5a:58:85:1c:e4:89:92:9f:19:06:c0:e9:ec:
38:35:ef:c3:2f:dd:3e:87:c6:7f:f5:1a:a2:2a:98:
8d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:17:9A:58:74:22:28:E3:0B:7D:F7:97:88:26:58:38:78:25:5B:78
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AA95A/B0D1D5FCBE7411E98F95FA64C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AA95A/B0D1D5FCBE7411E98F95FA64C4F9AE02/7BeaWHQiKOMLffeXiCZYOHglW3g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137473
139685
sbgp-ipAddrBlock: critical
IPv4:
103.110.28.0/23
IPv6:
2402:8e40::/32
Signature Algorithm: sha256WithRSAEncryption
b9:fa:af:be:db:76:70:04:92:71:53:77:6b:b1:a1:ba:15:4f:
7b:94:87:2c:47:05:07:97:c4:f6:03:9c:9b:37:95:cc:ce:72:
6a:d9:6b:23:d4:fd:97:9a:34:83:39:d6:39:14:5d:b5:50:b2:
0d:e5:e9:bb:3c:01:0f:10:f6:f8:cb:0c:97:1a:5e:34:c0:50:
68:8a:bd:c2:3e:99:27:fe:d5:3a:2e:99:f9:b4:d3:ec:3d:18:
28:6b:d9:ea:1b:60:76:b7:19:cd:45:cd:39:3e:dd:e2:3f:84:
af:f5:09:97:f2:59:6e:32:da:e9:87:03:35:42:5a:80:3c:47:
cd:8b:5f:b7:d3:ef:a3:11:12:72:8a:f6:5b:9f:7c:6d:ad:cb:
7c:67:1b:7e:37:c5:2e:2c:78:fb:b9:5e:a5:01:9c:5a:2a:0a:
6b:69:ef:48:d9:96:2d:56:35:94:b0:41:21:a3:85:a7:14:67:
ee:b7:ad:87:50:c1:e5:73:c8:43:40:e6:27:ad:0c:01:23:9f:
6e:78:ae:67:48:b5:40:7a:0b:d9:54:26:14:9a:3e:4f:07:8c:
ad:fe:1e:54:85:60:66:a9:4c:0c:ff:3f:e8:04:89:f1:cf:79:
4a:a7:cc:f0:c1:8e:fd:fd:18:55:0a:fd:bd:60:f1:d2:c2:c2:
9e:93:7f:67
-----BEGIN CERTIFICATE-----
MIIGLjCCBRagAwIBAgIDAetOMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQxMjE4Mjk0NloXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUE5NUExMTAvBgNVBAUTKEVDMTc5QTU4NzQyMjI4RTMwQjdERjc5
Nzg4MjY1ODM4NzgyNTVCNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDF48YSeClqOKanhu5TzV2jG9UB2QLniRUTivKRmlsLHUrydGfhuwIZXaQeidaG
gFJmx35zMN4gdvQHcaEV7AWst2sQ9sWakZWIjFRI6xauGY/sNW1deBp4HRyzX0LL
8pB/x9BYx3MNFdgeXdz/xGr597ijyqBlu1wKXdoSSiqxYHAhcv71W/ZAdeKABkUR
sf+4xwlh89JMvHBZGi9ZUjGkAVvBK6WLQDJ/vemUp5OVKxSW1qFYIwtEWC//1v37
1UVDj353drZIIzQ7j2kGKA/R2XvdEwm6j5cywZ47QtIIN/kMWliFHOSJkp8ZBsDp
7Dg178Mv3T6Hxn/1GqIqmI29AgMBAAGjggMjMIIDHzAdBgNVHQ4EFgQU7BeaWHQi
KOMLffeXiCZYOHglW3gwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFBOTVBL0IwRDFENUZDQkU3NDExRTk4Rjk1RkE2NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBQTk1QS9CMEQxRDVGQ0JFNzQxMUU5OEY5NUZBNjRDNEY5QUUwMi83QmVhV0hR
aUtPTUxmZmVYaUNaWU9IZ2xXM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAhkBAgMCIaUwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAFnbhww
DQQCAAIwBwMFACQCjkAwDQYJKoZIhvcNAQELBQADggEBALn6r77bdnAEknFTd2ux
oboVT3uUhyxHBQeXxPYDnJs3lczOcmrZayPU/ZeaNIM51jkUXbVQsg3l6bs8AQ8Q
9vjLDJcaXjTAUGiKvcI+mSf+1Toumfm00+w9GChr2eobYHa3Gc1FzTk+3eI/hK/1
CZfyWW4y2umHAzVCWoA8R82LX7fT76MREnKK9luffG2ty3xnG343xS4sePu5XqUB
nFoqCmtp70jZli1WNZSwQSGjhacUZ+63rYdQweVzyENA5ietDAEjn254rmdItUB6
C9lUJhSaPk8HjK3+HlSFYGapTAz/P+gEifHPeUqnzPDBjv39GFUK/b1g8dLCwp6T
f2c=
-----END CERTIFICATE-----
Generated at Wed May 8 21:04:15 2024 by rpki-client on console-fra.rpki-client.org