Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer
File: QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer (raw, json)
Hash identifier: P4SzglmnRFiDnZ2zD/j2nIwIKMgzNQoTdvmj2r936T0=
Subject key identifier: 42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B93B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Aug 2023 12:44:20 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 150291
IP: 103.156.148.0/23
IP: 2400:a460::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112955 (0x1b93b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 28 12:44:20 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A912087D/serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:05:87:bc:c8:f5:b7:08:04:a3:98:f6:c4:a9:
cd:9e:14:cf:b5:95:b4:bc:9f:ee:30:86:13:17:30:
b9:ec:3b:d0:77:4d:de:95:19:a5:17:d4:f9:d2:ec:
04:fc:f3:a1:a9:b0:07:a4:dc:53:a9:39:32:12:47:
ab:cd:68:6f:d0:7d:6f:c6:6d:06:c2:27:51:a3:07:
22:44:69:3f:9d:c1:b7:37:5a:06:19:6b:42:a3:26:
43:8e:05:68:60:f6:a4:3b:37:4b:8a:dc:0d:55:a4:
e0:78:78:65:07:63:36:c8:6d:46:b7:e6:ff:87:b7:
35:3e:14:2f:f0:d1:76:b1:49:d6:60:94:37:74:0f:
42:a5:0f:f8:95:9b:cc:8c:51:0c:6b:d4:b6:c0:8a:
b6:c7:be:c8:87:53:0b:6e:a4:14:6b:a0:16:74:0c:
bf:3d:22:e9:2f:f2:82:52:f0:c1:60:10:2e:86:a2:
bd:3e:c1:83:e5:45:d5:32:e1:8f:e2:8d:b7:f3:42:
02:3f:95:51:f8:59:c6:36:34:4f:49:2e:7e:75:aa:
e1:b8:47:8e:fa:d4:c5:94:8c:b3:ac:d1:73:e7:6e:
ea:51:08:d1:e0:d9:1a:7d:58:42:37:a5:52:3d:e1:
d0:a2:c6:41:b4:c3:16:f0:de:dc:7d:96:d6:81:97:
06:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150291
sbgp-ipAddrBlock: critical
IPv4:
103.156.148.0/23
IPv6:
2400:a460::/32
Signature Algorithm: sha256WithRSAEncryption
09:a4:6c:58:de:bd:db:04:c2:34:ae:bb:24:a7:49:f8:59:c8:
ea:aa:dc:b9:f4:0f:16:1b:b9:55:b6:ff:f1:2a:52:4d:7a:5e:
f0:f8:ca:95:4c:21:f1:a8:bc:e1:05:6d:43:4e:0e:4e:48:6d:
dc:81:cd:ef:7a:7e:60:b2:40:ad:5e:f4:ef:be:01:b2:3f:bd:
1e:54:93:60:26:ab:21:1e:56:71:a7:43:47:8d:9f:72:05:92:
07:74:c7:15:0f:4a:83:3e:09:a9:2b:9a:30:a9:5e:57:06:73:
c9:ec:f8:f8:4a:eb:2d:27:a3:0b:a7:8c:79:82:cc:75:a0:0b:
ef:68:2c:71:71:3f:3a:ed:04:f2:08:16:bd:ca:08:53:36:80:
94:85:ad:f2:26:1f:12:ce:15:44:f1:e5:14:54:b1:dc:b3:64:
b8:b1:e8:eb:05:ae:9b:d9:56:0b:a1:4a:92:37:a6:0a:5f:8a:
a5:34:09:37:ec:e7:0e:50:76:64:23:b5:1f:c4:9e:91:c7:38:
65:9f:3c:e3:eb:52:bb:44:3f:06:0e:2f:e7:ec:45:39:fb:70:
f1:cb:a2:08:33:e0:0b:6a:46:55:cf:a0:db:33:5d:f5:0a:54:
be:e6:09:f6:e6:03:c8:19:8f:77:7e:05:e6:8d:5f:06:84:e9:
82:01:b3:3a
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAbk7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgyODEyNDQyMFoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjA4N0QxMTAvBgNVBAUTKDQyQTg0RDhDMDg4OUFEQzU1ODYwNjYz
OTkzQkNDQTgzNjEyNzFCRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDfBYe8yPW3CASjmPbEqc2eFM+1lbS8n+4whhMXMLnsO9B3Td6VGaUX1PnS7AT8
86GpsAek3FOpOTISR6vNaG/QfW/GbQbCJ1GjByJEaT+dwbc3WgYZa0KjJkOOBWhg
9qQ7N0uK3A1VpOB4eGUHYzbIbUa35v+HtzU+FC/w0XaxSdZglDd0D0KlD/iVm8yM
UQxr1LbAirbHvsiHUwtupBRroBZ0DL89Iukv8oJS8MFgEC6Gor0+wYPlRdUy4Y/i
jbfzQgI/lVH4WcY2NE9JLn51quG4R4761MWUjLOs0XPnbupRCNHg2Rp9WEI3pVI9
4dCixkG0wxbw3tx9ltaBlwYDAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUQqhNjAiJ
rcVYYGY5k7zKg2EnG/4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIwODdELzRDMTU4NThDMjhFRDExRUQ4QjU5N0I0MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyMDg3RC80QzE1ODU4QzI4RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFp
SnJjVllZR1k1azd6S2cyRW5HXzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAksTMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ5yUMA0EAgAC
MAcDBQAkAKRgMA0GCSqGSIb3DQEBCwUAA4IBAQAJpGxY3r3bBMI0rrskp0n4Wcjq
qty59A8WG7lVtv/xKlJNel7w+MqVTCHxqLzhBW1DTg5OSG3cgc3ven5gskCtXvTv
vgGyP70eVJNgJqshHlZxp0NHjZ9yBZIHdMcVD0qDPgmpK5owqV5XBnPJ7Pj4Sust
J6MLp4x5gsx1oAvvaCxxcT867QTyCBa9yghTNoCUha3yJh8SzhVE8eUUVLHcs2S4
sejrBa6b2VYLoUqSN6YKX4qlNAk37OcOUHZkI7UfxJ6Rxzhlnzzj61K7RD8GDi/n
7EU5+3Dxy6IIM+ALakZVz6DbM131ClS+5gn25gPIGY93fgXmjV8GhOmCAbM6
-----END CERTIFICATE-----
Generated at Thu May 9 15:21:10 2024 by rpki-client on console-fra.rpki-client.org