Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdCbSlNggIIFqdaRRxnguYnPVgs.cer
File: OdCbSlNggIIFqdaRRxnguYnPVgs.cer (raw, json)
Hash identifier: ki5UiMBzddy4FhFszgPRaPFWROw1GrjR+o4uhcOLTqY=
Subject key identifier: 39:D0:9B:4A:53:60:80:82:05:A9:D6:91:47:19:E0:B9:89:CF:56:0B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D644
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jan 2024 00:55:51 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 132111
IP: 103.13.75.0/24
IP: 103.26.170.0/23
IP: 103.28.162.0/24
IP: 103.230.124.0/22
IP: 113.11.188.0/22
IP: 2001:df0:272::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120388 (0x1d644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 3 00:55:51 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91FDCF0/serialNumber=39D09B4A5360808205A9D6914719E0B989CF560B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:87:af:9a:d4:ba:ee:c8:1d:3f:ff:27:c4:
3c:02:e7:4a:7d:66:98:6d:8c:77:29:24:c1:2d:f1:
78:20:c2:d9:ab:6d:bf:ab:e3:33:4d:f9:d6:9b:09:
9c:d6:ca:cd:dc:73:1e:ec:95:66:7e:7b:67:29:2f:
cb:1f:bb:bd:51:48:ec:84:a5:9c:1c:da:2f:d7:f5:
88:6d:0e:63:09:14:c4:0d:21:09:2a:21:a3:3e:79:
0e:02:13:35:f1:91:cf:ca:eb:83:6b:34:b0:b1:49:
5e:08:ff:c7:1c:a0:36:db:27:23:0e:b0:94:6d:6c:
98:2b:06:b0:60:21:00:03:5d:bb:16:e3:3b:6e:1b:
9a:4f:f2:7b:8d:2f:53:03:b4:4f:ff:6f:2b:25:ec:
e2:d7:e8:aa:c8:b3:63:55:2c:c7:3e:bb:c5:be:c8:
8f:09:95:4f:f6:4e:1f:a1:6f:f0:cb:c0:b1:71:57:
0e:98:80:16:6c:a4:ce:99:bc:22:e5:b3:7c:5d:30:
c3:09:b4:08:56:45:53:18:0f:35:4a:d4:0d:58:18:
87:74:b3:17:4f:fb:d4:13:c4:5a:49:f4:1d:45:4d:
7b:a9:7b:6c:8c:93:d1:67:91:b7:17:93:ed:9d:6c:
c5:d0:22:49:51:06:cf:8c:72:89:db:90:59:e4:98:
63:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D0:9B:4A:53:60:80:82:05:A9:D6:91:47:19:E0:B9:89:CF:56:0B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132111
sbgp-ipAddrBlock: critical
IPv4:
103.13.75.0/24
103.26.170.0/23
103.28.162.0/24
103.230.124.0/22
113.11.188.0/22
IPv6:
2001:df0:272::/48
Signature Algorithm: sha256WithRSAEncryption
30:78:eb:21:fb:ca:58:d8:b6:d5:65:50:66:a5:59:b0:63:51:
e9:d1:06:89:7c:fe:a8:ce:dd:37:fe:b5:1c:54:5b:50:83:ec:
8e:4d:6e:df:56:4f:ae:cc:a6:37:50:6e:8d:63:32:e9:64:a5:
d3:a1:a6:ae:5a:ef:e2:fb:4b:33:db:0b:b2:8d:72:77:6b:d1:
e5:7a:07:c2:fb:3b:99:17:3b:da:05:cb:97:ed:8c:95:c0:94:
41:50:c1:2d:19:73:67:13:b2:2a:ed:06:d9:d1:de:8f:3a:cc:
d2:fc:8b:c8:40:0e:13:73:04:01:84:5f:c1:7c:18:42:76:74:
b3:8c:25:a2:77:a2:9e:ee:f3:9a:de:ca:7a:dc:11:26:11:b2:
ad:9f:45:7e:5b:ec:95:19:62:2e:74:36:1b:ba:07:75:7d:86:
39:45:1a:ee:2d:ab:5f:e8:a4:51:a2:56:ae:b4:c8:90:83:62:
af:27:a1:d3:a7:d8:bb:64:86:d1:3a:27:ac:64:98:28:c2:37:
51:d9:48:cb:d6:85:55:a7:ff:5c:c5:d0:5f:15:99:f8:91:23:
59:a0:14:d6:ca:de:99:7a:f5:2f:a0:44:ce:48:7c:95:28:29:
7a:71:6e:f4:b3:3a:44:9f:87:a3:41:be:08:f4:04:72:c8:5c:
30:e9:e4:8b
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIDAdZEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEwMzAwNTU1MVoXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRkRDRjAxMTAvBgNVBAUTKDM5RDA5QjRBNTM2MDgwODIwNUE5RDY5
MTQ3MTlFMEI5ODlDRjU2MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDLz4evmtS67sgdP/8nxDwC50p9ZphtjHcpJMEt8Xggwtmrbb+r4zNN+dabCZzW
ys3ccx7slWZ+e2cpL8sfu71RSOyEpZwc2i/X9YhtDmMJFMQNIQkqIaM+eQ4CEzXx
kc/K64NrNLCxSV4I/8ccoDbbJyMOsJRtbJgrBrBgIQADXbsW4ztuG5pP8nuNL1MD
tE//bysl7OLX6KrIs2NVLMc+u8W+yI8JlU/2Th+hb/DLwLFxVw6YgBZspM6ZvCLl
s3xdMMMJtAhWRVMYDzVK1A1YGId0sxdP+9QTxFpJ9B1FTXupe2yMk9FnkbcXk+2d
bMXQIklRBs+MconbkFnkmGOXAgMBAAGjggM4MIIDNDAdBgNVHQ4EFgQUOdCbSlNg
gIIFqdaRRxnguYnPVgswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUZEQ0YwLzMxMjdCMDE4Q0VBRTExRTc4OTc4NDgyNUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGRENGMC8zMTI3QjAxOENFQUUxMUU3ODk3ODQ4MjVDNEY5QUUwMi9PZENiU2xO
Z2dJSUZxZGFSUnhuZ3VZblBWZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgQPMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQAZw1LAwQBZxqq
AwQAZxyiAwQCZ+Z8AwQCcQu8MA8EAgACMAkDBwAgAQ3wAnIwDQYJKoZIhvcNAQEL
BQADggEBADB46yH7yljYttVlUGalWbBjUenRBol8/qjO3Tf+tRxUW1CD7I5Nbt9W
T67MpjdQbo1jMulkpdOhpq5a7+L7SzPbC7KNcndr0eV6B8L7O5kXO9oFy5ftjJXA
lEFQwS0Zc2cTsirtBtnR3o86zNL8i8hADhNzBAGEX8F8GEJ2dLOMJaJ3op7u85re
ynrcESYRsq2fRX5b7JUZYi50Nhu6B3V9hjlFGu4tq1/opFGiVq60yJCDYq8nodOn
2LtkhtE6J6xkmCjCN1HZSMvWhVWn/1zF0F8VmfiRI1mgFNbK3pl69S+gRM5IfJUo
KXpxbvSzOkSfh6NBvgj0BHLIXDDp5Is=
-----END CERTIFICATE-----
Generated at Thu May 9 14:24:14 2024 by rpki-client on console-fra.rpki-client.org