Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer
File: OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer (raw, json)
Hash identifier: GJXEddpzGKpL5bqk/gKA2zjt9S8QwimeaNiF0IktSmg=
Subject key identifier: 3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BA8A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Aug 2023 17:22:49 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 136941
IP: 103.99.180.0/22
IP: 2401:b0c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113290 (0x1ba8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 31 17:22:49 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91CAB4E/serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:20:c3:54:9f:ae:6e:08:5e:cb:f3:c3:f5:c7:
69:53:ce:4f:9a:c3:fc:99:31:fe:54:25:44:05:f3:
5e:9a:c8:3a:66:5b:7f:51:2d:5e:f9:ce:d8:1b:2b:
84:bd:9b:e0:34:b9:e1:ea:b3:32:66:ea:4e:89:6e:
39:e7:e1:28:9f:ff:5b:ec:14:e5:d8:08:24:60:12:
51:62:db:94:96:3c:16:cd:74:aa:b1:75:77:ce:f2:
98:68:e9:0d:16:af:cd:96:b2:9c:57:45:c2:81:8f:
e2:dd:3f:d8:af:e4:7f:21:66:24:78:6d:aa:db:4d:
3c:f9:fa:78:6c:47:f1:88:8a:04:29:68:e6:9f:94:
c9:f9:73:c6:12:e9:78:16:53:ad:4e:a2:56:fb:c9:
88:ad:56:17:4d:92:f7:58:0c:33:8b:e1:8c:df:8f:
aa:ac:46:08:9c:7b:3f:12:74:cb:e3:ff:41:d2:82:
22:07:12:c3:8d:9b:b4:ca:f4:2f:e8:aa:67:6f:ac:
9f:54:6a:2f:12:ee:13:53:54:df:03:05:36:5a:f1:
cc:1c:0f:d6:7c:01:7f:63:7b:97:47:d3:01:ac:4f:
8b:15:a3:65:d8:65:a5:52:38:40:aa:dc:7e:34:c3:
3e:b5:9e:63:b6:d0:74:4d:15:34:e4:83:1f:92:5f:
c7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136941
sbgp-ipAddrBlock: critical
IPv4:
103.99.180.0/22
IPv6:
2401:b0c0::/32
Signature Algorithm: sha256WithRSAEncryption
28:84:96:53:c4:6b:6e:f2:32:40:96:2c:b9:d7:7c:97:ff:bf:
68:f1:16:3f:c0:a0:58:cb:b3:a7:e3:44:3d:55:91:0e:9a:48:
f1:09:12:86:a4:d8:23:13:c2:52:ef:dc:2c:fb:31:b1:91:0b:
21:2b:1b:c9:74:df:3e:85:50:b9:d9:c8:2f:1a:dd:ee:27:2a:
c4:e7:e6:29:c2:03:49:83:3f:8b:22:3f:df:d4:db:9d:c9:3a:
06:e9:cf:c4:46:c6:a7:6f:0f:9b:9c:44:1f:55:8f:b9:fb:2d:
91:7d:b8:bb:73:13:e8:5c:a6:49:dd:e6:48:84:45:13:de:8e:
71:35:75:bc:a1:67:3f:15:ca:aa:35:72:fc:8c:6d:71:ba:de:
95:7c:7a:29:64:29:ab:52:9b:65:af:89:8f:53:9c:30:18:c7:
fe:14:64:eb:01:c4:da:b8:a4:5d:60:73:ec:83:93:6d:99:3c:
28:1d:13:9c:5a:be:c5:24:14:b1:2e:ed:fb:52:c5:fc:58:39:
a3:b7:08:e0:97:02:88:d8:d1:05:9a:7c:ef:c2:d4:58:98:83:
68:45:5c:11:96:40:07:55:d3:3e:06:80:86:3f:c3:d7:64:4b:
c9:7f:c7:dd:2f:89:7e:ed:b5:c7:8c:a3:09:d7:95:7b:ee:02:
d7:15:8d:9e
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAbqKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgzMTE3MjI0OVoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0FCNEUxMTAvBgNVBAUTKDNBMTQ5NDI1QkUzMjg1RDYxMTRCMDFG
NkMyRkM4OEExN0FGRjRCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDHIMNUn65uCF7L88P1x2lTzk+aw/yZMf5UJUQF816ayDpmW39RLV75ztgbK4S9
m+A0ueHqszJm6k6Jbjnn4Sif/1vsFOXYCCRgElFi25SWPBbNdKqxdXfO8pho6Q0W
r82WspxXRcKBj+LdP9iv5H8hZiR4barbTTz5+nhsR/GIigQpaOaflMn5c8YS6XgW
U61Oolb7yYitVhdNkvdYDDOL4Yzfj6qsRgicez8SdMvj/0HSgiIHEsONm7TK9C/o
qmdvrJ9Uai8S7hNTVN8DBTZa8cwcD9Z8AX9je5dH0wGsT4sVo2XYZaVSOECq3H40
wz61nmO20HRNFTTkgx+SX8dXAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUOhSUJb4y
hdYRSwH2wvyIoXr/S+wwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNBQjRFLzJDQTQ3MDY2OTk3MDExRTg4NjFERDA1N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQUI0RS8yQ0E0NzA2Njk5NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0
eWhkWVJTd0gyd3Z5SW9Ycl9TLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhbtMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ2O0MA0EAgAC
MAcDBQAkAbDAMA0GCSqGSIb3DQEBCwUAA4IBAQAohJZTxGtu8jJAliy513yX/79o
8RY/wKBYy7On40Q9VZEOmkjxCRKGpNgjE8JS79ws+zGxkQshKxvJdN8+hVC52cgv
Gt3uJyrE5+YpwgNJgz+LIj/f1NudyToG6c/ERsanbw+bnEQfVY+5+y2Rfbi7cxPo
XKZJ3eZIhEUT3o5xNXW8oWc/FcqqNXL8jG1xut6VfHopZCmrUptlr4mPU5wwGMf+
FGTrAcTauKRdYHPsg5NtmTwoHROcWr7FJBSxLu37UsX8WDmjtwjglwKI2NEFmnzv
wtRYmINoRVwRlkAHVdM+BoCGP8PXZEvJf8fdL4l+7bXHjKMJ15V77gLXFY2e
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:26 2024 by rpki-client on console-ams.rpki-client.org